ScholarlyEcho serves learners as young as 7. We design every data practice with children\'s safety as the top priority. We never show ads, never sell data, and never share personal information without explicit consent.
Information We Collect
Account Information
When you enroll or register, we collect your name, email address, date of birth (for age-appropriate placement), country of residence, and a password. For minors, we also collect a parent or guardian's contact information.
Learning Data
We track progress through our curriculum levels, session attendance, project submissions, quiz scores, and time spent on each module. This data is used solely to personalise and improve your learning experience.
Payment Information
Payments are processed through Stripe, a PCI-DSS compliant provider. We do not store your full card number, CVV, or billing details — these are handled entirely by Stripe.
Usage & Analytics
We collect anonymised data on how users navigate the platform, which features they use, and general performance metrics via privacy-respecting analytics. We do not sell or share this data with advertisers.
How We Use Your Information
Delivering Education
Your data powers personalised learning paths, tutor matching, progress tracking, and curriculum recommendations.
Communication
We use your email to send session reminders, program updates, newsletters (if subscribed), and critical account notifications. You can unsubscribe from marketing emails at any time.
Safety & Security
We use account data to verify identities, prevent unauthorised access, and maintain a safe environment for all learners — especially minors.
Improvement
Aggregated, anonymised data helps us improve curriculum quality, tutor performance, and platform features.
Data Sharing & Third Parties
We Never Sell Your Data
ScholarlyEcho does not sell, rent, or trade personal information to any third party for marketing purposes — ever.
Service Providers
We share minimal necessary data with trusted service providers (Stripe for payments, Zoom for live sessions, AWS for hosting) bound by strict data processing agreements.
Legal Requirements
We may disclose information when required by law, court order, or to protect the rights and safety of our community.
Data Security
Encryption
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Passwords are hashed using bcrypt — we cannot read your password.
Access Controls
Only authorised personnel with a need-to-know basis have access to personal data. All staff access is logged and audited.
Incident Response
In the event of a data breach, we will notify affected users within 72 hours and take immediate corrective action.
Your Rights
Access & Export
You can request a full export of your personal data at any time from your account settings or by emailing scholarlyechos@gmail.com.
Correction
You can update your profile information directly in your account dashboard.
Deletion
You may request deletion of your account and all associated data. We will process this within 30 days, subject to legal retention requirements.
COPPA & GDPR
We comply with COPPA (USA) for learners under 13, and GDPR (EU/UK) for users in those regions. Parents of minors may exercise rights on their child's behalf.
Questions or Concerns?
Contact our Data Privacy Officer at privacy@scholarlyecho.com or write to us at: ScholarlyEcho Inc., Maryland, United States.
Contact Us