This policy applies to users of our services, and governs the collection and processing of data related to the use of our software platforms. A separate Marketing & Website Privacy Policy applies to visitors of our website and prospective customers.
Cobek Software (USA) LLC (“Cobek” or “we”) maintains a strict privacy policy and is committed to protecting your personal information. This Privacy Policy describes how we use the information that you provide to us when using our services. We will only use your personal information in accordance with this policy.
We process personal data on the basis of contractual necessity (to deliver the services) and, where applicable, legitimate interest or legal obligation.
Our Attendance Software (e.g., aPlus+ Attendance and Attend Core) collects and processes information provided by our customers, including:
- Names
- Institution email addresses
- Institution Student identification numbers and codes
- Course and enrollment information
- Collected attendance information
- IP address (if chosen by the customer)
In addition, our hosting infrastructure (e.g. AWS) may automatically log technical information such as IP addresses and request metadata for security and operational purposes. This data is not linked to user identities and is used solely for infrastructure monitoring and protection.
Customer Data remains under the customers' ownership and control. We process this data solely to provide and improve our services.
We do not disclose Customer Data to third parties unless required by law. However, we may use trusted affiliates, subcontractors, or agents (“Subprocessors”) to help deliver the services. All Subprocessors are contractually bound to ensure the same level of data protection.
We currently engage the following subprocessors to support the delivery of our services:
- Amazon Web Services (AWS): Cloud infrastructure and hosting services
- Google Workspace: Email and communication services
- Zendesk: Customer support and helpdesk ticketing
- Cobek Software Limited: Support services
We implement industry-standard measures to safeguard the data we collect and process. All employees, contractors, and Subprocessors with access to personal information are bound by strict confidentiality obligations.
Customers retain control over the rights of their data subjects (e.g., students). We will assist customers in responding to data subject requests, including access, correction, or deletion of Personal Data, as required by applicable laws.
Depending on your jurisdiction, you may also have the right to access, rectify, delete, or restrict the processing of your personal data. You may also have the right to object to certain processing activities or to lodge a complaint with a data protection authority.
To exercise your rights or request further details, please contact us using the information below.
We process educational records on behalf of the customer in compliance with FERPA regulations.
FERPA-protected information is used strictly for service delivery.
We will not disclose FERPA-protected data without explicit consent, except as permitted by FERPA or to authorized Subprocessors.
Upon termination of services, Cobek will securely delete and destroy Customer Data within 30 days (or as contractually required), except for data required to be retained by law.
For customers requiring a Data Processing Agreement (DPA), we offer a standard agreement that meets applicable regulatory standards.
Cobek may update this Privacy Policy periodically. We encourage you to review this policy regularly.
If you have questions or feedback about this policy, please email us at contact@cobek.com.
