Privacy Policy

1. Information We Collect

Running an educational platform means we need certain information to provide you with quality learning experiences. Here's what we collect and why it matters.

Personal Information You Provide

When you sign up or interact with our platform, you might share:

• Your name and email address for account creation and communication
• Phone number if you request callback services
• Payment details when enrolling in premium courses (processed securely through third-party providers)
• Educational background and investment experience for course recommendations
• Messages sent through our contact forms or support channels

Automatically Collected Data

Like most websites, we gather technical information to improve your experience:

• IP address and approximate geographic location
• Browser type, device information, and operating system
• Pages visited, time spent on each page, and navigation patterns
• Referral sources (how you found us)
• Course progress and completion data

2. How We Use Your Information

We're not in the business of selling data. Everything we collect serves a specific purpose related to your education and our platform improvement.

• Delivering course content and tracking your learning progress
• Sending important updates about courses you're enrolled in
• Responding to your questions and support requests
• Processing payments and maintaining transaction records
• Personalizing course recommendations based on your interests
• Analyzing platform usage to identify technical issues and improvement opportunities
• Sending occasional newsletters about new courses (you can opt out anytime)
• Complying with legal obligations under Belgium law

3. Legal Basis for Processing (GDPR Compliance)

Under GDPR, we need a lawful reason to process your data. Here's our legal basis:

• Contractual necessity: Processing data to deliver the courses you signed up for
• Consent: When you agree to receive marketing emails or newsletters
• Legitimate interests: Improving our platform, preventing fraud, and ensuring security
• Legal obligations: Maintaining records for tax purposes and complying with Belgium regulations

You can withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

4. Data Sharing and Third Parties

We work with carefully selected partners to operate our platform. Here's who might access your information:

Service Providers

• Payment processors: Handle transactions securely (they never share full card details with us)
• Email service providers: Help us send course updates and newsletters
• Cloud hosting services: Store our platform data securely
• Analytics tools: Help us understand how people use our site

Legal Requirements

We might disclose information if required by Belgium law enforcement, court orders, or to protect our legal rights. This doesn't happen often, but transparency matters.

We don't share your data with advertisers or data brokers. Period.

5. International Data Transfers

Our primary servers are located within the European Union, ensuring your data stays under GDPR protection. Some service providers (like cloud hosting) might process data outside the EU.

When transfers occur, we ensure adequate safeguards through:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions recognizing equivalent data protection standards
• Additional technical measures to protect data in transit

6. Data Retention

We don't keep your information forever. Here's how long we typically retain different types of data:

Data Type	Retention Period
Account information	Active account duration + 3 years
Course progress data	Active account duration + 2 years
Payment records	7 years (Belgium tax requirement)
Support communications	3 years after resolution
Marketing consent records	Until withdrawal + 1 year
Analytics data	26 months (anonymized after 14 months)

When retention periods expire, we either delete data or anonymize it so it can't be linked back to you.

7. Your Rights Under GDPR

Belgium residents (and all EU citizens) have strong data protection rights. Here's what you can do:

Access Your Data

Request a copy of all personal information we hold about you. We'll provide this in a readable format within one month.

Correct Inaccurate Information

If something's wrong in your profile or records, let us know and we'll fix it promptly.

Request Deletion

Ask us to erase your data when it's no longer necessary for our services or when you withdraw consent. Note that some data must be retained for legal compliance (like payment records).

Object to Processing

You can object to data processing based on legitimate interests or for direct marketing purposes. Marketing opt-outs are honored immediately.

Data Portability

Request your data in a machine-readable format to transfer to another service provider.

Restrict Processing

Limit how we use your data in certain circumstances, like when you're contesting accuracy.

8. Security Measures

Protecting your information isn't just a legal requirement — it's fundamental to our business. Here's how we keep things secure:

• All data transmissions use SSL/TLS encryption
• Passwords are hashed using industry-standard algorithms (we never see your actual password)
• Access to personal data is restricted to authorized personnel only
• Regular security audits and vulnerability assessments
• Secure backup procedures with encrypted storage
• Multi-factor authentication for administrative access
• Incident response procedures for potential breaches

That said, no system is 100% secure. If we detect any data breach affecting your information, we'll notify you and relevant Belgium authorities within 72 hours as required by GDPR.

9. Cookies and Tracking Technologies

We use cookies to make our platform work properly and understand how it's being used. When you first visit, you'll see a cookie notice explaining your options.

Essential Cookies

These keep the site functional — remembering your login, maintaining session security, and storing your preferences. You can't disable these without breaking the platform.

Analytics Cookies

Help us understand which courses are popular, where people get stuck, and how to improve navigation. These are optional.

Marketing Cookies

Track whether our advertising brings people to the site. Also optional — you control whether we use these.

You can manage cookie preferences anytime through your browser settings or our cookie management tool.

10. Children's Privacy

Our investment education platform is designed for adults. We don't knowingly collect information from anyone under 16 years old without parental consent.

If we discover we've accidentally collected data from someone under 16, we'll delete it promptly. Parents who believe their child's information was collected should contact us immediately.

11. Changes to This Policy

Privacy laws evolve, and so do our practices. We'll update this policy when necessary and notify you of significant changes through email or prominent website notices.

The "Last Updated" date at the top shows when the most recent changes were made. We encourage reviewing this policy periodically, especially if you're concerned about how your information is handled.

Major changes that affect your rights will require renewed consent where applicable.

12. Supervisory Authority

If you believe we're not handling your data properly, you have the right to lodge a complaint with Belgium's Data Protection Authority:

Gegevensbeschermingsautoriteit (GBA)
Drukpersstraat 35, 1000 Brussels, Belgium
Phone: +32 (0)2 274 48 00
Website: www.gegevensbeschermingsautoriteit.be

We'd appreciate the chance to resolve concerns directly first, but you're entitled to contact the supervisory authority at any time.