EIMBox

Privacy Policy

Effective Date: 2026-01-01


1. Introduction

This Privacy Policy explains how “EIMBox” collects, uses, and protects information when you use the EIMBox School Management System application. This service is intended for use by registered educational institutions including schools, colleges, and madrasas in Bangladesh.

The application is intended for use under the supervision of registered educational institutions. Educational institutions remain the owner and controller of their institutional data.


2. Information We Collect

2.1 Google Sign-In Information

We collect only the following information from Google Sign-In:

We do not collect Google user ID, social ID, phone number, or any other Google account data.

2.2 Institution Data

We collect and store institutional data including:


3. How We Use Information

Collected data is used strictly for:

We do not sell, rent, or share personal data with any third parties.


4. Permissions Usage

4.1 Location

Location is used only during attendance submission to verify physical presence within the educational institution campus.

4.2 Camera

Camera is used only for scanning QR codes for verification purposes.

4.3 Bluetooth

Bluetooth is used only for connecting and printing via POS/thermal printers.

4.4 Notifications

Notifications are used for attendance updates, exam notices, payments, and institutional announcements. Users can disable notifications anytime from device settings.


5. Data Storage & Security

All institutional data is stored securely in a MySQL database hosted on https://eimbox.com over HTTPS encrypted connection.

We use commercially acceptable security measures to protect data. However, no method of transmission over the internet is 100% secure.


6. Cookies & WebView

The application uses WebView-based sessions and cookies to improve user experience, including session management, class, section, and exam-related data.


7. Data Retention

Data is retained as long as the institution account remains active. After account deactivation, data is stored for up to 180 days and then permanently deleted.


8. Data Sharing

We do not share, sell, or transfer any user or institutional data to third parties. Data is strictly accessible only to authorized users of the respective institution.


9. Account Management & Deletion

Institution administrators can create, edit, and delete teacher and student accounts.

Action Required? Account Deletion Request Link

or, View Account Deletion Policy

Account logout will clear session data immediately.


10. Third-Party Services

We use only the following services:

No advertising or analytics SDKs are used.


11. Children’s Privacy

This application is intended for supervised use under registered educational institutions. Student accounts are managed and created by institution authorities.


12. Security

We take reasonable measures to protect data using secure HTTPS communication and server-side protections.


13. Changes to This Policy

We may update this Privacy Policy from time to time. Users are advised to review this page periodically.


14. Contact Us

If you have any questions, contact us:

Home
Privacy Policy
Terms & Conditions
Account Deletion Policy