Privacy Policy

Introduction

We respect your privacy. This Policy describes what personal data we collect, how we use it, and the choices you have when you interact with FloraCraft Academy and related services.

• “Personal data” means information that can identify you directly or indirectly.
• “Processing” means any operation performed on data, such as collecting, storing, using, or deleting.
• This Policy applies to this website and our course-related communications.

Data We Collect

We may collect the following categories of data depending on how you use our services:

• Account data: name, email address, password hash, role/permissions, subscription status.
• Payment and billing metadata: transaction identifiers, payment status (we do not store full card numbers on our servers).
• Usage data: pages viewed, session timestamps, referring pages, device type, browser, approximate location (e.g., city/region).
• Communications: messages you send us, support requests, survey answers, and feedback.
• Security data: IP address, log records, and anti-fraud signals used to protect our platform.

How We Use Data

We use personal data to operate and improve our services, including:

• Provide access to courses, learning materials, and account features.
• Process purchases, confirm payments, and deliver invoices/receipts.
• Personalize your experience (e.g., remembering preferences such as language or theme).
• Maintain security, detect abuse, and prevent unauthorized access.
• Communicate with you about service updates, policy changes, and support.
• Measure performance and improve reliability, usability, and content quality.

Legal Bases (Where Applicable)

Depending on your location, we may rely on one or more of the following legal bases to process your personal data:

• Contract: processing necessary to provide services you request.
• Legitimate interests: security, product improvement, analytics, and preventing fraud (balanced against your rights).
• Consent: for optional cookies and certain marketing communications where required.
• Legal obligation: compliance with applicable laws (e.g., tax, accounting, or lawful requests).

Cookies and Similar Technologies

We use cookies and similar technologies for core functionality, preferences, analytics, and security. You can manage your cookie preferences using the cookie banner or the “Cookie choices” panel.

• Necessary: required for site operation (e.g., security tokens).
• Preferences: remember settings (e.g., theme).
• Analytics: understand how visitors use the site (aggregated where possible).

Sharing

We do not sell personal data. We may share personal data with:

• Service providers who help operate the website (hosting, email delivery, payment processing), bound by confidentiality and data protection terms.
• Authorities if required to comply with law, protect rights and safety, or respond to lawful requests.
• Business transfers in the event of a merger, acquisition, or asset sale (with appropriate safeguards).

International Transfers

Your data may be processed in countries other than your own. Where required, we use appropriate safeguards (such as contractual protections) to help ensure your data remains protected when transferred internationally.

Security

We implement administrative, technical, and organizational safeguards designed to protect personal data from unauthorized access, alteration, disclosure, or destruction. No method of transmission or storage is 100% secure; however, we continuously improve our controls aligned with industry best practices.

• Access controls and least-privilege permissions.
• Monitoring and logging to detect suspicious behavior.
• Secure development practices and regular updates.

Retention

We keep personal data only as long as necessary for the purposes described in this Policy, unless a longer retention period is required or permitted by law. Retention may depend on:

• Account lifecycle (active subscription vs. closed account).
• Legal obligations (tax and accounting requirements).
• Security and fraud prevention needs.

Your Rights

Depending on your location, you may have rights to:

• Access, correct, or delete your personal data.
• Receive a portable copy of your data (data portability).
• Object to processing or request restriction of processing.
• Withdraw consent where processing is based on consent.
• File a complaint with a data protection authority.

To exercise your rights, contact us using the details below. We may need to verify your identity to protect your account.

Children’s Privacy

Our services are not intended for children under 13 (or the minimum legal age in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided us personal data, contact us and we will take appropriate steps to remove it.

Contact

If you have questions or requests about privacy, contact us:

• Email: [email protected]
• Phone: +1 (415) 555-0173
• Website: Home

Changes to This Policy

We may update this Policy from time to time. We will update this page and revise the effective date above when changes are made. If changes are significant, we may provide additional notice where appropriate.