Logo

Privacy Policy

This Privacy Policy outlines how CAIMS (Cloud-Based Academic Information Management System) collects, processes, and protects data within our school management platform.

1. Introduction

This policy is designed to comply with the Cyber and Data Protection Act [Chapter 12:07] of Zimbabwe. CAIMS provides a centralized digital platform for schools, colleges, and academies in Zimbabwe to manage academic, financial, and administrative tasks. We are committed to maintaining the confidentiality of student, parent, and staff data while ensuring seamless school operations.

2. Information We Collect

In providing our services, we collect and process the following categories of personal data:

  • Student Data: Names, dates of birth, enrollment details, attendance records, grades (ZIMSEC/Cambridge compatibility), disciplinary records, and health/allergy information.
  • Parent/Guardian Data: Contact details (phone numbers for SMS/WhatsApp notifications), physical addresses, and relationship to the student.
  • Financial Data: School fee payments, transaction histories (USD, ZWG/ZWL...etc), invoice details, and billing records.
  • Staff Data: Employment records, qualifications, payroll information, system activity log and system login credentials.
  • Usage Data: Technical information including IP addresses, browser types, and access logs to ensure system security and performance.

3. Purpose of Data Processing

We process data only for purposes essential to school management:

  • Academic Management: Tracking attendance, generating report cards, and managing class schedules.
  • Financial Administration: Processing fee payments, generating receipts, and managing school accounts (Cash/Bank books, Trial Balances).
  • Communication: Sending automated SMS, WhatsApp, and email notifications regarding fees, events, and student performance.
  • Security & Audit: Maintaining audit trails for financial transactions and securing user authentication.

4. Data Sharing and Disclosure

CAIMS does not sell or lease personal data to third parties. Data is only shared in the following scenarios:

  • Authorized School Personnel: Data is accessible to designated administrators and teachers based on their system roles.
  • Regulatory Compliance: When required by the Ministry of Primary and Secondary Education or other legal authorities in Zimbabwe.
  • Service Providers: With trusted technical partners who provide cloud hosting or SMS gateway services, subject to strict data processing agreements.

5. Data Security

We employ robust security measures to safeguard information:

  • Encryption: All data transmitted between your device and our servers is secured via SSL/TLS encryption.
  • Access Control: Multi-level user authentication ensures that sensitive financial and academic data is only visible to authorized users.
  • Backups: Regular cloud-based backups are performed to prevent data loss with a 14 day data retention policy.

6. Your Rights

Under the Cyber and Data Protection Act of Zimbabwe, users (or their legal guardians) have the right to:

  • Access: Request a copy of the data held within the CAIMS system.
  • Rectification: Request the correction of inaccurate student or financial records.
  • Erasure: Request the deletion of data when it is no longer required for legal or educational purposes.
  • Objection: Object to the processing of data for marketing purposes.

7. Children's Privacy

As a school management system, we process data of minors. We rely on the school's authority and parental consent (provided during enrollment) to process this information for educational advancement and student welfare.

8. Contact Information

For inquiries regarding this policy or to exercise your data rights, please contact the CAIMS team via WhatsApp (+263 78 324 3738) and Email ([email protected]).