Admissionary

Privacy Policy

Effective June 15, 2026

Template notice. This is a starting-point template intended for review and customization by qualified legal counsel before you rely on it. It is not legal advice. Because Admissionary may process information about minors, you should confirm your obligations under laws such as FERPA, COPPA, GDPR, and applicable U.S. state privacy laws.

1. Overview

This Privacy Policy explains how Admissionary (“we”) collects, uses, discloses, and protects personal information when you use our CRM for independent educational consultants (the “Service”). Consultants who use the Service to manage their clients are the controllers of the student and family data they enter; we process that data on their behalf as a service provider.

2. Information we collect

  • Account information. Consultant name, business name, email, password (hashed), and billing details.
  • Student and family data (PII). Information consultants enter or that families submit through public intake and booking forms — names, email addresses, phone numbers, graduation year, academic interests, notes, college lists, and related records.
  • Encrypted third-party credentials. Application logins consultants choose to store (for example, Common App or college portal credentials) are kept encrypted at rest.
  • Usage and device data. Log data such as IP address, browser type, and timestamps, used for security, rate-limiting, and abuse prevention.

3. How we use information

We use personal information to provide and operate the Service, authenticate users, process payments, send transactional and service messages, prevent fraud and abuse (including rate-limiting public forms), provide support, and comply with legal obligations.

4. Third-party processors

We share information with vendors who process it on our behalf under contract, only as needed to run the Service. These typically include:

  • Cloud hosting and database providers;
  • Email delivery providers (transactional and broadcast email);
  • SMS / text-messaging providers;
  • Payment processors for billing and invoicing.

We do not sell personal information. We may disclose information if required by law or to protect rights and safety.

5. Data retention

We retain personal information for as long as an account is active or as needed to provide the Service, then delete or anonymize it within a reasonable period after account closure, except where longer retention is required for legal, accounting, or security purposes. Short-lived security logs (such as rate-limit records) are retained only briefly.

6. Security

We use technical and organizational measures including encryption in transit, encryption of stored credentials, access controls, and row-level data isolation between firms. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

7. Children’s data

The Service is used by consultants to manage students, who may be minors. Consultants are responsible for obtaining any consents required from students and their parents or guardians before entering their information. We do not knowingly use this data for any purpose other than providing the Service to the consultant.

8. Your rights

Depending on your location, you may have rights to access, correct, delete, or port your personal information, or to object to certain processing. Because consultants control their clients’ data, requests about a student or family should generally be directed to the relevant consultant; we will assist them in responding.

9. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Service or by email.

10. Contact

For privacy questions or requests, contact privacy@admissionary.com.