Ruka hadi kwenye maudhui
Back to Home

Privacy Policy

Last Updated: February 25, 2026

Introduction

EduNexus ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our educational pathway analysis platform.

This policy complies with the Kenya Data Protection Act, 2019.

Information We Collect

Personal Information You Provide

When you use EduNexus, we collect:

  • Account Information: Name, email address, phone number
  • Student/Learner Information: Student name, grade level, school type, academic interests
  • Academic Data: Subject performance, strengths, weaknesses, pathway preferences
  • Payment Information: Payment method, transaction details (processed securely through Paystack)
  • Communication Data: Messages sent through our Guardian AI Tutor feature

Information Collected Automatically

  • Usage Data: Pages visited, features used, time spent on platform
  • Device Information: Browser type, operating system, IP address
  • Cookies: We use essential cookies for authentication and session management

How We Use Your Information

We use your information to:

  1. Provide Services: Generate pathway analyses, career recommendations, and AI tutoring
  2. Process Payments: Handle token purchases and subscription payments
  3. Improve Our Platform: Analyze usage patterns to enhance user experience
  4. Customer Support: Respond to your questions and resolve issues
  5. Send Updates: Notify you about account changes, new features (you can opt-out)
  6. Comply with Laws: Meet legal obligations under Kenyan law

Legal Basis for Processing (Kenya DPA 2019)

We process your data based on:

  • Consent: You explicitly agree when creating an account
  • Contract Performance: Necessary to provide our services
  • Legitimate Interest: Improving our platform and preventing fraud
  • Legal Obligation: Compliance with Kenyan laws and regulations

How We Protect Your Information

We implement industry-standard security measures:

  • Encryption: All data transmitted using SSL/TLS encryption
  • Secure Storage: Data stored on secure servers (Supabase - AWS)
  • Access Controls: Limited employee access on need-to-know basis
  • Regular Audits: Periodic security reviews and updates

Data Sharing and Disclosure

We DO NOT sell your personal information.

We may share your data with:

  • Service Providers: Payment processors (Paystack), cloud hosting (Supabase/AWS), AI providers (DeepSeek)
  • Legal Requirements: When required by Kenyan law or court order
  • Business Transfers: In case of merger, acquisition, or sale of assets (you'll be notified)

Your Rights Under Kenya DPA 2019

You have the right to:

  1. Access: Request a copy of your personal data
  2. Correction: Update incorrect or incomplete information
  3. Deletion: Request deletion of your data (subject to legal obligations)
  4. Data Portability: Receive your data in a portable format
  5. Withdraw Consent: Opt-out of marketing communications
  6. Object to Processing: Object to certain types of data processing
  7. Complain: File a complaint with the Office of the Data Protection Commissioner (Kenya)

To exercise these rights, email us at: kariukidennis092@gmail.com

Children's Privacy

EduNexus is designed for parents and guardians to track their children's academic pathways. We collect information about students/learners, but:

  • We do NOT knowingly collect data directly from children under 18
  • All student data is entered by parents/guardians
  • Parents/guardians control their children's data

If you're under 18, please have your parent/guardian use EduNexus on your behalf.

Data Retention

We retain your data:

  • Account Data: Until you delete your account
  • Assessment Results: As long as your account is active
  • Payment Records: 7 years (Kenyan tax requirements)
  • Chat History: Until you delete conversations or close your account

You can request data deletion at any time by contacting us.

Cookies Policy

We use cookies for:

  • Essential Cookies: Authentication, session management (required)
  • Analytics Cookies: Understanding how you use our platform (optional)

You can control cookies through your browser settings.

International Data Transfers

Your data is primarily stored in servers located in:

  • Primary: AWS Ireland (EU - GDPR compliant)
  • Backup: AWS Frankfurt (EU - GDPR compliant)

We ensure adequate safeguards for international data transfers as required by Kenya DPA 2019.

Changes to This Privacy Policy

We may update this policy from time to time. We'll notify you of significant changes by:

  • Email notification
  • Notice on our website
  • Update to "Last Updated" date

Continued use after changes means you accept the updated policy.

Contact Us

Data Controller: EduNexus

Email: kariukidennis092@gmail.com

Location: Nairobi, Kenya

Kenya Data Protection Office:

Office of the Data Protection Commissioner

Website: www.odpc.go.ke

Email: complaints@odpc.go.ke

Your Consent

By using EduNexus, you consent to this Privacy Policy and agree to its terms.

🇰🇪 EduNexus - Building Your Child's Future Together

Online: 8am - 8pm