We systematically collect: (a) Personally Identifiable Information (PII) including name, email, and payment details; (b) Technical metadata encompassing IP addresses, device fingerprints, and browser characteristics; (c) Usage patterns through cookies and analytics trackers.
User data may be shared with: (a) Payment processors (Stripe/PayPal) for transaction completion; (b) Cloud infrastructure partners (AWS/Google Cloud) under strict NDAs; (c) Legal authorities when compelled by valid subpoena or court order.
We employ both session and persistent cookies for: authentication continuity, preference storage, and traffic analysis. Users may manage preferences through browser settings, though essential cookies remain mandatory for core functionality.
Implementing military-grade AES-256 encryption, regular penetration testing, and SOC 2 compliant data centers. All personnel undergo biannual cybersecurity training and background verification.
Under GDPR/CCPA regulations, users may: (a) Request access to collected data; (b) Demand rectification of inaccuracies; (c) Initiate erasure requests; (d) Restrict processing activities. Submit requests via our DSAR portal.
Services are expressly prohibited for users under 16 years of age. We actively screen for underage access and immediately delete accounts lacking parental consent verification.
Material changes to this Policy will be announced through: (a) Dashboard notifications; (b) Registered email communication; (c) Public revision log. Continued access post-update constitutes acceptance.