{{ title }}
{{ body }}
This Data Processing Agreement ("DPA") forms an annex to the Terms and Conditions — Coaches ("Coach Terms") and governs the processing of personal data carried out by Influence Systems Consulting Limited, trading as SchoolMaker.co ("ISCL" or "SchoolMaker.co"), registered office: Unit B 3/F Kai Wan Hse, 146 Tung Choi St, Mongkok, Hong Kong, email: support@schoolmaker.co, on behalf of the Coach, a natural or legal person acting as a professional, identified when subscribing to the platform (the "Coach" or "Data Controller").
Capitalized terms not defined in this DPA have the meaning given in the Coach Terms. Terms from Regulation (EU) 2016/679 ("GDPR") are used as defined in that regulation.
In connection with the provision of the SchoolMaker platform (the "Software") and related services (the "Services"), ISCL acts as a processor within the meaning of Article 28 of the GDPR. The Coach acts as data controller for the personal data of its Users (members, learners, and anyone enrolled in its training space).
This DPA sets out the framework for such processing and ensures compliance with Article 28(3) and (4) of the GDPR. Annexes I and II form an integral part of this DPA. This DPA is without prejudice to the Data Controller's obligations under the GDPR.
As processor, ISCL undertakes to:
As data controller, the Coach undertakes to:
The Coach authorizes ISCL to engage the sub-processors listed in SchoolMaker.co's Privacy Policy (section on transfers and partners).
ISCL will inform the Coach of any addition or replacement of a sub-processor at least thirty (30) calendar days before implementation, by email to the contact designated under Section 8. The Coach may object in writing within that period. If the objection persists, the Parties will seek a good-faith solution or may terminate the Services in accordance with the Coach Terms.
ISCL undertakes to select only sub-processors providing sufficient guarantees under the GDPR and remains liable for the acts and omissions of each sub-processor.
Where a sub-processor processes data outside the European Economic Area, ISCL ensures transfers are covered by a mechanism recognized under Chapter V of the GDPR, in particular the European Commission's Standard Contractual Clauses or an equivalent mechanism.
Core platform hosting data is stored within the European Union (notably Ireland for application infrastructure and primary storage, and Germany for video hosting), as stated in the Legal Notice.
ISCL implements the technical and organizational measures described in Annex II, ensuring a level of security appropriate to the risk.
The Coach remains responsible for the security of its own systems, access credentials, and environments outside the Services provided by ISCL.
In the event of a personal data breach affecting data processed on behalf of the Coach, ISCL will notify the Coach within a maximum of forty-eight (48) hours of becoming aware of it, at the address indicated in Section 8.
The notification will include, where possible:
If all information is not immediately available, ISCL will provide known details and supplement the notification as further information becomes available.
The Coach designates a contact person for any DPA-related matter (data protection officer or other representative) by sending contact details to support@schoolmaker.co. If no designation is made, the Coach account holder will be deemed the contact point.
ISCL has appointed an external data protection officer: Maître Etienne Deshoulières, 121 boulevard de Sébastopol, 75002 Paris — contact@deshoulieres-avocats.com — https://www.deshoulieres-avocats.com/.
ISCL makes available to the Coach documentation reasonably necessary to demonstrate compliance with its obligations under this DPA.
The Coach may conduct one audit per year, directly or through an independent auditor, non-competing with ISCL and pre-approved by ISCL, limited to two (2) business days, subject to at least twenty (20) business days' prior written notice. The audit must not disrupt the provision of Services. Audit costs are borne by the Coach, unless the audit reveals a material breach attributable to ISCL.
ISCL will inform the Coach within seven (7) calendar days of any request received directly from a data subject regarding data processed on the Coach's behalf, and will not respond without the Coach's instructions.
ISCL will assist the Coach, to a reasonable extent and considering the nature of processing, in responding to data subject rights requests, conducting data protection impact assessments, and carrying out prior consultations with supervisory authorities, where such obligations fall on the Coach.
This DPA takes effect upon acceptance of the Coach Terms and remains in force for the duration of the contractual relationship between the Parties.
Liability of the Parties under this DPA is governed by the liability provisions of the Coach Terms, subject to mandatory provisions of the GDPR.
The Coach may terminate the Services in accordance with the Coach Terms. ISCL may suspend or terminate access if, after notification, the Coach insists on instructions that violate the GDPR or applicable law.
Upon termination of the Services, ISCL will, at the Coach's written choice sent to support@schoolmaker.co within thirty (30) days:
If no choice is expressed within the allotted period, ISCL will delete the data as per the second option above. Data ISCL is legally required to retain longer is not affected.
| Nature of Services | Online platform for creating, hosting, and managing courses, communities, and content for Coaches and their Users. |
|---|---|
| Duration of processing | Duration of the Services subscription, then as per Section 14 of this DPA. |
| Categories of data subjects | Users enrolled by the Coach (learners, members), the Coach's authorized collaborators, and anyone interacting with the Coach's space. |
| Categories of data | Identification and contact data (name, email, phone where applicable); account and authentication data; course progress and completion data; content published by Users (messages, forums, comments, assignments, uploaded files); videoconference or live session data where applicable; payment data processed by third-party providers (e.g. Stripe) on behalf of the Coach; technical logs (IP address, timestamps, activity logs) required for security and Service operation. |
| Purposes | Provision, hosting, and maintenance of the Software; account and access management; delivery of educational and community content; Service-related notifications; technical support; security, fraud prevention, and legal compliance. |
| Coach instructions | The Coach configures its space, access, content, and available integrations on the platform. Any additional specific instructions must be sent in writing to support@schoolmaker.co. |
ISCL implements in particular the following measures:
Version effective as of 9 June 2026
Download a PDF version of this agreement for your records or to share with your clients.
Download DPA (PDF)