Sign In
Get Started
Search
⌘K
Get Started
Platform
Dashboard
Developer Guides
API Reference
UI Widgets
Providers
Legal
Flow
Changelog
Roadmap
For Companies & Schools

How We Protect Your Privacy

Amanda Goodson
By Amanda Goodson
Unknown Date
Copy Markdown
Report an Issue

This document contains a summary of some of our data privacy practices and information. You can find our full legal Terms & Conditions and Privacy Policy, as well as a number of additional legal disclosures in the Legal Documents section.

At Edlink, privacy isn't just about checking boxes — it's about respecting your rights and keeping your sensitive data safe. Our privacy practices are built on transparency, giving you control and ensuring security at every stage.

Our Privacy Principles

We base our approach to data privacy on three core principles:

  • Transparency: You'll always know how we collect, use, and store your data.
  • Control: You own your data and can access, export, or delete it at any time.
  • Privacy by Design: Privacy is a priority in everything we build.

How We Handle Data

We only collect the data needed to provide our services, such as single sign-on (SSO), rostering, and performance tracking. Our practices ensure:

  • Purpose Limitation: Data is only collected for specific, legitimate reasons.
  • Data Minimization: We only handle what's necessary—no excess information.

Regional Data Sovereignty

To meet regional data requirements, we offer storage in locations like the U.S., Canada, Germany, and Australia. During onboarding, you can choose where your data is stored to comply with local laws.

Access and Security

Client data is separated in our systems, protected by strong authentication and API-level restrictions.

  • Access Tokens: Only authenticated users can access their data, with unique tokens for each account.
  • Granular Permissions: API access is role-based to ensure only authorized users see sensitive information.

Retention and Deletion

We follow clear retention and deletion policies to handle your data responsibly:

  • Retention Periods: Data is kept while your account is active. When accounts close, data is securely deleted within 7 days unless otherwise required by law.
  • GDPR Compliance: Users can request access to their data or complete deletion, in line with GDPR.

Privacy Compliance and Accountability

We comply with key regulations, including:

  • GDPR: Supporting your rights to access, correct, and delete your data.
  • FERPA: Ensuring student data is used only for educational purposes.

All employees, contractors, and partners sign NDAs that clearly outline their responsibilities for handling sensitive information.

By combining transparency, strong data controls, and regulatory compliance, Edlink ensures your privacy is protected every step of the way.

Read more about our data privacy practices over on the Edlink Blog.