Cookie Policy

1. Information We Collect

We collect personal data you voluntarily provide via contact forms, training registration, or service agreements. This includes name, email, phone, company role, and payment information. We also automatically collect technical data: IP addresses, browser type, device identifiers, and usage patterns via cookies (e.g., Google Analytics, Hotjar).

2. Legal Basis for Processing (GDPR & CCPA)

Processing is based on your explicit consent, contractual necessity (to deliver services), or legitimate interests (improving offerings). Under CCPA, California residents have the right to opt out of data sales—we do not sell personal data. For GDPR, you may withdraw consent anytime by emailing [email protected].

3. Data Sharing & Third Parties

We share data only with trusted processors essential to operations: Stripe (payment), Mailchimp (email), and Zendesk (support). They are bound by data processing agreements compliant with Article 28 GDPR. We never share data for third-party marketing.

4. Data Retention & Security

Personal data is retained for the duration of the business relationship plus 3 years for legitimate record-keeping. We employ AES-256 encryption, access controls, and annual SOC 2 Type II audits. Breach notification follows state laws and GDPR Article 33 (72-hour requirement).

5. Your Rights

You may request access, rectification, erasure, portability, or restriction of your data. To exercise, complete our Data Subject Request form on the contact page. We respond within 30 days (GDPR) or 45 days (CCPA).