Skip to Content

Privacy Policy

Last Updated: 23rd April 2025

At SkoleAI, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our platform. By using SkoleAI, you consent to the practices described in this policy.

1. Information We Collect


​1.1 User-Provided Data

    • Account Information: Names, email addresses and roles (e.g., teacher and admin).
    • Uploaded Content: Assignments, rubrics, and assignment instructions provided by teachers and school administration.
    • School-Provided Data: Institution name, teacher accounts, and role-based access credentials submitted during account setup.


​1.2 Automatically Collected Data

    • Usage Data: Login times, session durations, click paths, and other interactions within the application.
    • Device Information: Browser type, operating system, and IP address.


​1.3 Educational Data

    • Student Grades: Assignment scores submitted by teachers.
    • Feedback and Insights: AI-generated feedback and performance summaries derived from uploaded assignments.
    • Progress Metrics: Trends and dashboards derived from teacher-provided data, without direct student account creation.


​1.4 AI-Derived Insights

    • Personalized Recommendations: Suggestions based on AI feedback and grading analysis.
    • Performance Trends: AI-generated summaries identifying strengths and improvement areas.
    • Improvement Suggestions: Tailored support suggestions for teachers based on student work.


2. How We Use Your Information


​2.1 Service Delivery

​We process your data to:

    • Authenticate and manage accounts.
    • Automate grading, generate feedback, and perform OCR-based handwriting analysis.
    • Deliver reports, dashboards, and metrics to authorized users.
    • Train and improve SkoleAI's internal systems using fully anonymized data only.

​Data processed includes content uploaded by users, and we require all users to confirm they have obtained appropriate consent prior to upload. Personally ​identifiable student data should not be uploaded unless explicitly authorized.


2.2 Platform Improvement

​We use de-identified data to:

    • Analyze aggregated usage patterns.
    • Debug technical issues and improve performance.
    • Create new tools and optimize accuracy.


2.3 Communication

​We use user data to:

    • Notify users of updates, disruptions, or feature changes.
    • Provide technical and customer support.
    • Respond to platform-related inquiries.


2.4 Legal and Regulatory Compliance

​We may process your data to:

    • Comply with applicable UAE laws, PDPL, DIFC laws, and GDPR.
    • Respond to regulatory requests or legal proceedings.
    • Enforce our Terms of Service.

​If legally permitted, users will be notified prior to data disclosure, and objections will be honored when appropriate.


3. Sharing Your Information


​3.1 With Trusted Service Providers

​We may share limited information with subprocessors who support:

    • Cloud infrastructure and storage
    • AI processing (e.g., language models, OCR engines)
    • Analytics and error tracking

​All third-party services are contractually bound to data protection obligations and may be located outside the UAE. Cross-border transfers are governed by user ​consent, adequacy decisions, or standard contractual clauses.


​3.2 With Schools

​We provide authorized administrators and teachers with access to platform features and student-related insights. Schools are responsible for managing authorization ​and internal compliance with data regulations.


​3.3 For Legal or Security Reasons

​We may disclose data:

    • In response to lawful requests or investigations.
    • To prevent fraud or address unauthorized activity.
    • To protect the platform, users, and data integrity.


​3.4 Business Transfers

​In case of acquisition or merger, data may be transferred under equivalent safeguards. Users will be notified in advance and may opt to delete their data if legally ​permissible.


4. Data Retention and Deletion


​4.1 Retention

​We retain data as long as needed to:

    • Provide services.
    • Comply with legal obligations.
    • Improve the platform.

​Unless otherwise instructed, we may archive de-identified data for up to 20 years for analytics and product development.


​4.2 Deletion

​Users or schools may request data deletion at any time. Verified requests will be honored within applicable legal timeframes.

​Deleted data is removed from active systems, though backups may persist securely for up to 12 years for disaster recovery purposes.


5. Security Measures


​5.1 Organizational Safeguards

    • Background checks for developers and support staff
    • Mandatory NDAs and security training for personnel
    • Breach detection, logging, and response plans


5.2 User Responsibilities

​Users are expected to:

    • Protect login credentials
    • Refrain from sharing unauthorized content
    • Notify support@skoleai.com if suspicious activity occurs


6. User Rights

  • Access and Correction: Users may request to view or correct their personal data.
  • Data Deletion: Users can request deletion of their data at any time.
  • Consent Withdrawal: Users may withdraw consent to processing and cross-border transfers.
  • Administrator Oversight: Schools manage teacher access and user accounts.

Requests should be sent to support@skoleai.com or through platform controls.


7. Children’s Privacy

SkoleAI does not permit direct student access. Any student-related content is uploaded by schools or teachers.

  • Schools are responsible for obtaining parental consent where required.
  • Student data should be anonymized where possible.
  • All student-related content is protected using enhanced encryption and limited access protocols.


8. International Data Transfers

We may transfer data to subprocessors in jurisdictions outside the UAE. These transfers are:

  • Covered by consent during signup
  • Governed by adequacy regulations or contractual safeguards
  • Performed with encrypted transmission and access controls

Users must provide consent before such transfers occur and may withdraw consent at any time.


9. Breach Notification

  • 72-Hour Notification: In the event of a breach affecting personal data, schools will be notified within 72 hours.
  • Details Provided: Description of the breach, affected data types, and mitigation steps.
  • School Duty: Schools must notify individuals if required and inform SkoleAI of any credential compromise.


10. Updates to This Policy

  • Significant changes will be communicated 14 days prior to implementation.
  • Continued use after the effective date constitutes acceptance.


11. Contact Us

Email: info@skoleai.com

Support: support@skoleai.com

Phone: +971 58 507 2870

We’re here to address any questions or concerns regarding data privacy, security, or user rights.