Privacy Policy

1) Data we collect

You provide:

• Identity & contact: name, email, phone/WhatsApp, postal address, country, ID documents if required for compliance.
  
  

• Enrollment data: program(s) chosen, intake, prior education/experience, career goals.
  
  

• Payment details: billing address, transaction IDs, partial card details (last 4). We do not store full card numbers—our payment processors do.
  
  

• Communications: email/SMS/WhatsApp and support tickets; survey responses; testimonials (with consent).
  
  

• User content: assignments, projects, forum posts, and session recordings involving you.
  
  

Collected automatically:

• Technical data: IP address, device, OS, browser, language, approximate location, log files.
  
  

• Usage data: pages viewed, features used, time on page, clicks, referring URLs.
  
  

• Cookies & similar tech: pixels, local storage, SDKs (see Section 10).
  
  

From third parties (where lawful):

• Payment processors (payment status, fraud signals), analytics providers, ad platforms, identity verification/KYC vendors, referrers/partners, public sources (e.g., LinkedIn if you opt-in).
  
  

Children: Our Services are for adults (18+). We do not knowingly collect data from children.

2) Why we use your data (purposes & legal bases)

• Provide and administer education (create your account, enroll you, deliver classes, labs, projects, certificates). Legal bases: contract; legitimate interests.
  
  

• Payments & invoicing (process fees, prevent fraud, handle tax/GST/VAT). Legal bases: contract; legal obligation; legitimate interests.
  
  

• Support & communications (service announcements, schedule changes, account/security alerts). Legal bases: contract; legitimate interests.
  
  

• Learning analytics & quality improvement (course performance metrics, completion tracking, session recordings, feedback). Legal bases: legitimate interests; consent where required.
  
  

• Marketing (newsletters, events, offers via email/SMS/WhatsApp/ads). Legal bases: consent or legitimate interests, depending on jurisdiction. You can opt out anytime.
  
  

• Compliance & safety (detect abuse, enforce Terms, respond to lawful requests). Legal bases: legal obligation; legitimate interests; vital interests in rare cases.
  
  

We do not sell your personal data.

3) Sharing your data

We share only as needed with:

• Service providers / processors: hosting (e.g., cloud, LMS, video), email/SMS/WhatsApp tools, analytics, payment gateways, proctoring, support desk, ID verification.
  
  

• Instructors, mentors, and teaching assistants: limited access to deliver education and evaluate work.
  
  

• Affiliates/partners: if you enroll via a partner, limited data for attribution and support.
  
  

• Regulators & law enforcement: when legally required.
  
  

• Corporate transactions: if we undergo a merger, acquisition, or reorganization; your data may transfer with notice.
  
  

All processors are bound by confidentiality and data-processing agreements.

4) International transfers

Your data may be processed in Germany, the EU/EEA, India, and other countries where our providers operate. When we transfer data internationally, we use appropriate safeguards (e.g., EU Standard Contractual Clauses, UK IDTA/Addendum, contractual protections, and security controls).

5) Data retention

We keep data only as long as necessary for the purposes described:

• Student records & transcripts: typically 7 years after your last interaction (longer where law requires).
  
  

• Payment & tax records: 7–10 years depending on jurisdiction.
  
  

• Marketing data: until you unsubscribe or your consent is withdrawn.
  
  

• Support tickets & call recordings: usually 24 months.
  
  

• Session recordings / LMS artifacts: for the life of the course/cohort and quality assurance, unless you object or law requires deletion sooner.
  
  

We anonymize or securely delete data when retention ends.

6) Your rights

Your rights vary by jurisdiction but may include:

• Access your data; rectify inaccuracies; erase (where applicable).
  
  

• Restrict or object to certain processing (e.g., direct marketing).
  
  

• Portability (receive data in a portable format).
  
  

• Withdraw consent at any time (does not affect prior processing).
  
  

• Lodge a complaint with a supervisory authority (e.g., your EU DPA/ICO) or, in India, contact the Grievance Officer listed above.
  
  

To exercise rights, contact info@frankfurttradingschool.com. We may need to verify your identity.

7) Security

We use administrative, technical, and physical safeguards: encryption in transit and at rest where appropriate, access controls, MFA for staff, least-privilege policies, logging/monitoring, regular training, and vendor risk reviews. No method is 100% secure; please use strong, unique passwords and enable MFA when available.

8) Learning recordings & community areas

Live sessions may be recorded for students’ on-demand access and academic quality. Your image/voice may appear. Community forums and cohort groups are visible to other enrolled learners—share thoughtfully. For marketing uses of your testimonial or image, we’ll obtain consent as required.

9) Payments

Payments are processed by third-party gateways (e.g., Stripe/Razorpay or similar). We receive transaction confirmations but do not store full card numbers. Payment providers act as independent controllers or processors under their own privacy notices.

10) Cookies & similar technologies

We use:

• Essential cookies – site login, security, load balancing (cannot be turned off).
  
  

• Analytics cookies – traffic and usage (e.g., Google Analytics).
  
  

• Preference cookies – remember settings.
  
  

• Marketing pixels – measure ad performance/retargeting where permitted.
  
  

Choices: You can manage cookies via your browser and, where required by law, through our Cookie Banner/Preferences tool. Opt-outs may reduce site functionality.

11) WhatsApp/SMS & email communications

By providing your number/email, you agree to receive service messages (enrollment, schedules, security). Marketing messages are optional; you can opt out via email link, reply STOP (SMS), or WhatsApp settings.

12) India-specific disclosures

For programs delivered in India, we comply with applicable Indian data-protection laws. You may contact the Grievance Officer for redressal. Where consent is the basis, you may withdraw consent using the contact above. We process children’s data only with verifiable consent, but our Services target adults (18+).

13) California / US state notices (if applicable)

We do not sell personal information. We may “share” limited identifiers for cross-context advertising; you can opt out via our cookie preferences. Additional state-specific rights (access, delete, correct, limit sensitive data) are available where applicable.

14) Changes to this policy

We may update this policy periodically. Material changes will be notified via email or prominent notice. Continued use after the effective date means you accept the updated policy.