Join a Skool community and your name, bio, social media links, and email can be scraped by anyone with $49 and an Apify account. At least 8 scraping tools exist specifically for Skool. Some don't even need a login. One advertises extracting "hidden emails from posts." Skool's "reasonable efforts" don't include stopping the tools that harvest your data. Build a community on Skool, grow it to thousands of members, create hundreds of discussion threads. Now try to leave. You can export email addresses. Everything else — every post, every discussion, every piece of engagement — stays with Skool. You "own" it the same way a tenant "owns" their flat.
What they claim: Skool markets itself as the platform where creators "earn full-time incomes doing what they love" and implies creators control their communities
What we found: Cancelling means losing all community posts, course content, and engagement data. Only email list export available. No bulk content download. Community URL lives at skool.com — no redirect path. Course content must be downloaded file by file.
What they claim: Skool positions itself as the platform for creators to build sustainable businesses
What we found: Users report being banned with no appeal process and no way to recover content. All community posts, course materials, and engagement data are lost on ban. Combined with no content export tools, a ban destroys a creator's entire business.
What they claim: Skool privacy policy states they use "reasonable efforts" to protect Personal Data
What we found: At least 8 dedicated Skool member scraping tools exist on Apify, extracting names, emails, bios, social media links, locations, and phone numbers. Some require zero authentication — "everything is scraped from public Skool pages, you don't need to log in." One tool extracts "hidden emails from posts." Community owners have raised concerns but no platform-level protections exist.
What they claim: Skool privacy policy lists GDPR rights and states they will "consider" data protection requests "in accordance with applicable laws"
What we found: German-speaking community operators flagged Skool provides "extremely sparse information regarding GDPR/DSGVO compliance." No published Data Processing Agreement (legally required for EU operators). Skool is subject to CLOUD Act. Privacy policy disclaims responsibility for paid communities entirely.
What they claim: Skool processes all payments through its platform
What we found: When users request refunds, Skool defers to the creator. If the creator refuses, Skool says "sorry we tried." BBB complaints show users charged $99/month for six months with no way to reach support. Trustpilot 1.9/5, unclaimed profile, 0% reply rate.
What they claim: Skool collects identifiers, geolocation, professional information, visual information, internet activity, and inferences drawn from all categories
What we found: Privacy policy states it "does not apply to the extent Skool processes Personal Data in the role of a processor on behalf of their customers." For paid communities — Skool's core business — Skool says it is "not responsible for the privacy or data security practices of its customers."