- Purpose | Scope | Consent
- Information We Collect About You
- How We Use Information We Collect About You
- Sharing Information Collected About You
- Third‑Party Websites and Integrations
- Choices You Have About Collection And Use Of Your Information
- Protection of Personal Information
- No Collection of Information from Children
- Use of the Service While Traveling
- No Rights of Third Parties
- How to Contact Us
Purpose | Scope | Consent
Semester.ly is a social and collaborative course scheduling platform for University students across North America. Since its inception, our platform has evolved to offer students a one stop shop for course discovery, schedule creation and social planning - reducing student stress infinitely.
The all-inclusive scheduler includes features such as advanced search settings based on major requirements, department and time. Additionally, students can view the university’s official course ratings, as well as their peer’s course-granular emoji ratings.
Students are able to create, name, and save multiple timetables, and share these timetables via URL or Facebook/Google. They can also view which courses Facebook/Google friends are considering or have previously taken - a great way for freshman to make new friends and for all students to make lasting connections!
Information We Collect About You
We use various technologies to collect information from your computer or other internet access device related to your use of the Service.
Our website (https://semester.ly) captures e‑mail addresses, mobile phone numbers, and other log‑in information from visitors who opt‑in by providing their email address, mobile phone numbers and/or log‑in information. It also captures non‑personally‑identifiable information for purposes of analytics that assess visitor trends, such as numbers of users, pages visited, and IP address country of origin.
Our encrypted invite system website (https://semester.ly) captures user IP addresses to prevent misuse of our system and to enforce sender‑specified message restrictions. It also collects user and device information for, among other things, authentication and system integrity. In addition, we collect date/time information and recipient service links (e.g., user identifier associated with a particular type of application). For purposes of facilitating the transmission of user messages on the Service, Semester.ly will rely on specific contact information that users provide (e.g., an e‑mail address for a message recipient). Semester.ly does not collect any other information from users’ contact lists or devices.
Our platform (https://semester.ly) collects additional information necessary to provide the Semester.ly service. This information include IP addresses to prevent misuse of our system and to enforce sender‑specified message restrictions. It also includes user‑specific device information and, if the user opts in, may collect the email addresses, SMS addresses, University specific log-in credentials, and/or Facebook/Google accounts associated with the user’s Semester.ly account.
We use google analytics to collect basic, anonymous information about our users for aggregate analysis, traffic monitoring, and growth metrics. (Information about Google Analytics usage of data and privacy policies can be found here).
Non-Registered & Logged Out Users
Outside of the use of Google Analytics, for non-registered/logged out users we exclusively collect completely anonymous data.
1. When a user in this category creates a schedule or executes a search we log this information. We simply log that it occurred, when it occurred, and what results/courses were returned/added. There is no link to the user, no information like IP address or cookies are attached to these logs.
2. In the future, we will add other trivial logs anonymous for analytics purposes.
3. When a user creates a timetable or sets certain preferences (e.g. conflicts allowed in schedule) we store this information locally on the user’s browser. It remains on their device exclusively so that it can be loaded when they return to the site.
Registered & Logged in User – No Permissions
When a user is logged in (and therefore registered), but has not enabled any permissions we store the following information about the student (some info drawn from Facebook/Google API which the user has logged in with and approved):
1. Name (Facebook/Google API)
2. Email (Facebook/Google API)
4. Class Year
6. Profile Picture (Facebook/Google API)
7. The school they are using Semester.ly with
If a user creates a timetable/schedule we store that (including courses, name, semester, time last updated) and link that to the user.
If a user reviews a course with an emoji, we store that information as well. It is never displayed to any other user.
If a user enables notifications, we store an encrypted token from Google/Firebase Cloud Messaging in order to send these push messages.
No user data is ever shared to any other user in this state. Only the logged in user can view their information/reviews, change their settings, and access their timetables.
We maintain the capability to view the user’s list of friends through the Facebook/Google API
Registered & Logged in User – Social Course Permission Enabled
In this state, the user has all that the previous state does with additional features/exposures of data.
Users with social course permission enabled can see which of their Facebook friends are in the courses indicated through use of the Semester.ly platform, and in return friends can see that they are in the course as well. This feature works only for Facebook/Google Friends – if the two students are not officially friends according to the Facebook/Google official API, this relationship is not exposed.
The exact time a user is taking the course is not exposed – only that they are taking the course.
The user’s social graph is never exposed in any other form to any other user.
Registered & Logged in User – Social Course & Social Sections Permission Enabled
Users with this additional “Social Sections” permission can see not only which courses their friends are taking but what times (called sections) they are taking them. By enabling this, they expose the same information about themselves to their Facebook/Google friends.
Registered & Logged in User – Fully Public Permissions
In this case a user let’s any other Semester.ly user at their school to see their courses and sections. This requires that all previously stated permissions be enabled.
Users in this state can see other users in the same state which are taking similar course loads and can then connect, communicate, and collaborate.
The only information exposed is the courses and course sections these users are taking and links to their public facing Facebook/Google profiles as shown below.
Google Connected Users – Opt-in Calendar Usage
Google connected users provide Semester.ly with access to their Google Calendars via the Google Calendar API. When opted for, Semester.ly can and may create new calendars and events for the user representing information the user has entered via the Semester.ly application.
If the user opts in, Semester.ly can and may use the previously stated Google Calendar API to access information about the user’s daily free/busy intervals. No event names are ever shared with other users. Free/busy information alone will be shared only with the user’s explicit permission to other users who the calendar owner has explicitly indicated, chosen, or shared the link with.
Semester.ly may use the user’s google calendar information for internal analytics but no information will be shared with any other user or third party without explicit permission
Johns Hopkins University Student Information Systems (SIS) Connected Users - Opt-in Data Import
Student Information Systems (SIS) connected users provide Semester.ly with access to their SIS data. When opted in, Semester.ly can pull users' year, major, and course history in the form of course codes and year/term the course was taken. This information will help Semester.ly tailor course results, check pre-requisites, offer degree planning tips, and gather course reviews. This will be done at both a personal and aggregate level. Individual data will be checked against a database of popular classes and sequences for certain degrees in order to give users tailored search results and recommendations. Aggregated data will be used to create this database and no personal identifiers will be tied to any analysis. This is the full extent of any data collection and usage and will be updated for any future changes. Semester.ly will never pull any sensitive information like student standing or financials. Personal data will never be viewed by JHU IT personnel or Semester.ly team members. Users always have the option to opt-out of this feature and/or delete their account if these terms are unsatisfactory.
How We Use Information We Collect About You
The information collected from our website will be used for standard, non‑invasive, non‑personally‑identifiable visitor trend analytics, simply to help us measure how users interact with our website content.
With regard to the Semester.ly app/SaaS, the Service’s end‑to‑end encryption prevents us from accessing user‑specific content.
As noted above, we capture user IP addresses to prevent misuse of our system and to enforce sender‑specified message restrictions, and user and device information for, among other things, authentication and system integrity.
Sharing Information Collected About You
Website opt‑in e‑mail capture is the only type of information that could be shared with third parties for internal marketing purposes. Platform service links will only be used (outside of the Service operation) to inform of service failures, emergencies, verification of account changes (such as new devices or password changes), or similar purposes.
We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it’s release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.
We may also disclose your information in response to a subpoena or similar investigative demand, a court order, or a request for cooperation from law enforcement or other government agency; to establish or exercise our legal rights; to defend against legal claims; or as otherwise required by law. Any information shared in such a case would be shared in the format in which Semester.ly maintains it (e.g., end‑to‑end encrypted content, which would require an end user’s device to decrypt). However, only content is encrypted, whereas metadata, which might also need to be disclosed, is not. In such cases, we may raise or waive any legal objection or right available to us, in our sole discretion. We may also disclose your information when we believe it is appropriate in connection with efforts to investigate, prevent, report or take other action regarding illegal activity, suspected fraud or other wrongdoing; to protect and defend the rights, property or safety of you, Semester.ly, our employees, or the public; to comply with applicable law or cooperate with law enforcement; or to enforce our terms and conditions or other agreements or policies. Likewise, we may disclose your information in connection with a substantial corporate transaction, such as a merger, consolidation, or asset sale, or in the unlikely event of bankruptcy.
Third‑Party Websites and Integrations
All third‑party integrations (including, but not limited to, social media) are subject to privacy and security vulnerabilities. Content sent through such services (i.e., “out of band” from the Semester.ly service) is frequently insecure.
Choices You Have About Collection And Use Of Your Information
You can choose not to provide us with certain information, but that may result in you being unable to use certain features of the Service because such information may be required in order to validate your identity, utilize the Service, or to contact us for information. Further you can choose certain levels of permission, as discussed above.
All non‑authentication or network communication use of our Service is opt‑in. The system at launch begins as “anonymous”. As users add in service links, they must confirm that they want the service being added to their account by visiting a link e‑mailed or texted to them (Facebook or Google are OAuth presentations).
When you contact us through the Service, your account will be set up to receive e‑mail messages unless you indicate that you do not wish to receive e‑mails. At any time, you can choose to stop receiving such e‑mails by following the instructions found in the e‑mails.
All facets of the Service are opt‑in and users are free to annihilate any of their data stored by our system, except for access logs, which will be purged periodically. As of March 8th, 2019, users can delete their accounts through the Account Settings portal.
Protection of Personal Information
We take appropriate security measures to help safeguard your personal information from unauthorized access and disclosure.
We want you to feel confident using the Service; however, no system can guarantee absolute security. Therefore, it is important for you to protect against unauthorized access to your password and to your computer or other internet access device. In addition, it is recommended that you do not send personal health or other sensitive information to Semester.ly or anyone else using unsecured means. Should you choose to supply confidential information in this manner, you do so at your own risk.
Although we take steps to secure your information, we do not guarantee the security of your information, and you should not expect that your personal information, searches, or other communications will always remain secure. Please refer to the Federal Trade Commission’s website at http://www.consumer.ftc.gov for information about how to protect yourself against identity theft.
No Collection of Information from Children
The Service is intended for use by adults only. Semester.ly does not solicit or knowingly collect any information from visitors under 18 years of age. Please do not use the Service if you are not yet 18.
Use of the Service While Traveling
No Rights of Third Parties
How to Contact Us