Privacy Policy

Last updated: February 26, 2026

SchoolMemories ("we", "us", or "our") operates the SchoolMemories platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. Information We Collect

Account Information

When you register, we collect your name, email address, and school affiliation via Google Sign-In. We do not store passwords — authentication is handled entirely by Google.

Photos & Facial Data

Our Service processes photos uploaded by school staff and selfies uploaded by parents to perform face matching. Here's how we handle this data:

Event photos are uploaded by authorized school staff and stored securely in cloud storage.
Face embeddings (mathematical vectors, not actual faces) are generated from photos for matching purposes using our proprietary AI engine.
Parent selfies are processed in real-time for face matching and are not permanently stored. They are deleted immediately after matching is complete.

Usage Data

We automatically collect standard usage data: device type, browser, IP address, pages visited, and timestamps. This is used for security, analytics, and improving the Service.

2. How We Use Your Information

To provide the core Service: photo upload, AI face matching, and photo delivery.
To manage your account and school dashboard.
To process payments for premium subscriptions.
To send event-related notifications (only with your consent).
To improve and optimize the Service.
To comply with legal obligations.

3. Data Sharing

We do not sell your personal information. We share data only with:

Cloud infrastructure providers for secure storage and processing.
Payment processors for subscription billing.
Law enforcement when required by law or to protect rights and safety.

4. Data Security

We implement industry-standard security measures:

All data is encrypted in transit (TLS 1.2+) and at rest (AES-256).
Access to photo storage is controlled by Row Level Security (RLS) policies.
Face embeddings are stored in isolated collections per school.
Admin actions are logged for audit trail compliance.

5. Children's Privacy

SchoolMemories is designed for use by schools and parents (adults). We do not knowingly collect personal information directly from children under 13. All child-related data (photos) is uploaded and managed by authorized school staff or parents/guardians.

6. Data Retention

Event photos: Retained as long as the school maintains an active account. Schools can delete events and photos at any time.
Face embeddings: Deleted when the associated photo is deleted or the school account is closed.
Parent selfies: Not stored. Processed in real-time and discarded.
Account data: Retained until account deletion is requested.

7. Your Rights

You have the right to:

Access your personal data held by us.
Correct inaccurate information.
Delete your account and associated data.
Object to processing of your personal data.
Data portability — request a copy of your data in a machine-readable format.

8. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking or advertising cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of material changes via email or an in-app notice. Continued use of the Service after changes constitutes acceptance.

10. Contact Us

Questions or concerns?

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:

Email: privacy@schoolmemories.app
Grievance Officer: sureshjogur@gmail.com