Made to Teach

Legal

Privacy Policy

Effective date: 7 March 2026
Applies to import.madetoteach.com.au and related Made to Teach timetable import services.

Made to Teach respects the privacy of teachers and school staff who use our app and timetable import tools. This Privacy Policy explains how we collect, use, store, and disclose personal information when you use this site or the related import flow in the Made to Teach app.

We handle personal information in line with the Privacy Act 1988 (Cth) and the Australian Privacy Principles where they apply.

1. Who this policy covers

This policy applies to the timetable import site at import.madetoteach.com.au, the one-time code flow that connects the site to the Made to Teach mobile app, and the timetable draft data created through that flow.

2. What information we collect

We collect information that is reasonably necessary to operate the import service and keep it secure.

2.1 Information you provide or upload

  • the one-time import code generated inside the app,
  • calendar files you upload, such as .ics timetable exports,
  • calendar event details needed to build a timetable draft, including titles, times, recurrence details, and locations,
  • support messages or emails you send to us.

2.2 Information created by the service

  • import session IDs and expiry times,
  • draft timetable rows created from a valid upload,
  • technical logs used for security, support, and operational debugging.

2.3 Technical information

  • IP address, browser type, and device metadata,
  • request timestamps, error logs, and session activity,
  • cookies required to keep a claimed import session attached to the current browser.

3. Calendar content and student privacy

Calendar exports can sometimes include more than timetable structure. Depending on the system used by a school or teacher, an uploaded file may contain class names, room names, teacher-entered notes, or in some cases student names embedded in event titles or descriptions.

Made to Teach does not want or require formal student records for timetable import. We ask users to upload the narrowest timetable file available and to avoid uploading unnecessary student-identifying or sensitive information.

We do not create a student record system from imported files. The import flow is intended only to turn timetable structure into a draft recurring timetable inside the app.

4. How we use information

  • to validate one-time import codes generated in the app,
  • to connect a browser upload session to the correct signed-in teacher account,
  • to parse calendar files and create a timetable draft,
  • to surface that draft back in the app for teacher review and confirmation,
  • to secure the service, prevent misuse, and investigate errors,
  • to comply with legal obligations and respond to lawful requests.

5. Drafts, confirmation, and retention

Uploading a file does not automatically apply a timetable inside the app. The import first becomes a draft that the teacher reviews and confirms in Made to Teach.

One-time import sessions are temporary. Pending or unused sessions may expire automatically. Parsed timetable draft rows are retained only as long as reasonably necessary to support the import and associated support, security, or operational needs.

We aim not to keep raw uploaded files longer than necessary for processing. Where feasible, we parse the file to the required timetable draft data and avoid treating the raw file as a long-term store of record.

6. Cookies and session handling

This site uses a small number of essential cookies to keep an active import session attached to the browser that claimed the one-time code. These cookies help prevent another browser from hijacking the upload flow. They are not used to build advertising profiles.

7. When we may disclose information

We may disclose information to trusted service providers that help us operate the service, such as:

  • Supabase for database and backend services,
  • Vercel for web hosting and deployment infrastructure,
  • professional advisers, security providers, or regulators where reasonably necessary.

We do not sell personal information.

8. Cross-border processing

Some of our service providers may process or store information outside Australia, including in the United States or other jurisdictions where their infrastructure operates. Where that happens, we take reasonable steps to work with providers that offer appropriate security and privacy protections.

9. Data security

We use reasonable technical and organisational measures to protect information against unauthorised access, misuse, loss, or disclosure.

  • restricted backend access,
  • short-lived import codes and session expiry,
  • signed session cookies,
  • role-based database access and infrastructure controls.

No online system can be guaranteed perfectly secure, but we aim to keep the risk proportionate and well managed.

10. Access, correction, and complaints

If you want to request access to, correction of, or deletion of personal information we hold about you, contact us at privacy@madetoteach.com.au.

If you believe we have mishandled your information, contact us first so we can investigate. If you are not satisfied with the outcome, you may contact the Office of the Australian Information Commissioner at oaic.gov.au.

11. Changes to this policy

We may update this Privacy Policy from time to time as the product evolves. The latest version will be published on this site with a revised effective date.