Important: ChromeWatch processes the personal information of students, including children under 18. We take this responsibility seriously. This policy explains exactly what we collect, why, and how it is protected under South Africa's Protection of Personal Information Act (POPIA).
Who We Are
ChromeWatch is a SaaS platform operated by ChromeWatch, a South African technology platform. ChromeWatch provides centralised web browsing monitoring for schools and educational institutions that manage Google Workspace for Education environments.
In this policy, "ChromeWatch", "we", "us", and "our" refer to ChromeWatch and its operating team. "You" refers to the school, IT administrator, teacher, or parent using the platform, and by extension the students whose data is processed through it.
What This Policy Covers
This Privacy Policy applies to all personal information processed by the ChromeWatch platform, including:
- Browsing activity data collected by the ChromeWatch Chrome extension on managed student devices
- Account and authentication data for school staff who log into the ChromeWatch dashboard
- Administrative data about schools and authorised users held by ChromeWatch
- Network-level DNS query data collected by the ChromeWatch DNS resolver, where deployed by the school on their network infrastructure
This policy does not cover websites or services operated by third parties, including Google (whose services are used for authentication). Please refer to Google's own Privacy Policy for information on how Google handles your data.
What Data We Collect
ChromeWatch collects two categories of data:
3.1 — Student Browsing Data (via the Chrome extension)
| Data point | Description | Example |
|---|---|---|
| URL | The full web address of each page visited | https://example.com/page |
| Page title | The title of the visited page as shown in the browser tab | Chapter 4 — Science Notes |
| Timestamp | The date and time the page was visited | 2026-03-01 09:14:32 |
| Google account email | The school-issued Google Workspace email of the signed-in student | admin@chromewatch.co.za |
ChromeWatch does not collect passwords, page content, keystrokes, screenshots, location data, or any information beyond the four fields listed above. See section 3.3 for DNS data collected separately where the ChromeWatch DNS resolver is deployed.
3.2 — Staff Authentication Data (for dashboard access)
| Data point | Description |
|---|---|
| Google account email | The email address of the school staff member used to log into the ChromeWatch dashboard via Google OAuth |
| Session token | A temporary session token stored in the browser to keep staff logged in. Automatically cleared on logout or session expiry. |
No passwords are stored by ChromeWatch. All authentication is handled by Google OAuth 2.0.
3.3 — Network DNS Query Data (where DNS resolver is deployed)
Where a school deploys the ChromeWatch DNS resolver on their network, ChromeWatch additionally collects DNS query data from devices on that network. This data is collected at the network level and is not tied to a Google account — it is recorded per source IP address. Linking a DNS event to a specific student requires correlation with the school's own DHCP or device management records, which ChromeWatch does not hold.
| Data point | Description | Example |
|---|---|---|
| Timestamp | The date and time of the DNS query | 2026-05-17 09:14:32 |
| Source IP address | The local network IP address of the device that made the query | 192.168.1.45 |
| Domain queried | The hostname the device looked up | example.com |
| Query type | The DNS record type requested | A, AAAA |
| Category | An automatically assigned content category for the domain | Education, Social Media |
| Client domain | The school domain the query is associated with | school.co.za |
DNS data captures queries from any device on the school network using the ChromeWatch DNS resolver — including school-managed Chromebooks, staff devices, BYOD phones, tablets, and network-connected equipment. It does not capture page content, URLs, search terms, or any payload beyond the domain name queried. DNS data is accessible to school IT administrators and principals only — it is not accessible via the parent portal.
Why We Collect It
ChromeWatch collects and processes browsing data for the following specific, lawful purposes only:
- Acceptable use monitoring — enabling schools to verify that students are using school-issued devices in accordance with the school's Acceptable Use Policy (AUP)
- Safeguarding — helping IT administrators and teachers identify students who may be accessing harmful, inappropriate, or distracting content
- Parental oversight — giving parents visibility into how their children use school-issued devices (where the school has enabled this feature)
- Compliance reporting — providing exportable records for IT audit and governance purposes
ChromeWatch data is never used for advertising, profiling, or any commercial purpose beyond the school monitoring service described above. We do not sell, rent, or share student data with any third party for commercial purposes.
Our Role Under POPIA
South Africa's Protection of Personal Information Act (POPIA) distinguishes between two roles in any data processing relationship:
| Role | Who | Responsibility |
|---|---|---|
| Responsible Party | The School | The school determines the purpose of monitoring, obtains parental consent, and is accountable to parents and the Information Regulator for the lawful use of ChromeWatch. |
| Operator | ChromeWatch | ChromeWatch processes data on the school's behalf, under a written Data Processing Agreement, and may not use the data for any purpose beyond what the school has authorised. |
Each school that uses ChromeWatch must sign a Data Processing Agreement (DPA) with ChromeWatch before any data is collected. This is a legal prerequisite under Section 21 of POPIA.
Legal Basis for Processing
ChromeWatch operates under the Acceptable Use Policy (AUP) signed by parents each year. By signing the AUP, parents acknowledge and consent to the monitoring of browsing activity on school-managed devices. This annual consent forms the lawful basis for processing under POPIA.
How We Store & Protect Data
ChromeWatch implements the following technical and organisational security measures in compliance with Section 19 of POPIA:
- Data location — All data is stored on servers physically located in South Africa. No student data is transferred outside the Republic of South Africa.
- Encryption in transit — All data transmitted between the Chrome extension and the ChromeWatch server is encrypted using HTTPS/TLS, enforced via Cloudflare.
- Access controls — The dashboard uses Google OAuth 2.0. Only staff members whose email addresses have been explicitly whitelisted by their school's administrator can access the system.
- Data isolation — Each school's data is stored in a completely separate folder structure keyed by domain. It is technically impossible for one school to access another school's data.
- Staff confidentiality — All ChromeWatch staff with access to ChromeWatch infrastructure are bound by confidentiality obligations.
- No third-party sharing — Student browsing data is never shared with, sold to, or accessible by any third party outside of the school's authorised users and ChromeWatch's operational staff.
How Long We Keep Data
In accordance with Section 14 of POPIA, personal information is not kept for longer than is necessary for the purpose for which it was collected.
| Data type | Retention period | How it is deleted |
|---|---|---|
| Student browsing data | 90 days from collection | Automated deletion by the ChromeWatch server |
| Network DNS query data | 90 days from collection | Automated deletion by the ChromeWatch server |
| Staff session tokens | Duration of the browser session | Cleared on logout or session expiry |
| Authorised user records | Duration of the school's subscription | Deleted when the school's account is closed |
On cancellation of a school's subscription, all associated data is permanently deleted within 30 days. Schools may request a full data export before cancellation at no charge.
Who Can Access the Data
Access to student browsing data is strictly limited to the following authorised parties:
- School IT administrators — full access to their school's data via the ChromeWatch dashboard
- Authorised school staff — access granted at the IT administrator's discretion (e.g. principals, teachers), limited to their school's data only
- Parents (where enabled) — read-only access to their own child's browsing history only, once the parent portal feature is enabled by the school
- ChromeWatch operational staff — access to server infrastructure for maintenance and support purposes only, subject to confidentiality obligations
Network DNS query data is accessible to school IT administrators and principals only. It is not accessible via the parent portal, as DNS data is recorded per device IP address rather than per named student account.
No student data is accessible to any other school, third party, advertiser, or external organisation under any circumstances.
Children's Data
ChromeWatch is designed specifically for educational environments where the majority of data subjects are children under the age of 18. We recognise that children's personal information carries the highest level of protection under POPIA (Sections 34 and 35), and we apply additional safeguards accordingly.
- Children's browsing data is only processed where the school has obtained valid, prior, written consent from a parent or legal guardian — a "competent person" as defined by POPIA
- Children's data is never used for any commercial purpose, profiling, or advertising of any kind
- Children's data is stored with the same domain isolation, encryption, and strict access controls as all other data on the platform
- Parents may request access to, correction of, or deletion of their child's data at any time by contacting the school's IT administrator
- ChromeWatch collects the absolute minimum data necessary — URL, page title, timestamp, and school email address only
ChromeWatch does not collect names, ID numbers, physical addresses, photographs, biometric data, or any other special personal information as defined by POPIA. The only personal identifier collected is the student's school-issued Google Workspace email address.
Your Rights Under POPIA
POPIA grants data subjects — and parents or guardians acting on behalf of children — the following rights:
Right of Access
Request a copy of the personal information ChromeWatch holds about your child.
Right to Correction
Request that inaccurate or incomplete personal information be corrected or updated.
Right to Deletion
Request deletion of your child's personal information, subject to any legal retention obligations.
Right to Object
Withdraw consent or object to the processing of your child's personal information at any time.
Right to Complain
Lodge a complaint with the Information Regulator of South Africa if you believe your rights have been violated.
Right to Security
Expect that your child's data is protected with appropriate technical and organisational security measures.
To exercise any of these rights, contact your school's IT administrator in the first instance. For matters unresolved at school level, contact ChromeWatch at admin@chromewatch.co.za.
Information Regulator of South Africa: justice.gov.za/inforeg — admin@chromewatch.co.za
Data Breaches
In the event of a security compromise affecting personal information, ChromeWatch will:
- Notify the affected school immediately upon becoming aware of the breach
- Provide full details of what data was affected, how the breach occurred, and what steps are being taken to contain it
- Assist the school in notifying the Information Regulator and affected data subjects as required by Section 22 of POPIA
- Take immediate remedial action to contain the breach and prevent recurrence
Schools, as Responsible Parties, are required under POPIA to notify the Information Regulator and affected parents or students within a reasonable time after becoming aware of a breach.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in the ChromeWatch platform, applicable law, or our data practices. When we make material changes, we will:
- Update the "Last updated" date at the top of this page
- Notify all active schools by email at least 14 days before the changes take effect
- Make a version history available on request
Continued use of ChromeWatch after the effective date of any changes constitutes acceptance of the updated policy. Schools who do not accept the updated terms may cancel their subscription and receive a full data export in accordance with Section 8 of this policy.