Coursensu Privacy Policy

Learn what kind of personal information we collect.

Coursensu Privacy Policy

Contact us

Coursensu
Email
LinkedIn

1. Introduction

Coursensu Limited (“Coursensu”, “we”, “us”, “our”) provides a learning design and course quality enhancement platform used by educational institutions and organisations.

When Coursensu is provided to an institution (such as a university), that institution acts as the Data Controller under UK GDPR. Coursensu acts as a Data Processor, processing personal data only on documented instructions from the Controller.

This Privacy Policy explains how personal data is processed when using the Coursensu platform.

2. Categories of Personal Data We Process

We process limited categories of personal data necessary to deliver the Service.

These may include:

Account Information

  • Name
  • Institutional email address
  • Organisation name
  • Role within the organisation
  • Optional profile photo

Platform Activity Data

  • Learning designs and course content created by users
  • Collaboration metadata (e.g. authorship, edit history)
  • Audit and usage logs

Technical Data

  • IP address
  • Device/browser information
  • Login timestamps
  • Security and access logs

Integration Data (where Moodle or other LMS integrations are enabled)

  • Course titles
  • Course identifiers
  • Section and activity structure
  • Course-level metadata

We do not require or intentionally process:

  • Learner data
  • Individual learner performance data
  • Attendance records
  • Special category personal data

3. Purposes of Processing

Personal data is processed solely for the purpose of delivering the Coursensu Service, including:

  • User authentication and account management
  • Learning design creation, storage and collaboration
  • Course structure analysis and reporting
  • Learning design export into LMS environments
  • User-initiated AI-assisted content suggestions
  • Service improvement through aggregated, non-identifiable analytics
  • Security, fraud prevention and system integrity

We do not use personal data for direct marketing, profiling, or automated decision-making.

We do not sell personal data to third parties.

4. Legal Basis for Processing

Where Coursensu acts as a Data Processor, the legal basis for processing is determined by the Data Controller (e.g. your institution).

Typically, this will be:

  • Processing necessary for the performance of a contract; and/or
  • Legitimate interests in providing secure and effective educational services.

5. International Data Transfers

Coursensu uses established hosting and infrastructure providers. Personal data may be processed outside the UK or EEA, including in the United States.

Where international transfers occur, they are safeguarded through:

  • Standard Contractual Clauses (SCCs) recognised under UK GDPR; and
  • Supplementary technical and organisational safeguards including encryption and access controls.

For enterprise customers with specific data residency requirements, regional hosting (including UK or EU locations) may be made available by contractual agreement.

6. Data Retention

Personal data is retained for the duration of the active subscription between your organisation and Coursensu.

If a subscription lapses:

  • The organisation enters a read-only state.
  • User accounts and user-generated content are retained for a maximum of two years following subscription expiry, unless earlier deletion is requested.
  • After this period, data is permanently deleted.

Users may delete their own account at any time via a self-service feature. This results in deletion of the user profile and learning designs created by that user.

Backups are created daily and retained for seven business days for disaster recovery purposes. User-deleted data is removed from active systems and will not appear in subsequent backups.

Data exchanged with Moodle via REST API is either processed ephemerally to fulfil a request or stored within the organisation’s Moodle environment.

7. Data Subject Rights

As Coursensu acts as a Data Processor, rights requests should be directed to your institution as Data Controller.

Within the platform:

  • Users can access and export their learning designs.
  • Users can update their own profile data.
  • Users can delete their own account and associated learning designs.

Where a formal rights request is submitted to the Controller, Coursensu will act on documented instructions in accordance with the Data Processing Agreement.

No automated decision-making or profiling affecting individuals takes place within the Service. AI-assisted features are user-initiated and advisory in nature.

Under UK GDPR, you have the following rights:

Your right of access

You have the right to request access to the personal data held about you. In most cases, you can access your profile information and learning designs directly within the platform. Formal Subject Access Requests should be directed to your organisation as Data Controller.

Your right to rectification

You have the right to request correction of inaccurate or incomplete personal data. You can update your profile information within the platform. For other corrections, contact your organisation.

Your right to erasure

You have the right to request deletion of your personal data in certain circumstances. You may delete your account using the platform’s self-service feature. Where erasure is requested through your organisation, Coursensu will act on the Controller’s instructions in accordance with contractual obligations.

Your right to restrict processing

You have the right to request restriction of processing in certain circumstances (for example, if you contest the accuracy of the data). Such requests should be made to your organisation as Data Controller.

Your right to object to processing

You have the right to object to processing in certain circumstances. Coursensu does not process personal data for direct marketing or profiling. Objections should be raised with your organisation.

Your right to data portability

Where applicable, you have the right to receive personal data you have provided in a structured, commonly used format. Users can export their learning designs directly from the platform. Formal portability requests should be made via the Data Controller.

Right to lodge a complaint

You have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data protection rights have been infringed.

8. Data Processors and Sub-Processors

Coursensu uses a limited number of specialist service providers to deliver the Service, including:

  • Hosting and infrastructure providers
  • Security and content delivery services
  • AI service providers (for optional assistive features)

All such providers operate under Data Processing Agreements that include:

  • Processing only on documented instructions
  • Confidentiality obligations
  • Appropriate technical and organisational security measures
  • Assistance with data subject rights and breach notifications
  • Standard Contractual Clauses for international transfers

Coursensu does not permit processors to use personal data for their own purposes.

9. Security Measures

Coursensu implements appropriate technical and organisational measures to protect personal data, including:

  • Encryption in transit using TLS 1.2 and TLS 1.3.
  • Encryption at rest using industry-standard AES-256
  • Role-based access controls
  • Audit logging
  • Secure network protection services
  • Restricted internal access policies

Access to personal data is limited to authorised personnel and only where operationally necessary.

10. Cookies

Coursensu uses cookies and similar technologies necessary for platform functionality, authentication, and security. Where applicable, users are informed about cookie use when accessing the platform - see Cookies.

11. Complaints

Individuals have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if they believe their data protection rights have been infringed.

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113
ICO website: https://www.ico.org.uk

12. Contact

Coursensu Ltd
Last updated: 11 Feb 2025

For privacy-related queries, please contact support@coursensu.com with your request.

Inbox inspiration

Receive the weekly Design for Learning newsletter to get the latest blog posts and instructional design strategies delivered for free via email.
We respect your data (find out more).
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Want to use
engaging learning activities
in your next learning design?

We help you structure learning activities, align with learning outcomes and collaborate with subject experts to create learning experiences in any format and for any platform.

Log in
Coursensu - main logo
Made with 💚 in Scotland, UK
The toolkit:

Learning Designer

An illustration of the Learning Designer
The visually collaborative platform for designers, editors and contributors to create learning experiences.

Course Companion

An illustration of the Course Companion
The virtual learning design assistant for educators and course editors that lives within your LMS
View your designs
Made for
Higher EducationLearning & Development
Explore active learning
Teaching, learning & assessment strategiesInstructional and learning design terminologyOutcomes-driven learning verbsLearning technologies
Write effective outcomes
Try the learning outcome writing tool
Convert design briefs into learning design storyboards
Convert briefs into a Coursensu design storyboardConvert briefs into a PDF storyboard documentConvert briefs into a PPTX storyboard document
How we compare to...
Design documentsLearning workshop cardsSpreadsheetsWhiteboards
Discover
Book a demoSupport guidesOur blogRecent platform developmentsPedagogy dictionaryLearning design workshop cards
Company
About CoursensuPricingPurchasePowered by researchPrivacy policyTerms and conditionsData processingCookiesAccessibility
© 2025 Coursensu Ltd. All rights reserved
LinkedIn
hello@coursensu.com