Privacy Policy
Last Updated: January 2025
Schema Design is committed to protecting your privacy and ensuring the security of your personal data. This policy explains how we collect, use, and protect your information when you engage with our data architecture education services.
1. Information We Collect
Personal Information You Provide
We collect personal information that you voluntarily provide when engaging with our educational services:
- Contact Information: Name, email address, phone number, and mailing address for course enrollment and communication
- Educational Background: Professional experience, current role, educational qualifications relevant to data architecture courses
- Payment Information: Billing details and transaction records for course fees (processed securely through third-party payment providers)
- Communication Data: Messages sent through contact forms, support inquiries, and course-related correspondence
Automatically Collected Information
We automatically collect certain technical information when you visit our website:
- Usage Data: IP address, browser type, device information, pages visited, time spent on pages
- Cookie Data: Preferences, session information, and analytics data as described in our Cookie Policy
- Analytics Information: Website performance metrics, user behavior patterns, and educational content effectiveness data
2. How We Use Your Information
We use your personal information for the following purposes, always ensuring compliance with Cyprus and European Union data protection laws:
Educational Service Delivery
- • Process course enrollments and manage student records
- • Provide access to learning materials and course content
- • Facilitate instructor-student communication
- • Issue certificates and track academic progress
- • Organize workshops and educational events
Communication and Support
- • Respond to inquiries and provide customer support
- • Send course updates and educational announcements
- • Share relevant industry news and insights
- • Provide technical assistance and troubleshooting
- • Notify about new course offerings and events
Service Improvement
- • Analyze website usage and educational content effectiveness
- • Improve course curriculum and teaching methodologies
- • Enhance website functionality and user experience
- • Develop new educational programs and services
- • Conduct surveys and gather feedback
Legal and Compliance
- • Comply with legal obligations and regulatory requirements
- • Maintain records for tax and accounting purposes
- • Protect against fraud and unauthorized access
- • Enforce our terms of service and policies
- • Respond to legal requests and court orders
3. Legal Basis for Processing
Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:
Consent
For marketing communications, cookie usage (except essential cookies), and optional data processing activities. You can withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal.
Contract Performance
To provide educational services you have enrolled in, process payments, and fulfill our contractual obligations for course delivery and certification.
Legitimate Interest
For business operations such as improving our services, analyzing educational effectiveness, and maintaining security. We ensure these interests do not override your privacy rights.
Legal Obligation
To comply with legal requirements such as tax regulations, financial record-keeping, and regulatory compliance in Cyprus and the European Union.
4. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law:
| Data Type | Retention Period | Purpose |
|---|---|---|
| Contact form submissions | 3 years | Business correspondence and follow-up |
| Student enrollment records | 5 years | Educational records and certification validation |
| Financial and payment records | 7 years | Legal requirement for tax and accounting |
| Marketing consent data | Until consent withdrawn | Marketing communications |
| Website analytics data | 26 months | Service improvement and analysis |
5. Data Protection and Security
We implement comprehensive security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:
Technical Safeguards
- • SSL/TLS encryption for all data transmission
- • Encrypted storage of sensitive personal information
- • Regular security updates and vulnerability assessments
- • Secure hosting infrastructure with redundant backups
- • Multi-factor authentication for administrative access
Administrative Controls
- • Limited access to personal data on need-to-know basis
- • Regular staff training on data protection practices
- • Incident response procedures for data breaches
- • Regular audits of data processing activities
- • Data processing agreements with third-party vendors
Breach Notification: In the unlikely event of a data breach affecting your personal information, we will notify you and relevant authorities within 72 hours as required by GDPR.
6. Your Rights Under GDPR
As a data subject under GDPR, you have the following rights regarding your personal data:
Right to Access
Request access to your personal data we hold and receive a copy in a structured format.
Right to Rectification
Request correction of inaccurate or incomplete personal data we hold about you.
Right to Erasure
Request deletion of your personal data when there is no compelling reason for continued processing.
Right to Restrict Processing
Request limitation of processing when accuracy is contested or processing is unlawful.
Right to Data Portability
Receive your personal data in a machine-readable format and transfer to another controller.
Right to Object
Object to processing based on legitimate interests or for direct marketing purposes.
How to Exercise Your Rights
To exercise any of these rights, please contact us at privacy@domain.com or call +357 22 468927. We will respond to your request within one month and may require verification of your identity.
7. Contact Information
Data Protection Inquiries
Schema Design
91 Limassol Avenue
2121 Nicosia, Cyprus
privacy@domain.com
+357 22 468927
Supervisory Authority
If you believe we have not addressed your privacy concerns adequately, you have the right to lodge a complaint with the supervisory authority:
Cyprus Commissioner for Personal Data Protection
1 Iasonos Street, 1082 Nicosia, Cyprus
Phone: +357 22 818 456
Email: commissioner@dataprotection.gov.cy
8. Policy Updates
We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or business operations. Any material changes will be communicated through:
- Email notification to registered users
- Prominent notice on our website
- Updated "Last Modified" date at the top of this policy
We encourage you to review this policy regularly to stay informed about how we protect your privacy and comply with evolving data protection regulations in Cyprus and the European Union.