At Doodle we value the trust you give us when parting with your personal information. For that reason, we make it our priority to respect your privacy and protect your information using encryption and implementing strict policies that administer how your data is managed.
Please see below for exactly how we process and handle the information you give us.
Last updated: 26th July 2022
(the “Site”) and associated subdomains. Please read the following information carefully to understand our practices regarding your personal data.
Who we are: For the purpose of applicable data protection legislation, the data controller of your personal data is EZ Education Limited of 8 Palace Yard Mews, Bath, BA1 2NH.
Changes to this Policy: We will post any modifications or changes to the Policy on www.doodlelearning.com. We reserve the right to modify the Policy at any time, so we encourage you to review it frequently. The “Last Updated” legend above indicates when this Policy was last changed. If we make any material change(s) to the Policy, we will notify you via email prior to such changes(s) taking effect.
We gather this information as it enables us to process your registration and set up your Doodle account. This information allows us to provide the services requested and allows us to contact you to support your use of the service.
Purposes of processing
What is personal data?
We collect information about you in a range of forms, including personal data. As used in this Policy, “personal data” is as defined in the European Data Protection Directive 95/46/EC until 25 May 2018, and from 25 May 2018 onwards, as defined in the General Data Protection Regulation 2016/679 (“GDPR”) and any successor legislation, including, to the extent that the GDPR is no longer applicable in the United Kingdom, any implementing legislation or legislation having legal effect in the United Kingdom.
This includes any information which, either alone or in combination with other information we hold about you, identifies you as an individual, including, for example, your name, postal address, email address and telephone number.
Why do we need your personal data?
We will only process your personal data in accordance with applicable data protection and privacy laws. We need certain personal data in order to complete requests that you make via the Site, such as requesting a free trial (see ‘Using your personal data’ for more information).
Collecting your personal data
We collect information about you in the following ways:
Information you give us. This includes:
The personal data you provide when you register to receive a free trial of our Applications, or when you complete our online enquiry form, including your first name, last name, school, position, and email address;
The personal data you provide when you report a problem with our Site or when we provide you with customer support;
The personal data you provide when you correspond with us by phone, email or otherwise;
Information automatically collected. We automatically log information about you and your computer or mobile device when you access our Site. For example, when visiting our Site, we log your computer or mobile device operating system name and version, manufacturer and model, browser type, browser language, screen resolution, the website you visited before browsing to our Site, pages you viewed, how long you spent on a page, access times and information about your use of and actions on our Site. We collect this information about you using cookies. Please refer to the sections on Cookies below.
Using your personal data
We may use your personal data as follows:
We send email newsletters and undertake digital marketing activities as a legitimate interest of the company. Undertaking these activities is an essential part of distributing awareness of our products and services to our customer base.
To operate, maintain, and improve our Site; this includes displaying some data on our website leaderboards. It is possible to opt-out of leaderboards through the parent or teacher dashboard, or by emailing email@example.com.
To respond to your comments and questions and to provide customer service and accommodate requests for a free trial;
As we believe necessary or appropriate (a) to comply with applicable laws; (b) to comply with lawful requests and legal process, including to respond to requests from public and government authorities; (c) to enforce our Policy; and (d) to protect our rights, privacy, safety or property, and/or that of you or others; and
As described in the “Sharing of your Personal Data” section below.
We have put in place the following security procedures and technical and organisational measures to safeguard your personal information: Anti-Viral software & Trojan detection and encryption. We will use all reasonable efforts to safeguard your personal information. However, you should be aware that the use of the Internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal information which is transferred from you or to you via the Internet.
Sharing your personal data
We may share your personal data as follows:
Our Third Party Service Providers. We may share your personal data with our third party service providers who provide services such as data analysis, information technology and related infrastructure provision, customer service, email delivery, auditing and other similar services. These third parties are only permitted to use your personal data to the extent necessary to enable them to provide their services to us. They are required to follow our express instructions and to comply with appropriate security measures to protect your personal data.
Corporate Restructuring. We may share personal data when we do a business deal, or negotiate a business deal, involving the sale or transfer of all or a part of our business or assets. These deals can include any merger, financing, acquisition, or bankruptcy transaction or proceeding.
Other Disclosures. We may share personal data as we believe necessary or appropriate: (a) to comply with applicable laws; (b) to comply with lawful requests and legal process, including to respond to requests from public and government authorities to meet national security or law enforcement requirements; (c) to enforce our Policy; and (d) to protect our rights, privacy, safety or property, and/or that of you or others.
When we use the term “anonymous data”, we are referring to data and information that does not permit you to be identified or identifiable, either alone or when combined with any other information available to a third party.
We may create anonymous data from the personal data we receive about you and other individuals whose personal data we collect. Anonymous data might include analytics information and information collected by us using cookies. We make personal data into anonymous data by excluding information (such as your name) that makes the data personally identifiable to you. We use this anonymous data to analyse usage patterns in order to make improvements to our Site.
Third party sites
Our Site may contain links to third party websites and features. This Policy does not cover the privacy practices of such third parties. These third parties have their own privacy policies and we do not accept any responsibility or liability for their websites, features or policies. Please read their privacy policies before you submit any data to them.
International data transfer
Your information, including personal data that we collect from you, will not be transferred outside the EU Zone.
We seek to use reasonable organisational, technical and administrative measures to protect personal data within our organisation. Unfortunately, no transmission or storage system can be guaranteed to be completely secure, and transmission of information via the internet is not completely secure. If you have reason to believe that our Site is no longer secure, please immediately notify us of the problem by contacting us using the details in the Contact Information section below.
Cloud services self-certification
Follow the link below to download our cloud services self-certification document.
Automated routines delete all data held on a client after an extended period of inactivity on our Site. For teachers and parents, this is after 6 months of inactivity on our Site, and without an active subscription. For students, this is after 24 months of inactivity, and without an active subscription.
Opt-out. You may contact us anytime to opt-out of: (i) any new processing of your personal data that we may carry out beyond the original purpose; or (ii) the transfer of your personal data outside the EEA. Please note that your use of some of the Site may be ineffective upon opt-out.
You may access the information we hold about you at any time by contacting us directly.
You can also contact us to update or correct any inaccuracies in your personal data.
Your data is portable – i.e. you have the flexibility to move your data to other service providers as you wish.
Erase and forget. In certain situations, for example when the information we hold about you is no longer relevant or is incorrect, you can erase your data through the Parent Dashboard or the Teacher Dashboard, or by emailing firstname.lastname@example.org.
In some situations, you will be able to delete your DoodleLearning parent and/or student account via the DoodleLearning apps. We will hold your data for 30 days after you request to delete your account, after which time we will erase and forget your data. You can contact DoodleLearning, by emailing email@example.com, at any time during this 30 day period to request that we reinstate your account, or erase your data immediately.
If you wish to exercise any of these rights, please contact us by emailing firstname.lastname@example.org. In your request, please make clear: (i) what personal data is concerned; and (ii) which of the above rights you would like to enforce. For your protection, we may only implement requests with respect to the personal data associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable and in any event, within one month of your request. Please note that we may need to retain certain information for record keeping purposes and/or to complete any transactions that you began prior to requesting such change or deletion.
Queries and complaints
We are committed to resolve any complaints about our collection or use of your personal data. If you have a query or complaint regarding this Policy or our practices in relation to your personal data, please contact us at email@example.com. We will reply to your complaint as soon as we can and in any event, within 5 working days. We hope to resolve any complaint brought to our attention, however if you feel that your complaint has not been adequately resolved, you reserve the right to contact your local data protection supervisory authority, which for the UK, is the Information Commissioner’s Office.
How to contact us