Privacy Policy
Effective Date: April 24, 2019
Aeries Software, Inc. (“Aeries”) is committed to protecting your privacy. By using Aeries products and visiting any Aeries websites, you are accepting and consenting to the practices described in this policy. Your use of Aeries products or services is at all times subject to the Terms of Service, which include this Privacy Policy.
Any personally identifiable information (“Personal Information”) we collect from you will be strictly used for the sole purpose of improving our services and will not knowingly be distributed to any third parties without your consent.
Information We May Collect From You
We may collect and process the following data about you:
Information you give us. You may give us information about you by filling in forms on our site www.aeries.com (our site) and by corresponding with us by phone, e-mail, post mail or otherwise. This includes information you provide when you use the “contact us” section of our site located at https://www.aeries.com/contact, discuss with us the provision of and/or receive services from Aeries Software, Inc., interact with us via our social media accounts (e.g., Facebook and Twitter) and when you report a problem with our site. The information you give us may include your name, address, e-mail address and phone number, job title and description.
Information we collect about you. With regard to each of your visits to our site we may automatically collect the following information:
- technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, browser type and version, browser plug-in types and versions, operating system, language settings and platform;
- information about your visit, pages you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs) and any phone number used to call our customer service number or members of our staff.
- email sent by Aeries may contain web beacons and other similar technologies to track the response rate to such communications. Web beacons (also known as pixel gifs, pixel tags, clear gifs, third-party pixels, or targeting pixels) are small graphics with a unique piece of identifying code, similar to a cookie, used to track the online movements of a web user or to access previously set cookies. These tools are used in email communications to determine whether messages have been opened or otherwise acted upon.
Information we receive from other sources. We may receive information about you if you use any of the other websites we operate or the other services we provide. In this case we will inform you when we collect that data that it may be shared internally and combined with data collected on this site. We are also working closely with third parties (including, for example, business partners, payment and delivery services) and may receive information about you from them.
Information We Store On Behalf Of Educational Agencies
Aeries and the services it provides to Educational Agencies comply with applicable provisions of law, including the Family Educational Rights and Privacy Act (“FERPA”) and equivalent federal and state laws.
Your Educational Institution uses Aeries’ services to assist with the administration of school-related activities and to provide a streamlined way to collect, organize, access, and report your information for educational purposes. These uses are specific to each Educational Institution and are governed by the contract between Aeries and your Educational Institution.
The data your Educational Institution stores on Aeries’ systems may include, but is not limited to, the following information about students and their guardians:
- Demographic information such as name, mailing address, email address, and date of birth;
- Student education records including, but not limited to student’s grades, class enrollment, and behavioral records;
- Financial information, including but not limited to fees and fines, such as Chromebook insurance, or administrative fees, determined by LEAs;
- Health-related information including your student’s immunizations and vision and hearing screening results;
- System usernames and passwords.
In addition to student/guardian information, Aeries also stores data provided by Educational Agencies related to teachers and other school employees, such as:
- Demographic information including, but not limited to, the individual’s name, address, email address, and date of birth;
- The individual’s ethnicity;
- Credentials obtained and the granting institution;
- Information about the individual’s employment with the Educational Institution;
- System usernames and passwords.
Your Educational Institution determines the information collected, maintained, and processed using Aeries’ services. Your Educational Institution retains the right to review, modify, and/or refuse to permit further collection or use of student data information at any time. Your Educational Institution uses Aeries’ services to assist with the administration of school-related activities and to provide a streamlined way to collect, organize, access, and report your information for educational purposes. These uses are specific to each Educational Institution and are governed by the contract between Aeries and your Educational Institution. If you have any questions regarding the collection, storage, and use of the information your Educational Institution shares with Aeries, please contact your Educational Institution directly.
Third-Party Service Providers
It’s important to us that we keep your information safe and secure. In order to help Aeries provide, maintain, protect and improve our services, Aeries shares information with other partners, vendors and trusted organizations to process it on our behalf in accordance with our instructions, Privacy Policy, and any other appropriate confidentiality, security or other requirements we deem appropriate. These companies will only have access to the information they need to provide the Aeries service.
You can find information on our official partners and service providers we work with below, including what data we share with them or they provide to us, the service they provide for Aeries and links to their respective privacy policies. This list may change over time, and we’ll work hard to keep it up-to-date. If you have any questions, please get in touch here.
LivingTree – for use of Aeries Financials.
Info shared: Financial information, including but not limited to fees and fines, such as Chromebook insurance, or administrative fees, determined by your Educational agency
ParentSquare – for use of Aeries Communications.
Info shared: Contact information, including but not limited to Names, emails, and telephone numbers, determined by your Educational Agency
At the direction of your Educational agency, Aeries will also provide access to your data to other third-party service providers. Your Educational agency is solely responsible for obtaining information from those third parties regarding certification and compliance with all applicable State and Federal Student Data Privacy laws. Aeries will never disclose your information to a third party without expressed consent from you or your Educational agency.
Ownership/Control of Student’s PII:
You shall retain all title to and ownership of and all proprietary rights with respect to User Data, and shall be solely responsible for its use thereof. You are also responsible for securing and backing up Your User Data. For customers in the Aeries Hosted environment, data is automatically backed up every hour. You hereby grants Aeries a worldwide, royalty-free, and non-exclusive license to access and use User Data for the sole purpose of enabling Aeries to provide the Services, and for the limited purposes set forth in Aeries Privacy Policy.
How Your Information Is Used
Personal Information. We may use your personal information:
to provide our products and services;
- for the specific purpose for which that information was collected;
- to address your customer service or technical support questions;
- to alert you of new products or services, features, or enhancements;
- to improve our products and services;
- as otherwise permitted by law; and
- for any other purpose with your consent.
Non-Identifiable Data. We may use and share Non-Identifiable Data (e.g. non-personal, de-identified information that can’t be used to identify you) for any lawful business purpose without any obligation or accounting to you. When we do so, we will take reasonable measures to ensure that the Non-Identifiable Data is not personally identifiable and cannot later be used to identify you.
How Your Information Will Not Be Used
- data will not be collected, at any time, to target advertising
- we will not create advertising profiles on any users
- we will not sell, trade, or rent any users information at any time
When We May Disclose Your Personal Information
We will only disclose your personal information for the purposes described below:
Service Providers. We may employ other companies and people to perform tasks on our behalf and we may need to share your personal information with them to provide services to you. Unless we tell you differently, they do not have any right to use your personal information beyond what is necessary to assist us.
We may disclose your personal information at the request of law enforcement or government agencies or in response to subpoenas, court orders, or other legal process to establish, protect, or exercise our legal or other rights or to defend against a legal claim or as otherwise required or allowed by law. We may disclose your personal information in order to protect the rights, property, or safety of a user or any other person. We may disclose your personal information to investigate or prevent a violation by you of any contractual or other relationship with us or your illegal or harmful activity.
Change of Control. Over time, Aeries may grow and reorganize. We may share your information, including personal information with affiliates such as a parent company, subsidiaries, joint venture partners or other companies that we control or that are under common control with us, in which case we will require those companies to agree to use your personal information in a way that is consistent with this Privacy Policy. In the event of a change to our organizations such that all or a portion of Aeries or its assets are acquired by or merged with a third-party, or in any other situation where personal information that we have collected from users would be one of the assets transferred to or acquired by that third-party, this Privacy Policy will continue to apply to your information, and any acquirer would only be able to handle your personal information as per this policy (unless you give consent to a new policy). We will provide you with notice of an acquisition within thirty (30) days following the completion of such a transaction, by posting on our homepage and by email to your email address that you provided to us. If you do not consent to the use of your personal information by such a successor company, subject to applicable law, you may request its deletion from the company. In the unlikely event that Aeries goes out of business, or files for bankruptcy, we will protect your personal information, and will not sell it to any third-party.
Marketing Communications. You have the right at any time to prevent us from contacting you for marketing purposes. You can opt-out of promotional communications by following the unsubscribe instructions provided in each promotional email that we send to you. We may continue to send you administrative emails; for example, periodic updates to our Privacy Notice, even if you indicate that you no longer wish to receive promotional email from us.
Retention and Modification of Your Personal Information
Correcting, Updating, Accessing, or Removing Personal Information. You can correct, update, or remove your personal information if it changes or if you no longer want to receive information from us beyond information related to our services. This can be done by emailing a request to legal@aeries.com. You may also request access to your personal information that we collect by sending a request to legal@aeries.com. We may not be able to completely remove your personal information from our systems in certain circumstances. For example, we may retain your personal information for legitimate business purposes, if it may be necessary to prevent fraud or future abuse, if required by law, or as retained in our data backup systems or cached or archived pages. All of your personal information that we keep will continue to be subject to the terms of this Privacy Notice to which you have previously agreed.
Your California Privacy Rights. California Civil Code Section 1798.83 permits users that are California residents to request certain information regarding our disclosure of personal information to third parties for such third parties’ direct marketing purposes. If you are a California resident and would like to make such a request, please contact us at legal@aeries.com.
Deletion. We will delete any or all data that we have collected from Students per the request of the School or District, at any time.
Data Retention Policy
We keep personal information until it is deleted, or until we no longer need it to provide you with the Service. We will not retain student personal information for any longer than is necessary for educational purposes and legal obligations, or to provide the Service for which we receive or collect the student personal information. In addition, we only keep student personal information for as long as the student’s account is active, unless we are required by law or the student’s school to retain it, or need it to protect the safety of our users. Note that some content may be kept after an account is deleted for school legal compliance reasons (e.g. maintenance of “education records” under FERPA or “student records” under various state student privacy laws).
Protection of Your Information
Data Breach Protocol — Protection of your privacy is important to us. In the event of a data breach, Aeries will adhere to the applicable Federal and/or State data breach regulations of the impacted user(s). For purposes of this policy, a breach is any unauthorized acquisition of computerized data that compromises the security, confidentiality, or integrity of personal information that we maintain.
In addition, Aeries takes various security measures—physical, electronic, and procedural—to help defend against the unauthorized access and disclosure of your information. In addition to the restrictions discussed in this Privacy Policy, our employees are required to comply with information security safeguards, and our systems are protected by technological measures to help prevent unauthorized individuals from gaining access. Aeries employees are trained to observe and comply with applicable federal and state privacy laws in the handling, processing, and storage of your information. These measures meet or exceed the requirements of applicable federal and state law.
Despite these precautions, no system can be completely secure and there remains a risk that unauthorized access or use, hardware or software failure, human error, or a number of other factors may compromise the security of your information. Upon discovery or notification of any unauthorized access disclosure, Aeries will take immediate measures to safeguard and prevent further dissemination of any personal information. When reasonably able to do so, Aeries will notify the impacted parties via contact information on record, with information including but not limited:
- Company contact information.
- A general description of the breach incident.
- An explanation, to the best of our knowledge, of what happened.
- A listing of the types of personal information that is believed to be compromised.
- If known, the date and time of the breach, or a best estimate.
- Whether the notification was delayed as a result of law enforcement.
- What steps the Company has taken to mitigate the situation, prevent it from happening again, and advice to the impacted individuals on how they can best protect themselves.
- Notifications will be sent via email to all impacted users. Written notice may be sent to the impacted Educational Agencies in addition to email. Depending on where the impacted user lives, they may have a legal right to receive notice of a security breach in writing.
Compliance
Aeries further certifies that Aeries complies with all Federal and State Data Privacy laws, including but not limited to the following:
FEDERAL
- FERPA – Family Education Rights and Privacy Protection Act
- COPPA – Children’s Online Privacy Protection Act
- PPRA – Protection of Pupil Rights Amendment
STATE
- AB 1584
- SB 1177 – SOPIPA – Student Online Personal Information Protection Act
Changes To Our Privacy Policy
Any changes we may make to our privacy policy in the future will be posted on this page. Please check back frequently to see any updates or changes to our privacy policy. We may revise our Privacy Policy from time to time. You can see when the last update was by looking at the “Last Updated” date at the top of this page. We won’t reduce your rights under this Privacy Policy without your explicit consent. If we make any significant changes, we’ll provide prominent notice by posting a notice on the Service or the Aeries Website and/or notifying you by email (using the email address you provided), so you can review and make sure you know about them.
We encourage you to review this Privacy Policy from time to time, to stay informed about our collection, use, and disclosure of personal information through the Service and Aeries Website. If you don’t agree with any changes to the Privacy Policy, you may terminate your account. By continuing to use the Service or the Aeries Website after the revised Privacy Policy has become effective, you acknowledge that you accept and agree to the current version of the Privacy Policy.
Contact
Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to:
Jonathan Cotton Executive Director of Operations Aeries Software, Inc., 770 The City Drive South, Suite 6500 Orange, CA 92868 888-487-7555
Legal@aeries.com.
Date last modified: April 24, 2019