Skillora logo

    Skillora

    Privacy Policy

    Privacy and safety

    Privacy Policy

    This page summarises the privacy, safety, moderation, and community-rule content provided in the Skillora privacy document dated 4 March 2026.

    Effective date: 4 March 2026 (Europe/Dublin)skillorateam@getskillora.com

    Controller and contact

    Skillora Ltd is the controller for this service. The published contact address is Dublin 4, Ireland, and the contact email for privacy requests is skillorateam@getskillora.com. Skillora has not appointed a Data Protection Officer at this time.

    Scope and product context

    • Skillora is a university student platform with Campus Board, Campus Feed, Explore, Inbox, Chat, and Profiles.
    • The service is intended for users aged 16 and over.
    • Skillora is not affiliated with or endorsed by universities unless that is explicitly stated.

    Personal data we process

    • Account data such as email address, account identifiers, and authentication or session data.
    • Campus-tailoring data including country of study and selected university.
    • Profile data including first name, surname, year of study, interests, goals, bio, and profile photo.
    • Legal acceptance records such as timestamps and policy versions tied to Terms and Privacy acceptance.
    • Campus Board data including busy-level votes and text-only posts that may appear anonymous publicly but remain internally traceable.
    • Campus Feed data including posts, reactions shown as counts, and post-thread messages.
    • Connection request data, private chat content, attachments, moderation reports, blocking records, device and security logs.

    How we collect data

    • Directly from you when you sign up, complete your profile, vote, post, message, report content, or contact Skillora.
    • From other users when they send you requests or messages, or when they report content involving you.
    • Automatically when you access the service for security, reliability, and fraud-prevention purposes.

    Purposes and lawful bases

    Skillora relies on GDPR lawful bases including contract necessity, legitimate interests, legal obligations, and consent where applicable. Data is used to operate accounts, tailor the campus experience, enable discovery and messaging, keep users safe, prevent abuse, and comply with legal requirements.

    Retention schedule

    • Account, profile, and campus-tailoring data are kept while the account is active, then deleted on account deletion with backups retained for up to 30 days.
    • Legal acceptance records are retained for 6 years after account closure to support contract and dispute handling.
    • Campus Board busy-level votes are counted only for the last 60 minutes and removed shortly after that technical window.
    • Campus Feed posts and post threads expire after about 24 hours, with moderation copies retained for up to 12 months if reported.
    • Connection requests are retained while pending and for 30 days after acceptance or rejection for dispute and safety handling.
    • Private chat content is retained while accounts remain active unless deleted, with reported-content copies retained for 12 months and backups for up to 30 days.
    • Moderation and enforcement records are generally retained for 12 months after case closure, and security logs for 90 days.

    Semi-anonymity and internal traceability

    • Public areas may display users semi-anonymously, such as first name plus last initial.
    • Campus Board posts may appear anonymous to other users.
    • Even where content appears anonymous or semi-anonymous, Skillora can associate it internally with an account for safety, moderation, abuse prevention, and legal compliance.

    Service providers and international transfers

    • Skillora states that it uses AWS for hosting and SendGrid for email delivery under processor arrangements and contractual safeguards.
    • Where data is transferred outside the EEA, Skillora says it will rely on recognised mechanisms such as adequacy decisions or EU Standard Contractual Clauses.
    • Data may also be disclosed where required by law or where necessary to protect users or the public from credible threats.

    Security and encryption

    • Skillora says it applies risk-appropriate technical and organisational measures in line with GDPR Article 32.
    • Chat is not end-to-end encrypted.
    • Messages are intended to be encrypted in transit and at rest.
    • Skillora may access messages where reasonably necessary for moderation, safety, troubleshooting, or legal compliance, with access controls in place.

    Your rights

    • Users may request access, rectification, erasure, restriction, portability, and objection under GDPR.
    • Requests can be sent to skillorateam@getskillora.com.
    • Skillora says it will usually respond within one month, with extensions for complex requests where GDPR allows that.
    • Users may complain to the Irish Data Protection Commission.

    Children and age assurance

    • The service is intended for users aged 16 and over.
    • Skillora says it does not currently operate robust age verification.
    • If Skillora becomes aware that a user is under 16, it may remove the account and delete data subject to lawful retention requirements.

    Community guidelines

    • Be respectful, honest, and protective of other users' privacy.
    • Do not harass, threaten, stalk, post hate speech, or exploit minors.
    • Do not scam, spam, post false emergency alerts, or manipulate busy-level votes and other campus utility signals.
    • Use in-app reporting tools where available, or email skillorateam@getskillora.com to report problems.

    Safety and moderation policy

    • Full interaction is gated behind profile completion.
    • Campus Feed posts and post threads are designed to expire after 24 hours.
    • Private 1-to-1 chat unlocks only after a connection request is accepted.
    • Skillora may remove content, restrict visibility or features, warn, suspend, or permanently terminate accounts based on severity, repetition, intent, and risk of harm.
    • Skillora states that it follows DSA-style notice-and-action processes, statement-of-reasons principles, and an appeal pathway by email.

    Liability disclaimer

    • Crowdsourced campus information may be inaccurate, incomplete, misleading, or manipulated, and should not be relied on for safety-critical decisions.
    • Users are responsible for their own posts and shares.
    • Skillora does not conduct background checks and cannot guarantee user identity.
    • Offline meetups, study sessions, event attendance, and exchanges of items are at the user's own risk.
    • Expiry of posts does not prevent copying, screenshots, or saving by others.
    • The service is provided as is and as available, subject to rights that cannot be excluded under applicable law.