Legal center

Privacy Policy

Last updated June 22, 2026 · 6 min read

Edmissa is a platform operated by Byte Forge Technologies L.L.C ("Byte Forge", "we", "us"), a company registered in Dubai, United Arab Emirates. This Privacy Policy explains how we collect, use, and protect personal data when you visit our website and use the Edmissa platform.

This policy covers personal data for which we are the controller — such as data from website visitors and prospective customers. When our customers (education agencies) use the platform to store student and applicant data, those customers are the controllers and we act as their processor; that processing is described on our Data Processing page.

Who we are

Byte Forge Technologies L.L.C is the company behind the Edmissa platform, registered in Dubai, United Arab Emirates. For the personal data we collect as a controller, described below, Byte Forge is the data controller. You can reach us about privacy matters through our contact page.

Information we collect

Information you provide

When you request a demo, contact us, or otherwise communicate with us, we collect the details you submit — such as your name, email address, agency or organisation name, and the content of your message.

Information we collect automatically

When you visit our website, we automatically collect limited technical information, such as your IP address, browser and device type, and the pages you view. This helps us operate, secure, and improve the website.

Account and platform data

If you have access to the platform, we collect account information and records of your use of the service.

Student and applicant data

Customers may store student and applicant data in the platform on behalf of their clients. We process that data as a processor on the customer's instructions — see our Data Processing page.

How we use information

We use personal data to:

  • provide, maintain, secure, and improve our website and platform;
  • respond to your enquiries and provide support;
  • protect against fraud, abuse, and security threats — for example, our demo form uses Cloudflare Turnstile to detect automated submissions;
  • send you information about our services where you have asked us to or where we are otherwise permitted to do so; and
  • comply with legal obligations and enforce our terms.

We rely on legal bases including your consent, our legitimate interests in operating and promoting our business, the performance of a contract with you, and compliance with legal obligations, as applicable under the laws that apply to you.

Cookies and similar technologies

We use only strictly necessary cookies and similar technologies that are required to operate the website securely — for example, to maintain your session and to support security and bot-protection features. We do not use advertising or third-party analytics tracking cookies. You can control cookies through your browser settings, although disabling essential cookies may affect how the website works.

How we share information

We do not sell your personal data. We share it only:

  • with infrastructure providers that host and protect the service on our behalf — currently Cloudflare, Inc. (see our Data Processing page for our sub-processors);
  • where required by law or to respond to lawful requests from public authorities;
  • to protect the rights, safety, and security of Byte Forge, our users, or the public; and
  • in connection with a merger, acquisition, or sale of assets, subject to this policy.

International transfers

We operate from the United Arab Emirates and use infrastructure that may process data in data centres located in different countries. Where personal data is transferred across borders, we take steps to ensure it remains protected in line with applicable data protection law.

Data retention

We keep personal data only for as long as necessary for the purposes described in this policy, to comply with our legal obligations, resolve disputes, and enforce our agreements. When data is no longer needed, we delete or anonymise it. You can ask us to delete personal data we hold about you as a controller — see "Your rights" below.

Your rights

Depending on the laws that apply to you, you may have the right to:

  • access the personal data we hold about you;
  • request correction of inaccurate or incomplete data;
  • request deletion of your data;
  • object to or request restriction of certain processing;
  • withdraw consent where processing is based on consent; and
  • request a copy of certain data in a portable format.

To exercise any of these rights, contact us. We will respond in line with applicable law. Where our customer is the controller of the data (for example, student data held in the platform), we will refer your request to that customer.

Security

We apply technical and organisational measures to protect personal data, including encryption in transit, access controls, and data isolation. For sensitive data processed through the platform, additional measures are described on our Data Processing page. No method of transmission or storage is completely secure, but we work to protect your data and to address risks promptly.

Children's privacy

Our website and services are intended for education agencies and their staff, not for children, and we do not knowingly collect personal data directly from children through the website. Where student or applicant data relating to a minor is stored in the platform, the responsible customer (the agency) is the controller and is responsible for obtaining any required consents.

Changes to this policy

We may update this Privacy Policy from time to time. We will update the "last updated" date above and, where appropriate, provide additional notice. Please review this page periodically.

Contact

Questions about this policy or your personal data? Contact us and we'll help.

Questions about this document?

Reach our team and we'll point you to the right person.

Contact us