Privacy Policy (GDPR)

Last updated: June 27, 2024

This Privacy Policy describes how Kansvector ("we", "us", or "our") collects, uses, stores, and protects personal data when you use our website at kansvector.vip and related services. We are committed to protecting your privacy and processing your personal data in accordance with applicable data protection legislation, including the General Data Protection Regulation (GDPR).

1. Data Controller

The data controller responsible for your personal data is:

Kansvector
1 Catchpole St, Macquarie, ACT, 2614, Australia
Email: info@kansvector.vip
Phone: +61 2 9622 3093

2. Personal Data We Collect

We collect personal data only to the extent necessary to provide our services. The categories of personal data we may collect include:

2.1 Data You Provide Directly

Account registration data: name, email address, password.
Profile data: learning preferences, course history, preferred session type (group or individual).
Payment data: billing name, address, and payment method details (processed via third-party payment providers; we do not store full card details).
Communications: messages, support requests, feedback, and enquiry form submissions.

2.2 Data Collected Automatically

Usage data: pages visited, features used, session duration, clicks, and navigation paths.
Device and technical data: IP address, browser type and version, operating system, screen resolution, and referring URLs.
Cookies and tracking technologies: see Section 8 for full details.

2.3 Data from Third Parties

We may receive limited personal data from third-party platforms when you choose to authenticate using a social login provider or when payment processors confirm transaction status.

3. Purposes and Legal Bases for Processing

Purpose Legal Basis
Providing and managing your account and learning sessions Performance of a contract (Art. 6(1)(b) GDPR)
Processing payments and issuing invoices Performance of a contract (Art. 6(1)(b) GDPR)
Sending transactional and service-related communications Performance of a contract (Art. 6(1)(b) GDPR)
Sending marketing and promotional communications Consent (Art. 6(1)(a) GDPR)
Personalising learning paths and recommendations Legitimate interest (Art. 6(1)(f) GDPR)
Analytics and service improvement Legitimate interest (Art. 6(1)(f) GDPR)
Fraud prevention and security Legitimate interest (Art. 6(1)(f) GDPR)
Compliance with legal obligations Legal obligation (Art. 6(1)(c) GDPR)

Where we rely on legitimate interests, we have assessed that our interests are not overridden by your rights and freedoms. You may request details of this assessment by contacting us.

4. How We Use Your Data

We use your personal data to:

- Create and manage your user account.
- Deliver group and individual online learning sessions.
- Adapt and personalise your learning path based on your progress and preferences.
- Facilitate live interaction between learners and instructors.
- Process payments and manage subscriptions or course enrolments.
- Respond to enquiries, support requests, and feedback.
- Send service notifications, updates, and where consented, promotional materials.
- Analyse platform usage to improve performance and user experience.
- Comply with applicable legal and regulatory requirements.

5. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal, accounting, or reporting obligations.

Account data: retained for the duration of your account and for up to 3 years after account closure.
Payment records: retained for up to 7 years for financial and legal compliance purposes.
Marketing consent records: retained until you withdraw consent or for up to 3 years from the last interaction, whichever comes first.
Support communications: retained for up to 2 years from the date of resolution.

After the applicable retention period, personal data is securely deleted or anonymised.

6. Data Sharing and Third Parties

We do not sell your personal data. We may share your data with trusted third parties only in the following circumstances:

6.1 Service Providers

We engage third-party service providers to support our operations, including cloud hosting providers, payment processors, email delivery services, video conferencing platforms, and analytics tools. These providers act as data processors under written agreements and may only process your data on our documented instructions.

6.2 Legal Requirements

We may disclose personal data when required to do so by law, court order, or regulatory authority, or where disclosure is necessary to protect our legal rights or the safety of others.

6.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, personal data may be transferred as part of that transaction. We will notify you before your personal data is transferred and becomes subject to a different privacy policy.

7. International Data Transfers

Some of our service providers may process personal data outside your country of residence. Where personal data is transferred internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the relevant supervisory authority, adequacy decisions, or other lawful transfer mechanisms under applicable data protection law.

8. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enable essential functionality, analyse usage, and improve your experience.

8.1 Types of Cookies We Use

Strictly necessary cookies: required for the website to function and cannot be disabled. They are set in response to actions you take, such as logging in or setting preferences.
Analytical and performance cookies: help us understand how visitors interact with our website, enabling us to improve structure and content. These are only set with your consent.
Functional cookies: allow the website to remember choices you make and provide enhanced, personalised features. These are only set with your consent.

8.2 Managing Cookies

You can manage or withdraw your consent for non-essential cookies at any time through your browser settings or our cookie preference tool. Disabling certain cookies may affect the functionality of the website.

9. Your Rights Under GDPR

If you are located in the European Economic Area or another jurisdiction with equivalent data protection legislation, you have the following rights in relation to your personal data:

Right of access: you may request a copy of the personal data we hold about you.
Right to rectification: you may request correction of inaccurate or incomplete personal data.
Right to erasure: you may request deletion of your personal data where there is no compelling reason for its continued processing.
Right to restriction: you may request that we restrict the processing of your personal data in certain circumstances.
Right to data portability: you may request a copy of personal data you have provided to us in a structured, commonly used, machine-readable format.
Right to object: you may object to processing based on legitimate interests or for direct marketing purposes.
Right to withdraw consent: where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.
Right to lodge a complaint: you have the right to lodge a complaint with your local supervisory authority if you believe your data has been processed unlawfully.

To exercise any of these rights, please contact us at info@kansvector.vip. We will respond to your request within 30 days. We may ask you to verify your identity before processing your request.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures include encrypted data transmission (TLS), access controls, regular security assessments, and staff training on data protection obligations.

No method of transmission over the internet or electronic storage is completely secure. While we take all reasonable precautions, we cannot guarantee absolute security. In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay in accordance with our legal obligations.

11. Children's Privacy

Our services are not directed to children under the age of 16. We do not knowingly collect personal data from children under 16 without verified parental consent. If you believe we have collected data from a child without appropriate consent, please contact us immediately and we will take steps to remove that information.

12. Links to Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any third-party sites you visit.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you by email or through a prominent notice on our website. Your continued use of our services after any changes constitutes your acceptance of the updated policy.

14. Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or our handling of your personal data, please contact us:

Kansvector
1 Catchpole St, Macquarie, ACT, 2614, Australia
Email: info@kansvector.vip
Phone: +61 2 9622 3093
WhatsApp: https://wa.me/61296223093