Privacy Policy

1. Who We Are

Dr-Adam Schools operates the DASesy to support school administration, student services, academic activities, communication, attendance, school health services, and secure account access.

For privacy questions or data requests, contact us at privacy@dradamschools.com, phone +252 61 5 88 3445, address Mogadishu, Somalia.

2. Information We Collect

Depending on the services used, we may collect the following categories of information:

• Identity details such as full name, student ID, staff ID, role, class, section, date of birth, gender, and school record number.
• Contact details such as phone number, email address, address, emergency contact details, and guardian information.
• Academic information such as classes, attendance, grades, assessments, certificates, timetable data, and school performance records.
• Account and login information such as usernames, encrypted passwords, login timestamps, session data, and device/browser information.
• Administrative and financial information such as enrollment records, fee data, payroll-related records for staff, and service requests.
• Health information where applicable, including clinic visits, prescriptions, medical notes, allergy or emergency care information, and nurse/doctor service records.
• Biometric or identity-verification information where enabled, including face-recognition login data or ID-card-based authentication data.
• Technical information such as IP address, browser type, operating system, logs, security events, and activity necessary to secure and maintain the platform.

3. How We Collect Information

• Directly from users, parents, guardians, staff, or school administrators.
• From school registration, admission, attendance, learning, health, and account-management processes.
• Automatically through website usage, login sessions, security logs, and system monitoring tools.
• From authorised internal school staff who input or update records as part of school operations.

4. Why We Use Information

We use personal information for legitimate school and platform purposes, including to:

• create and manage user accounts;
• deliver educational, administrative, and communication services;
• manage attendance, academic records, reports, and certificates;
• support student health and welfare services where applicable;
• verify identity and secure access to the platform;
• prevent fraud, misuse, unauthorised access, and other security threats;
• maintain backups, logs, audits, and system reliability;
• comply with school policy, applicable law, legal obligations, or lawful requests from competent authorities.

5. Biometric and Sensitive Data

Some features of the platform may involve sensitive data, including health records and optional biometric login tools such as face recognition. These features are treated with heightened protection.

• Face recognition login is intended only for authentication and security.
• Where possible, biometric login should remain optional and an alternative login method should be available.
• Health information is accessed only by authorised roles with a legitimate school or care-related need.
• Sensitive records are protected with access controls, logging, and reasonable technical safeguards.

6. Legal Basis and School Authority

We process personal information based on legitimate school administration needs, user consent where appropriate, safeguarding and welfare responsibilities, contractual or enrollment relationships, and compliance with applicable legal or regulatory obligations.

Where consent is used, users or guardians may withdraw it for optional features, although this may affect the availability of some services.

7. Sharing of Information

We do not sell personal information. We may share information only when reasonably necessary with:

• authorised school staff and management;
• teachers, guardians, healthcare staff, or administrators according to role-based access needs;
• technical service providers hosting or supporting the platform under confidentiality and security obligations;
• government or regulatory authorities where required by law or lawful request;
• professional advisers or auditors under confidentiality obligations.

8. International Hosting and Storage

Our platform may be hosted on infrastructure located outside Somalia, including in the European Union or other jurisdictions, while serving school operations in Somalia. When that happens, we seek to apply reasonable security, confidentiality, and access controls to the data regardless of server location.

9. Security Measures

We apply reasonable technical and organisational safeguards, which may include:

• password protection and access-control rules;
• session security and login monitoring;
• role-based permissions for students, guardians, staff, medical personnel, and administrators;
• system logging, backups, malware scanning, and vulnerability monitoring;
• encryption or secure transmission where available;
• restriction of access to sensitive records.

No internet-based system is completely risk-free, but we work to reduce risks and respond to incidents promptly.

10. Data Retention

We keep personal data only as long as reasonably necessary for school operations, legal obligations, safeguarding, audit, dispute resolution, and continuity of academic or administrative records. Retention periods may vary depending on the type of data.

• Active student and staff records are generally retained while the relationship with the school continues.
• Archived records may be retained for historical, legal, audit, or academic verification purposes.
• Security logs may be retained for fraud prevention, incident investigation, and service protection.
• Optional biometric data should be retained only as long as necessary for the authentication feature.

11. Children and Student Privacy

Because our services relate to students and schools, we recognise a heightened duty of care for children’s information. Parents, guardians, and authorised school staff are expected to provide accurate information and use the system responsibly. We limit access to student information to authorised roles and legitimate educational or welfare purposes.

12. User Rights and Requests

Subject to applicable law and school policy, a user, parent, guardian, or authorised representative may request to:

• access personal information held about them or the student they lawfully represent;
• correct inaccurate or incomplete records;
• request deletion of data that is no longer necessary, where deletion is legally permitted;
• object to or restrict optional processing;
• request an export or copy of relevant records where reasonable and lawful.

To make a request, contact privacy@dradamschools.com. We may ask for proof of identity or authority before acting on a request.

13. Cookies and Similar Technologies

We may use session cookies and similar technologies to keep users logged in, maintain security, remember preferences, and improve system performance. Security-related cookies may be necessary for the system to function properly.

14. Third-Party Services

Some technical functions may involve third-party providers such as hosting services, email delivery, security tools, backups, or analytics. We try to use providers that support reasonable security standards and limited-purpose processing.

15. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will be posted on this page with a revised effective date. Material changes may also be communicated through the platform or other school communication channels.

16. Contact Us

For questions, privacy concerns, or data requests, contact:

Dr-Adam Schools
Email: privacy@dradamschools.com
Phone: +252 61 5 88 3445
Address: Mogadishu, Somalia