Privacy Policy
We respect privacy. This document explains what we collect, why, and how you can control it.
Effective date:
Contact email
Support phone
Jurisdiction note
Rights vary by location (e.g., GDPR/UK GDPR, CCPA/CPRA).
Table of contents
1) Data We Collect
Categories and sources of personal data.
+
1) Data We Collect
Categories and sources of personal data.
Account details (name, email), course selections, and usage analytics. We do not store payment details on our servers.
Data you provide
- Contact info (email; optional name)
- Messages you send to support
- Preferences (language, notification choices)
Data we collect automatically
- Device and browser signals (user agent, approximate location from IP)
- Log data (pages viewed, timestamps, performance metrics)
- Cookie identifiers (subject to your choices)
If you choose to connect third-party accounts, we only access data required to provide the feature (e.g., authentication token), and we do not sell it.
2) How We Use Data
Purposes and practical examples.
+
2) How We Use Data
Purposes and practical examples.
To deliver services, improve courses, prevent abuse, and meet legal obligations.
Service delivery
- Create and maintain your account
- Provide exam prep content and progress tracking
- Send essential service messages
Safety & improvements
- Detect fraud/abuse and protect accounts
- Measure performance and fix bugs
- Understand feature usage to improve UX
We do not use sensitive personal data to infer characteristics about you. If we introduce optional marketing communications, you’ll have clear opt-in and opt-out controls.
3) Legal Bases (where applicable)
GDPR/UK GDPR aligned rationale.
+
3) Legal Bases (where applicable)
GDPR/UK GDPR aligned rationale.
When GDPR/UK GDPR applies, we process personal data under one or more of the following legal bases:
- Contract: to provide requested services (account access, course delivery).
- Legitimate interests: to secure services, prevent fraud, and improve reliability (balanced against your rights).
- Consent: for non-essential cookies or optional communications where required.
- Legal obligation: to comply with applicable laws (e.g., accounting, regulatory requests).
4) Sharing & Processors
When we share data and with whom.
+
4) Sharing & Processors
When we share data and with whom.
We may share data with trusted service providers (processors) that help us operate the service (e.g., hosting, email delivery, analytics). They are contractually required to protect data and use it only for our instructions.
We may disclose data:
- To comply with law or valid legal process
- To enforce terms and protect rights, safety, and integrity
- In connection with corporate transactions (e.g., merger), with appropriate safeguards
We do not sell personal information in the sense commonly defined by CCPA/CPRA.
5) Cookies & Similar Tech
How cookies are used and how to control them.
+
5) Cookies & Similar Tech
How cookies are used and how to control them.
Cookies help us keep you signed in, remember preferences, and understand site performance. You can manage preferences via the cookie banner or your browser settings.
Essential
Required for core functions like session management.
Analytics
Helps us understand usage patterns and improve.
Preferences
Remember choices like theme and layout.
Cookie controls (this page)
Your choices are stored locally in your browser (no server dependency).
6) Retention
How long we keep data.
+
6) Retention
How long we keep data.
We retain personal data only as long as necessary to provide services and comply with legal requirements.
Typical retention considerations
- Account activity and support history
- Security logs (limited duration, access-controlled)
- Legal obligations (e.g., tax, compliance)
7) Security
Administrative, technical, and organizational measures.
+
7) Security
Administrative, technical, and organizational measures.
We use reasonable safeguards designed to protect personal data, including access controls, encryption in transit (HTTPS), and monitoring for suspicious activity. No method of transmission or storage is 100% secure; if you suspect unauthorized access, contact us promptly.
8) Your Rights
Access, deletion, and more.
+
8) Your Rights
Access, deletion, and more.
Access, rectification, deletion, portability, and objection where applicable by law.
How to submit a request
Use the form below or email us. We may request additional information to verify your identity and protect your account.
9) International Transfers
Cross-border processing.
+
9) International Transfers
Cross-border processing.
If data is processed outside your country, we use appropriate safeguards (such as contractual protections) intended to provide a comparable level of protection.
10) Children
Age restrictions and parental guidance.
+
10) Children
Age restrictions and parental guidance.
Our services are not directed to children under 13 (or the minimum age required by your jurisdiction). If you believe a child provided personal data, contact us so we can take appropriate action.
11) Changes
How we update this policy.
+
11) Changes
How we update this policy.
We may update this Privacy Policy from time to time. We will revise the “Effective date” above and, when appropriate, provide additional notice within the service.
12) Contact
Reach us for privacy questions.
+
12) Contact
Reach us for privacy questions.
Email [email protected] for privacy requests.
You can also call +1 (415) 555-0192 (support line).