Privacy Policy
Last Updated: February 2025
Our Commitment to Data Protection
At StackMaster Academy, we are committed to protecting your privacy and ensuring the security of your personal information. This privacy policy explains how we collect, use, store, and protect your data when you use our website and educational services.
We operate under Cyprus data protection laws and comply with the General Data Protection Regulation (GDPR), ensuring your personal information is handled with the highest standards of privacy and security.
Information We Collect
Personal Information
We collect personal information that you voluntarily provide to us when you:
- Contact Information: Name, email address, phone number, and postal address
- Educational Background: Previous programming experience, learning goals, and course preferences
- Payment Information: Billing details and payment method data (processed securely by our payment providers)
- Communication Data: Messages sent through contact forms, emails, and support requests
Automatically Collected Information
When you visit our website, we automatically collect certain technical information:
- Usage Data: IP address, browser type, device information, pages visited, and time spent on site
- Cookie Data: Preferences and session information stored through cookies and similar technologies
- Analytics Data: Website performance metrics and user interaction patterns
How We Use Your Information
Educational Services
- Provide course enrollment and educational content delivery
- Process course applications and manage student accounts
- Track learning progress and provide personalized recommendations
- Issue certificates and maintain educational records
Communication and Support
- Respond to inquiries and provide customer support
- Send course updates, educational content, and important announcements
- Provide technical assistance and troubleshooting
- Conduct satisfaction surveys and feedback collection
Legal Basis for Processing
We process your personal data based on the following legal grounds:
- Contract: To provide educational services you have enrolled in
- Consent: For marketing communications and optional data processing
- Legitimate Interest: For business operations, security, and service improvement
- Legal Obligation: For tax records, financial reporting, and regulatory compliance
Data Protection and Security
Security Measures
- SSL encryption for data transmission
- Secure servers with access controls
- Regular security audits and monitoring
- Strong password requirements
Data Retention
- Contact inquiries: 3 years
- Student records: 5 years after completion
- Financial records: 7 years (legal requirement)
- Marketing data: Until consent withdrawn
Data Breach Response
In the unlikely event of a data breach affecting your personal information, we will notify you and relevant authorities within 72 hours as required by GDPR. We maintain comprehensive incident response procedures to minimize impact and prevent future occurrences.
Your Data Protection Rights
Under GDPR and Cyprus data protection laws, you have the following rights regarding your personal data:
Right to Access
Request a copy of all personal data we hold about you, including how it's used and who it's shared with.
Right to Rectification
Request correction of inaccurate or incomplete personal information in our records.
Right to Erasure
Request deletion of your personal data when it's no longer necessary for the original purpose.
Right to Portability
Receive your personal data in a structured, machine-readable format to transfer to another service.
Right to Object
Object to processing of your personal data for marketing purposes or other legitimate interests.
Right to Withdraw Consent
Withdraw consent for data processing at any time without affecting prior lawful processing.
How to Exercise Your Rights
To exercise any of these rights, please contact us using the information below. We will respond to your request within 30 days and may require verification of your identity for security purposes.
Third-Party Services and Data Sharing
We may share your personal data with trusted third-party service providers who assist us in delivering our educational services:
Payment Processors
Secure payment processing for course fees and related services. Payment data is processed according to PCI DSS standards and we do not store credit card information.
Email Service Providers
Course communications, newsletters, and educational content delivery. You can unsubscribe from marketing emails at any time.
Analytics Services
Website performance analysis and user experience improvement. Analytics data is anonymized and used for statistical purposes only.
Cloud Hosting Services
Secure data storage and website hosting within the European Union, ensuring GDPR compliance and data protection standards.
Important: We never sell, rent, or trade your personal information to third parties for marketing purposes. All service providers are contractually bound to protect your data and use it only for specified purposes.
Contact Information and Complaints
Data Protection Contact
Filing Complaints
If you have concerns about how we handle your personal data, you have the right to lodge a complaint with the supervisory authority:
Cyprus Data Protection Commissioner
Office of the Commissioner for Personal Data Protection
1 Iasonos Street, 1082 Nicosia, Cyprus
Website: dataprotection.gov.cy
Changes to This Privacy Policy
We may update this privacy policy from time to time to reflect changes in our practices, legal requirements, or service offerings. We will notify you of any material changes by:
- Sending an email notification to your registered email address
- Posting a prominent notice on our website
- Updating the "Last Updated" date at the top of this policy
Your continued use of our services after receiving notification of changes constitutes acceptance of the updated privacy policy.