Sign upLoginBook a demo

Privacy Policy

Last updated: March 2026

Edvio ("we", "us", "our") is a lead management platform for education businesses. This policy explains how we collect, use, store, and protect your personal data when you use our website (edvio.io) and platform (app.edvio.io). We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Information we collect

We collect the following types of information:

Account information: When you sign up, we collect your name, email address, phone number, business name, and password.

Lead and contact data: Information you store about your leads and students, including names, email addresses, phone numbers, enquiry details, and communication history. You are the data controller for this information and are responsible for ensuring you have a lawful basis to process it.

Communication data: SMS messages sent via our platform (powered by Twilio), email communications, and call logs.

Payment information: Billing details processed securely through Stripe. We do not store your full card details on our servers.

Ad tracking data: If you connect Facebook (Meta) or Google ad accounts, we process campaign and conversion data to help you track ad performance.

Usage data: Information about how you use the platform, including pages visited, features used, and device information.

Landing page data: If you create landing pages through Edvio, we collect form submissions and visitor analytics from those pages.

How we use your data

We use your information to:

  • Provide, maintain, and improve the Edvio platform
  • Process your subscription payments via Stripe
  • Send SMS and email communications on your behalf via Twilio
  • Track and report on your advertising campaign performance
  • Provide customer support and respond to your enquiries
  • Send you important service updates and product announcements
  • Detect, prevent, and address security issues or fraud

We process your data on the legal basis of contract performance (to deliver our service to you), legitimate interest (to improve our platform), and consent (for marketing communications).

Third-party services

We use trusted third-party services to operate our platform:

  • Supabase: Database hosting and authentication (data stored in the EU/UK region)
  • Vercel: Website and application hosting
  • Stripe: Payment processing (PCI DSS compliant)
  • Twilio: SMS and voice call services
  • Meta (Facebook): Ad tracking integration (only if you connect your account)

Each third-party provider has their own privacy policy and we ensure they meet appropriate data protection standards.

Data storage and security

Your data is stored securely using industry-standard encryption in transit (TLS) and at rest. We use trusted cloud providers with data centres in secure locations. Access to personal data is restricted to authorised personnel only. We conduct regular security reviews and follow best practices to protect your information. In the event of a data breach, we will notify affected users and the relevant authorities within 72 hours as required by law.

Data retention

We retain your account data for as long as your account is active. If you cancel your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes. Lead and contact data you store in Edvio is deleted when you delete it from the platform or when your account is closed.

Your rights

Under UK GDPR, you have the following rights:

  • Right of access: Request a copy of the personal data we hold about you
  • Right to rectification: Request correction of inaccurate data
  • Right to erasure: Request deletion of your personal data
  • Right to restrict processing: Request that we limit how we use your data
  • Right to data portability: Request your data in a portable format
  • Right to object: Object to processing based on legitimate interest

To exercise any of these rights, contact us at privacy@edvio.io. We will respond within 30 days.

Cookies

We use essential cookies to keep you logged in and maintain your session. We may also use analytics cookies to understand how our website is used. Essential cookies are necessary for the platform to function and cannot be disabled. You can disable non-essential cookies in your browser settings.

Children's privacy

Edvio is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

Changes to this policy

We may update this privacy policy from time to time. We will notify you of significant changes via email or through a notice on our platform. Continued use of Edvio after changes are made constitutes acceptance of the updated policy.

Contact

If you have questions about this privacy policy or how we handle your data, contact us at privacy@edvio.io.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.