1. Introduction
Courze1on1 ("we," "our," "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our online tutoring platform, website, mobile applications, and related services (collectively, the "Services").
Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by all terms of this Privacy Policy. If you do not agree with this Privacy Policy, please do not access or use our Services.
Important: This Privacy Policy applies to all users of our Services, including students, parents/guardians, tutors, and visitors to our website. If you are using our Services on behalf of a child under the age of 13 (or 16 in certain jurisdictions), you represent that you are the parent or legal guardian and consent to the collection and use of the child's information as described in this policy.
2. Information We Collect
We collect several types of information from and about users of our Services:
2.1 Personal Information You Provide
- Account Information: Name, email address, phone number, password, date of birth, profile picture
- Demographic Information: Age, gender, location, timezone, language preferences
- Educational Information: Grade level, subjects of interest, learning goals, academic background
- Tutor Information: Qualifications, certifications, teaching experience, background check results
- Payment Information: Billing address, payment method details (processed securely by payment processors)
- Communication Data: Messages sent through our platform, feedback, support requests
2.2 Information Collected Automatically
- Device Information: IP address, browser type, operating system, device identifiers
- Usage Data: Pages visited, time spent, features used, session recordings (for quality improvement)
- Location Data: Approximate location based on IP address for timezone and localization purposes
- Cookies and Tracking Technologies: See our Cookie Policy section below
2.3 Information from Third Parties
- Social media platforms (if you connect your account)
- Payment processors for transaction verification
- Background check providers (for tutor verification)
- Educational institutions (for verification purposes)
- Marketing and analytics partners
Sensitive Information
We do not intentionally collect sensitive personal information such as racial or ethnic origin, political opinions, religious or philosophical beliefs, or health information. Please do not share such information through our platform.
3. How We Use Your Information
We use the information we collect for various purposes, including:
| Purpose | Information Used | Legal Basis |
|---|---|---|
| Provide and maintain Services | Account info, payment info, educational data | Contract performance, Legitimate interest |
| Match students with tutors | Educational info, preferences, location | Contract performance, Consent |
| Process payments | Payment information, billing details | Contract performance, Legal obligation |
| Communicate with users | Contact info, communication data | Contract performance, Legitimate interest |
| Improve platform functionality | Usage data, device information | Legitimate interest, Consent |
| Ensure security and prevent fraud | IP address, device info, usage patterns | Legitimate interest, Legal obligation |
| Comply with legal obligations | All relevant information | Legal obligation |
| Marketing and promotions | Contact info, preferences, usage data | Consent, Legitimate interest |
Educational Purpose
We may use aggregated, anonymized data for educational research and to improve learning outcomes. This data cannot be used to identify individual users.
4. Information Sharing and Disclosure
We may share your information in the following circumstances:
4.1 With Tutors/Students
- Student profiles (name, grade, subjects) with matched tutors
- Tutor profiles (name, qualifications, availability) with potential students
- Contact information only after session confirmation
- Session history and educational progress between matched users
4.2 With Service Providers
- Payment processors (Stripe, PayPal) for payment processing
- Cloud hosting providers for data storage and infrastructure
- Communication services for emails and notifications
- Analytics providers to understand usage patterns
- Customer support platforms for user assistance
4.3 Legal Requirements
- To comply with applicable laws, regulations, or legal processes
- To respond to valid requests by public authorities
- To protect our rights, privacy, safety, or property
- In connection with a business transfer (merger, acquisition, bankruptcy)
No Sale of Personal Information
We do not sell, rent, or trade your personal information to third parties for their marketing purposes without your explicit consent.
5. Data Security
We implement appropriate technical and organizational measures to protect your personal information:
5.1 Technical Measures
- Encryption: Data in transit (TLS/SSL) and at rest (AES-256)
- Access Controls: Role-based access, authentication requirements
- Network Security: Firewalls, intrusion detection, DDoS protection
- Regular Security Audits: Vulnerability assessments, penetration testing
- Secure Development: Secure coding practices, code reviews
5.2 Organizational Measures
- Employee Training: Security awareness and data protection training
- Privacy by Design: Data protection integrated into product development
- Incident Response Plan: Procedures for data breach response
- Data Protection Officer: Designated privacy professional
- Vendor Management: Security assessments of third-party providers
Your Responsibilities
While we strive to protect your information, you also play a role in security:
- Use strong, unique passwords
- Enable two-factor authentication if available
- Keep your login credentials confidential
- Log out after sessions on shared devices
- Keep your device software updated
6. Data Retention
We retain personal information only as long as necessary for the purposes outlined in this policy:
| Data Type | Retention Period | Notes |
|---|---|---|
| Account Information | While account is active + 2 years after closure | Extended for legal/compliance requirements |
| Session Recordings | 90 days for quality assurance | Optional consent for longer retention |
| Payment Records | 7 years for tax/compliance | Required by financial regulations |
| Communication Data | 3 years from last interaction | For support and dispute resolution |
| Usage Data | Aggregated after 24 months | Anonymized for analytics |
| Marketing Data | Until consent withdrawal | Opt-out available at any time |
After the retention period ends, we will securely delete or anonymize your personal information. Some data may be retained longer when required by law or for legitimate business purposes.
7. Children's Privacy
Our Services are designed for users of all ages, but we take special care to protect children's privacy:
7.1 Age Restrictions
- Under 13 (COPPA): Accounts must be created and managed by parents/guardians
- 13-15 (GDPR): Parental consent may be required depending on jurisdiction
- 16+: Can create and manage their own accounts
7.2 Parental Controls
- Parents can review, edit, or delete their child's information
- Parents control communication settings and privacy preferences
- Parents can monitor session history and progress
- Parents receive notifications about account activity
7.3 Limited Data Collection
For children's accounts, we minimize data collection to only what is necessary:
- Collect minimal personal information
- No behavioral advertising to children
- Strict controls on data sharing
- Enhanced security measures
Parental Rights
Parents/guardians have the right to:
- Review their child's personal information
- Request deletion of their child's information
- Refuse further collection or use of the child's information
- Withdraw consent at any time
To exercise these rights, contact us at privacy@courze1on1.com.
8. Cookies and Tracking Technologies
8.1 Types of Cookies We Use
| Cookie Type | Purpose | Examples | Duration |
|---|---|---|---|
| Essential | Required for platform functionality | Authentication, security, session management | Session / Persistent |
| Performance | Analytics and performance monitoring | Google Analytics, Mixpanel | Up to 2 years |
| Functionality | Remember preferences and settings | Language, timezone, layout preferences | Up to 1 year |
| Advertising | Personalized marketing (opt-in) | Facebook Pixel, Google Ads | Up to 1 year |
8.2 Your Cookie Choices
You can control cookies through:
- Browser Settings: Most browsers allow you to refuse or delete cookies
- Our Cookie Consent Banner: Manage preferences when first visiting our site
- Platform Settings: Adjust privacy settings in your account
- Opt-Out Tools: Industry opt-out programs for advertising cookies
Impact of Disabling Cookies
If you disable essential cookies, some features of our platform may not function properly. Performance and functionality cookies enhance your experience but are not required for basic functionality.
9. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
Right to Access
Request a copy of your personal information we hold.
Right to Rectification
Request correction of inaccurate or incomplete information.
Right to Erasure
Request deletion of your personal information ("right to be forgotten").
Right to Restrict Processing
Request temporary restriction of processing your information.
Right to Data Portability
Receive your information in a structured, commonly used format.
Right to Object
Object to processing based on legitimate interests or direct marketing.
Right to Withdraw Consent
Withdraw consent at any time where processing is based on consent.
Right to Complain
Lodge a complaint with your local data protection authority.
Exercising Your Rights
To exercise any of these rights, please contact us using the information in the Contact Information section. We will respond to your request within 30 days and may require identity verification to process your request.
10. International Data Transfers
As a global platform, your information may be transferred to and processed in countries other than your own:
10.1 Transfer Locations
- Primary Processing: United States (where our servers are located)
- Service Providers: Various locations based on provider locations
- Regional Operations: Local offices may process data in their regions
10.2 Transfer Safeguards
When transferring data internationally, we implement appropriate safeguards:
- Standard Contractual Clauses: EU-approved data transfer agreements
- Privacy Shield Framework: For US-based transfers (where applicable)
- Binding Corporate Rules: For intra-company transfers
- Derogations: Where permitted by law (consent, contract necessity)
Your Consent
By using our Services, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence. We take all necessary measures to ensure your information remains protected.
11. Third-Party Links and Services
Our platform may contain links to third-party websites or integrate with third-party services:
11.1 External Websites
- Educational resource websites
- Partner organizations
- Social media platforms
- Payment gateway pages
11.2 Integrated Services
- Video conferencing tools (Zoom, Google Meet)
- Document sharing platforms (Google Drive, Dropbox)
- Educational content providers
- Assessment and testing tools
Important Notice
This Privacy Policy applies only to our Services. We are not responsible for the privacy practices of third-party websites or services. We encourage you to review the privacy policies of any third-party services you use through our platform.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time:
12.1 Update Process
- We review and update this policy at least annually
- Updates may reflect changes in services, technology, or legal requirements
- Significant changes will be communicated to users
- The "Last Updated" date at the top indicates when changes were made
12.2 Notification Methods
- Email Notification: For significant changes affecting your rights
- Platform Notification: In-app or on-site notifications
- Public Posting: Updated policy posted on our website
- Consent Requirement: May require renewed consent for major changes
Your Continued Use
Continued use of our Services after changes to this Privacy Policy constitutes acceptance of those changes. If you do not agree with the updated policy, you must discontinue using our Services.