As part of Automattic, Sensei LMS is built with privacy and data protection in mind. Automattic complies with the General Data Protection Regulation (GDPR), and by extension, so does Sensei LMS. This document outlines how Sensei LMS handles user data and provides tools to help site administrators remain compliant with GDPR requirements.
Data Deletion on Uninstall
Sensei LMS includes a “Delete Data on Uninstall” option.
You can find this setting by navigating to:Sensei LMS > Settings > General.
When enabled, this setting ensures that all Sensei-related data is deleted from your WordPress database upon plugin deletion. Please note that this will only occur if the setting is explicitly selected before uninstalling the plugin.
Data Control, Security, and Privacy
Using Sensei LMS on your own WordPress site gives you complete control over user data, security, and privacy. This flexibility is especially important when handling sensitive or proprietary information, as it allows you to apply your own security practices to meet GDPR or other regulatory standards.
Learn more: Self-Hosted LMS and Privacy
How Sensei LMS Handles User Data
Sensei LMS stores and processes data as follows:
- Student Progress Data
- Stored in the WordPress database
- Includes lesson progress, quiz results, and course completion records
- Standard WordPress User Data
- Includes usernames, email addresses, and roles
- Site Usage Tracking (Optional)
- If usage tracking is enabled, Sensei logs non-sensitive setup and configuration data
- Usage tracking can be easily disabled
Learn more about Sensei data tracking
- Admin Email Address
- Stored for sending essential security and plugin notifications
- Aggregate Data
- Includes anonymized metrics like the number of enrolled students or users by role
Note: Automattic does not collect personal data from your students when using Sensei LMS. We do log and store the admin email. This allows us to get in touch regarding potential vulnerabilities and information on fixes. We do not use this email address for marketing – a separate opt-in is required to receive promotional messages.
Exporting Student Data (Right of Access)
To comply with GDPR’s Right of Access, Sensei LMS allows you to export relevant data:
- Course Content
- Go to Sensei LMS > Tools > Export Content
- Student Data
- Use the native WordPress Export Personal Data tool under Tools > Export Personal Data
Deleting Student Data (Right to Erasure)
To fulfill GDPR’s Right to Erasure, Sensei LMS supports the complete deletion of student information:
- Remove Students from Courses
- Managed easily through the WordPress admin interface
- Delete Progress and Course Records
- Lesson and quiz progress can be permanently removed as needed
- Use WordPress Core Erasure Tools
- Registered user data can be fully erased using Tools > Erase Personal Data
Sensei LMS is fully integrated with WordPress’s native privacy tools, ensuring seamless handling of data deletion requests.
If you have further questions about GDPR compliance or how Sensei LMS handles data, please contact our support team.
