Privacy Policy

SAS - School Administration System

Back to Home

Privacy Policy

Effective Date: March 11, 2026

Last Updated: March 11, 2026

At SAS (School Administration System), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our software and services.

Information We Collect

1.1 Personal Information

We collect personal information that you provide directly to us, including:

  • Name, email address, and contact information
  • School name and institutional details
  • Payment and billing information
  • Login credentials and account information
  • Student and staff data entered into the system

1.2 Automatically Collected Information

When you use our software, we may automatically collect:

  • IP address and device information
  • Browser type and version
  • Usage data and analytics
  • System logs and error reports
  • License activation and validation data

1.3 School Data

Data entered by schools includes:

  • Student information and academic records
  • Staff and teacher information
  • Financial and fee records
  • Attendance and performance data
  • Documents and reports generated within the system

How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our software and services
  • License Management: To validate and manage software licenses and subscriptions
  • Customer Support: To respond to your inquiries and provide technical assistance
  • Communication: To send you updates, notifications, and important information about the service
  • Analytics: To analyze usage patterns and improve our software features
  • Security: To detect, prevent, and address technical issues and security threats
  • Compliance: To comply with legal obligations and enforce our terms of service

Data Storage and Security

3.1 Data Storage

SAS is a self-hosted solution. School data is stored on your own servers or hosting infrastructure. We do not have direct access to your school's operational data stored in your installation.

3.2 Security Measures

We implement appropriate security measures including:

  • Encryption of data in transit and at rest
  • Secure authentication and authorization mechanisms
  • Regular security updates and patches
  • Access controls and audit logs
  • Regular security assessments and monitoring

Important: As a self-hosted solution, the security of your data also depends on your own hosting environment, server configuration, and security practices.

Data Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

  • Service Providers: With trusted third-party service providers who assist in operating our business (payment processors, hosting providers, analytics services)
  • Legal Requirements: When required by law, court order, or government request
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • Protection: To protect the rights, property, or safety of SAS, our users, or the public
  • Consent: With your explicit consent for any other purpose

Your Rights and Choices

You have the following rights regarding your personal information:

Access and Portability

Request access to your personal information and receive a copy in a portable format

Correction

Update or correct inaccurate or incomplete information

Deletion

Request deletion of your personal information (subject to legal obligations)

Opt-Out

Unsubscribe from marketing communications at any time

Restriction

Request restriction of processing in certain circumstances

To exercise these rights, please contact us at [email protected]

Children's Privacy

SAS is designed for use by educational institutions and may contain information about students, including minors. Schools using our software are responsible for:

  • Obtaining appropriate consent from parents/guardians
  • Complying with applicable child protection laws (e.g., FERPA, COPPA)
  • Ensuring proper data handling practices for student information
  • Implementing age-appropriate access controls

International Data Transfers

Our services are primarily operated in Malaysia. If you access our services from outside Malaysia, your information may be transferred to, stored, and processed in Malaysia or other countries. By using our services, you consent to such transfers. We ensure appropriate safeguards are in place for international data transfers.

Data Retention

We retain personal information for as long as necessary to:

  • Provide our services and maintain your account
  • Comply with legal obligations and resolve disputes
  • Enforce our agreements and policies
  • Maintain backups for disaster recovery (up to 90 days)

When you cancel your license or delete your account, we will delete or anonymize your personal information within 90 days, unless retention is required by law.

Third-Party Links

Our software may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information to them.

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date
  • Sending email notifications for significant changes
  • Displaying in-app notifications

Your continued use of our services after such updates constitutes acceptance of the revised policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

SAS - School Administration System
Johor Bahru, Johor, Malaysia
[email protected]
+60 12-345 6789
https://apasaja.my

Related Policies

Terms of Service Cookie Policy Refund Policy