This document forms a Data Sharing Agreement (DSA) with your school and ParentPaperwork, when used as an integrated component of Groupcall Messenger. In order to use the ParentPaperwork platform your school must understand and accept this agreement. This document is in addition to your DSA with any 3rd party including Groupcall Messenger. You must ensure that you have a suitable DSA with each third party. This DSA implies no warranty.
The ParentPaperwork Platform
ParentPaperwork is the leader in paper form automation in schools, helping schools to digitise manual processes, dramatically reduce costs and improve liability management.
Data in ParentPaperwork
Student and Parent Contact Information
ParentPaperwork is designed to operate using the minimum personal information. In order to function it requires:
- Student First Name and Last Name
- Parent First Name and Last Name
- Student Postcodes
- School Groups
Upon your consent this information is transferred from the Groupcall Messenger cloud platform to the ParentPaperwork cloud platform within the confines of the Microsoft Azure global service. See below for details of Microsoft Azure and Microsoft Azure security.
School User Accounts
Your staff may have user accounts to log into ParentPaperwork. We maintain the following information:
- First Name
- Last Name
- Time Zone
This is the minimum information necessary to deliver user functionality.
Other Information – Via Form Templates
The online forms managed by you can contain any number of custom fields. These fields are generic, they can be text fields, checkboxes or select lists. You can label these fields, and in the case of checkboxes and select lists, labels the options presented and thus control what information is provided to you by people completing the forms.
ParentPaperwork does not exercise any control over what you use these fields for. A warning is displayed at the top of the Form Design page to remind you to give consideration to what personal or sensitive information you are capturing via the forms as this information will also be stored within the Microsoft Azure cloud platform.
Transfer and Use of Personal Information
ParentPaperwork enables you to create online forms to capture information. Some of this information may be personal and/or sensitive. The data captured can be exported by school staff users and transferred to other databases or online systems. The extent of Personal Information shared with these systems will depend upon each 3rd party’s requirements and you must have an explicit DSA to that effect with each partner.
All data in ParentPaperwork is hosted within the Microsoft Azure cloud platform: http://azure.microsoft.com/
Europe’s privacy regulators have determined that the contractual privacy protections Azure delivers to its enterprise cloud customers meet current EU standards for international transfers of data in numerous geographical locations. ParentPaperwork operates using Microsoft Azure Australia. In addition, within the boundary of services provided by or on behalf of Groupcall for use with Groupcall Messenger, Groupcall has carried out a full data security assessment, fully covering Data Protection Act and ISO27001 requirements to determine the compliance against EU standards, which is available on request. This check and assessment was carried out by Groupcall’s Information Security Officer.
ParentPaperwork employs browser cookies to improve your experience within the platform. Parents who are only completing online forms do not need to have cookies enabled.
School users logging into ParentPaperwork must have cookies enabled.
Data Security and Access
Physical and Network Security
Full details of Microsoft’s comprehensive approach to data security can be found at:
Microsoft publishes a white paper detailing security, privacy and compliance for the Azure hosting service:
You can create users (staff members) who can log into the ParentPaperwork website and view and modify data. There are options available to control the level of access to data for a user. It is your responsibility to consider that level and type of access each of your users will have.
The Paperwork Group maintains a range of physical and procedural internal controls over access within the organisation to your data and minimises access to only those personnel within our company that is necessary to maintain and deliver the ParentPaperwork service to you.
Our support team are able to resolve or advise you on any technical issues that you encounter while using ParentPaperwork. Often it is necessary for a ParentPaperwork support technician to view the issue with you, in order to diagnose it fully and offer a solution. In circumstances where support technicians need to view the issue with you, they might ask your permission to access your ParentPaperwork account; or use remote tools to view your computer while you are using ParentPaperwork. In which case, you should remain at your computer and supervise the entire session. All of our remote sessions allow you to retain control and allow you to terminate the session at any time. If your issue escalates and an additional support technician is required, then additional ParentPaperwork staff may join the remote session.
You are reminded that you should avoid sending personal information, such as student/contact records, to ParentPaperwork directly. You certainly should only send such information when supported by strong encryption, if there is an explicit requirement to do so. ParentPaperwork’s staff will advise the most secure method for transfer if there is such an explicit requirement.
Your school is required to consent to the Privacy Policies (ParentPaperwork & Groupcall) and Terms and Conditions of Use for ParentPaperwork (via Groupcall) as published on our web sites:
If you require further information please contact us firstname.lastname@example.org.