SpurrCampus
Effective Date: May 20, 2026
Last Updated: May 20, 2026
1. Introduction
SpurrCampus is operated by Spurr Empire Limited, Kingston, Jamaica, West Indies.
This Privacy Policy explains how Spurr Empire Limited, through SpurrCampus, collects, uses, stores, shares, protects, and manages personal data when individuals, schools, parents, guardians, staff, students, and other authorized users use our websites, portals, applications, APIs, and related services.
In this Privacy Policy, “SpurrCampus,” “we,” “us,” and “our” refer to Spurr Empire Limited and the SpurrCampus platform. “You” refers to users of the platform, including school administrators, staff, parents, guardians, authorized representatives, students where applicable, and visitors to our websites.
This Privacy Policy applies to SpurrCampus websites, web portals, mobile applications, administrative tools, parent portals, staff portals, operations portals, APIs, and related services, including but not limited to:
- www-staging.spurrcampus.com
- web-staging.spurrcampus.com
- ops-staging.spurrcampus.com
- api-staging.spurrcampus.com
2. Our Commitment to Privacy
SpurrCampus is designed to support school registration, student management, parent engagement, check-in and check-out workflows, bulletins, announcements, notifications, and related school operations.
Because the platform may process information about children, parents, guardians, staff, school representatives, and authorized pickup or drop-off persons, we treat privacy, security, and responsible data handling as core obligations.
We process personal data in accordance with applicable privacy and data protection laws, including the Jamaica Data Protection Act, 2020, and, where applicable, the General Data Protection Regulation of the European Union and United Kingdom data protection requirements.
3. The Role of Schools and SpurrCampus
In most cases, schools, early childhood institutions, nurseries, preparatory schools, educational organizations, and similar institutions using SpurrCampus decide what personal data is collected, why it is collected, who may access it, and how it is used for school operations. In those cases, the school is generally the Data Controller.
SpurrCampus generally acts as a Data Processor or service provider when we process personal data on behalf of a school and according to the school’s instructions.
SpurrCampus may also act as a Data Controller for certain information we process for our own business, legal, security, customer support, billing, product improvement, and service administration purposes.
4. Personal Data We Collect
The personal data we collect depends on the services used, the school’s configuration, and the role of the user.
We may collect information about schools and organizations, including school name, branch or campus details, address, contact persons, phone numbers, email addresses, billing details, subscription details, configuration settings, support requests, and administrative account information.
We may collect information about parents, guardians, drivers, emergency contacts, and authorized representatives, including names, email addresses, phone numbers, home addresses, relationship to students, profile photos, identification or verification details where required by the school, authorized pickup or drop-off permissions, account login details, notification preferences, check-in and check-out confirmations, and communication history.
We may process student and child-related information entered or managed by schools, including student names, dates of birth, gender, student identification numbers, class, grade, branch, campus, group, house, club, tags, enrollment details, parent and guardian relationships, student photos, attendance-related records, check-in and check-out records, pickup and drop-off history, emergency contacts, registration forms, supporting documents, and school-related notes or instructions.
We may collect information about school staff and users, including names, email addresses, phone numbers, job titles, roles, assigned branches, classes or permissions, login credentials, user activity, audit logs, support communications, and system access records.
When check-in, check-out, pickup, drop-off, or attendance-related features are used, we may process information such as the date and time of the event, the student involved, the parent, guardian, representative, or staff member involved, the method used, confirmation status, staff notes, override details, photos where configured, device information, and audit history.
When communication features are used, we may process message titles, message bodies, communication channels, recipients, senders, audience selections, delivery status, read status where available, message templates, attachments, images, notification preferences, and related communication records.
We may also collect technical and usage information, including IP addresses, browser type, device type, operating system, pages or features used, access times, referring pages, error logs, authentication logs, security events, cookies, and similar technologies.
5. Sensitive Personal Data and Children’s Data
Some information processed through SpurrCampus may be sensitive or require special protection. This may include children’s personal data, student photos, parent or guardian photos, identification information, emergency contact information, safety-related notes, health or allergy information where a school chooses to collect it, and instructions relating to custody, pickup restrictions, or student welfare.
Schools are responsible for ensuring that they have the proper legal authority, consent, notice, or other lawful basis to collect and process sensitive personal data through SpurrCampus.
SpurrCampus applies heightened care to children’s data and school safety-related information.
6. How We Use Personal Data
We use personal data to provide, operate, maintain, secure, and improve SpurrCampus.
This includes using personal data to create and manage accounts, support school registration and enrollment, manage student records, connect students with parents, guardians, staff, and authorized representatives, manage roles and permissions, support check-in and check-out workflows, send confirmations and alerts, publish bulletins and announcements, provide in-app inbox functionality, manage school branches and classes, support attendance-related activities, and provide administrative tools.
We may also use personal data to verify authorized users, confirm pickup and drop-off permissions, display student, parent, guardian, or staff photos for safety and identification, maintain audit logs, prevent unauthorized access, investigate suspicious activity, and protect students, users, schools, and the platform.
We use personal data to communicate with users, respond to support requests, send transactional messages, provide account and security notices, deliver school-related messages, and share product or service updates where permitted.
We may also use data to troubleshoot errors, improve performance, analyze usage, test features, maintain backups, monitor security, comply with legal obligations, enforce our agreements, and protect our legal rights.
7. Lawful Basis for Processing
Where required by applicable law, personal data is processed on an appropriate lawful basis.
Depending on the circumstances, this may include consent, performance of a contract, compliance with a legal obligation, legitimate interests, protection of vital interests, or the performance of a task carried out in the public interest or under official authority.
Where a school is the Data Controller, the school is responsible for identifying and documenting the lawful basis for the personal data it collects and instructs SpurrCampus to process.
Where SpurrCampus acts as a Data Controller, we will rely on the lawful basis that applies to the specific processing activity.
8. How We Share Personal Data
We do not sell personal data.
We may share personal data with schools and authorized school users based on their roles, permissions, and the school’s configuration.
We may share relevant information with parents, guardians, and authorized representatives, including student information connected to their account, check-in and check-out confirmations, school bulletins, announcements, communication history, authorization status, and pickup or drop-off records involving them.
We may share personal data with trusted service providers who help us operate SpurrCampus. These may include cloud hosting providers, database and storage providers, email delivery providers, SMS providers, WhatsApp messaging providers, push notification providers, payment processors, analytics providers, monitoring tools, customer support tools, security providers, and professional advisers.
These service providers may only process personal data as needed to provide services to us or to the school and must protect the data appropriately.
We may also disclose personal data where required or permitted by law, including to comply with court orders, regulatory requests, lawful government requests, law enforcement inquiries, legal obligations, safety concerns, or to protect our rights, users, schools, students, or the public.
If Spurr Empire Limited is involved in a merger, acquisition, financing, reorganization, sale of assets, or similar business transaction, personal data may be transferred as part of that transaction, subject to appropriate safeguards.
9. International Transfers
SpurrCampus may use cloud hosting, infrastructure, support, security, analytics, communication, or payment providers located outside Jamaica. This means personal data may be transferred to, stored in, or accessed from countries other than Jamaica.
Where required by applicable law, we use appropriate safeguards for international transfers. These may include contractual protections, data processing agreements, access controls, encryption, vendor due diligence, and other reasonable technical and organizational measures.
Where GDPR applies, international transfers will be handled using legally recognized safeguards unless an applicable exception applies.
10. Security
We use reasonable technical, administrative, and organizational measures designed to protect personal data from unauthorized access, loss, misuse, alteration, disclosure, or destruction.
These measures may include encryption in transit, secure authentication, role-based access controls, audit logging, least-privilege access, secure cloud infrastructure, backups, monitoring, alerting, staff access controls, security reviews, and incident response procedures.
No system can be guaranteed to be completely secure. However, we take reasonable steps to protect the information processed through SpurrCampus.
11. Data Retention
We retain personal data for as long as necessary to provide the Services, support school operations, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and meet audit or safety requirements.
Retention periods may vary depending on the type of data, the school’s retention requirements, legal obligations, contractual obligations, backup cycles, audit needs, and whether the relevant account remains active.
Where SpurrCampus processes data on behalf of a school, the school is generally responsible for determining how long student, parent, guardian, staff, and school records should be retained.
When personal data is no longer required, we will delete, anonymize, or securely retain it as required or permitted by law.
12. Data Subject Rights
Depending on applicable law and your relationship with SpurrCampus or the school, you may have rights in relation to your personal data.
These rights may include the right to be informed about how your data is used, the right to access your personal data, the right to correct inaccurate or incomplete data, the right to request deletion or erasure, the right to restrict processing, the right to object to certain processing, the right to data portability, the right to withdraw consent where processing is based on consent, the right to object to direct marketing, and the right to complain to a data protection authority.
If your request relates to student records, school communications, check-in or check-out records, parent or guardian access, staff records, or other information controlled by a school, we may refer your request to the relevant school or require you to contact the school directly.
For account access, deletion, and other personal-data requests, see Your account and data . To delete your login, follow the steps on our account deletion page.
To make other privacy requests, you may contact us using the contact details in Section 23. We may need to verify your identity before responding.
13. Children’s Privacy
SpurrCampus is designed for use by schools and authorized adults in connection with school operations. The Services are not intended for children to independently create accounts or submit personal data unless a school has enabled a specific student-facing feature and has the appropriate authority to do so.
We do not knowingly collect personal data directly from children without appropriate authorization from the school, parent, guardian, or other authorized party.
Schools are responsible for ensuring that they have the necessary authority, consent, notice, or lawful basis to collect and process children’s information through SpurrCampus.
If you believe that a child’s personal data has been submitted without proper authority, please contact us.
14. Photos and Images
SpurrCampus may allow schools to upload, capture, store, or display photos of students, parents, guardians, staff, or authorized representatives.
These photos may be used for identification, safety, check-in and check-out confirmation, pickup and drop-off authorization, account verification, or school administration.
Schools are responsible for ensuring that they have the appropriate consent, notice, or lawful basis to upload, capture, store, and use photos through SpurrCampus.
Users must not upload images that are unlawful, inappropriate, misleading, or unrelated to the intended school purpose.
15. Communications and Notifications
SpurrCampus may support communications through email, SMS, WhatsApp, push notifications, in-app messages, and system alerts.
Some communications are transactional, operational, security-related, or safety-related. These may include check-in confirmations, check-out confirmations, account security notices, school alerts, registration updates, and administrative notices.
Other communications may be optional, such as certain product updates or marketing messages. Where required by law, users may opt out of optional communications.
Even if a user opts out of marketing communications, the user may still receive service-related, safety-related, school-related, security-related, or transactional messages.
16. Cookies and Similar Technologies
We may use cookies, local storage, pixels, and similar technologies to operate the Services, keep users signed in, remember preferences, improve performance, analyze usage, support security, prevent fraud, and improve website functionality.
Users may be able to manage cookies through their browser settings. Disabling cookies may affect the functionality of the Services.
17. Third-Party Services
The Services may contain links to third-party websites, tools, or services. This Privacy Policy does not apply to third-party services that we do not control.
Schools may also choose to use or integrate SpurrCampus with third-party tools, such as payment processors, messaging providers, or other school systems. Those third parties may have their own privacy policies and data handling practices.
18. Data Breaches and Security Incidents
If we become aware of a security incident involving personal data, we will take reasonable steps to investigate, contain, and address the incident.
Where required by law or contract, we will notify affected schools, users, regulators, or other relevant parties.
Where SpurrCampus acts as a Data Processor, we will notify the relevant school or Data Controller as required by our agreement and applicable law.
19. Automated Processing
SpurrCampus may use automated rules to support operational workflows, including role-based access control, notification routing, audience filtering, permission checks, and check-in or check-out status updates.
SpurrCampus is not intended to make decisions about students, parents, guardians, or staff solely by automated means where those decisions produce legal or similarly significant effects without appropriate human involvement.
20. Marketing
Where permitted by law, we may use contact information to send information about SpurrCampus products, services, updates, or offers.
Users may opt out of marketing communications by using the unsubscribe option in the message or by contacting us.
We do not sell personal data to third-party advertisers.
21. School Responsibilities
Schools using SpurrCampus are responsible for:
- Providing appropriate privacy notices to parents, guardians, students, and staff
- Obtaining required consents or identifying other lawful bases
- Configuring user roles and permissions appropriately
- Keeping access limited to authorized persons
- Ensuring that data entered into SpurrCampus is accurate and lawful
- Responding to data subject requests where the school is the Data Controller
- Complying with applicable education, child protection, privacy, and data protection laws
22. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
If we make material changes, we may provide notice by posting the updated Privacy Policy on our website, notifying school administrators, or using other appropriate methods.
The updated Privacy Policy will be effective as of the date stated at the top of the policy unless a different effective date is provided.
23. Contact Us
If you have questions, concerns, or requests about this Privacy Policy or the handling of personal data, you may contact us at:
Spurr Empire Limited
Kingston, Jamaica, West Indies
Email: admin@spurrcampus.com
Phone: 876 926 2236
For requests relating to school-controlled data, you may also need to contact the relevant school directly. You may also use our Contact page for general inquiries.