Information We Collect

We collect information in several ways, and we want you to understand exactly what data we gather and why it matters for your educational experience.

Personal Information You Provide

When you register for our programs or contact us, you might share details like your name, email address, phone number, and postal address. Sometimes we ask about your educational background or professional interests to better tailor our course recommendations. Payment details are collected when you enrol, though we don't store complete credit card numbers on our servers.

Information Collected Automatically

Our website collects technical data through cookies and similar tools. This includes your IP address, browser type, device information, and how you navigate through our site. We track which course pages you visit and how long you spend on different sections. This helps us understand what content resonates with learners and where we might need to improve the experience.

Learning Analytics Data

As you progress through courses, we collect data about your learning journey. This includes quiz scores, assignment submissions, video watch times, and forum participation. We use this to provide feedback on your progress and to improve our teaching methods based on how students engage with material.

How We Use Your Information

Every piece of data we collect serves a specific purpose related to delivering quality financial education.

We occasionally send emails about new courses, program updates, or relevant financial education content. You can opt out of marketing communications anytime, though we'll still need to send essential messages about courses you're enrolled in.

Data Sharing and Third Parties

While we protect your information carefully, some sharing is necessary to operate our educational platform effectively.

Service Providers We Work With

We partner with trusted companies that help us run our platform. Our payment processor handles transactions securely, our email service provider delivers course communications, and our cloud hosting provider stores platform data. These companies can only use your information to provide services to us, and they're bound by strict confidentiality agreements.

Legal Requirements

Sometimes we're legally required to share information. If we receive a valid subpoena, court order, or government request, we may need to disclose data. We'll notify you about such requests unless prohibited by law. We might also share information if necessary to prevent fraud, protect our rights, or ensure platform security.

Business Transitions

If crenilovaq merges with another organization or is acquired, your information would transfer as part of that transaction. We'd notify you before your data becomes subject to a different privacy policy.

Your Rights and Choices

Australian privacy law gives you significant control over your personal information. Here's what you can do and how to exercise these rights.

To exercise any of these rights, email us at contact@crenilovaq.com with "Privacy Request" in the subject line. We'll verify your identity before processing requests to protect against unauthorized access.

Data Security and Protection

Security isn't just a technical requirement for us—it's fundamental to maintaining trust with our learners.

Technical Safeguards

We use industry-standard encryption to protect data both in transit and at rest. Our servers are housed in secure facilities with restricted physical access. We maintain firewalls, conduct regular security audits, and monitor systems for unusual activity around the clock.

Access Controls

Only authorized staff members can access personal information, and only when necessary for their specific role. Our team receives regular training on data protection and privacy principles. We use role-based access controls and maintain detailed logs of who accesses what information.

Breach Response

In the unlikely event of a data breach that poses serious harm, we'll notify affected individuals within 72 hours and report to the Office of the Australian Information Commissioner as required. We have an incident response plan ready and regularly test our procedures.

Data Retention and Deletion

We don't keep your information forever—only as long as necessary for legitimate purposes.

How Long We Keep Data

• Active account information: Maintained while your account is open and for 7 years after you close it, as required by Australian tax law
• Course completion records: Kept indefinitely to verify credentials and issue replacement certificates if needed
• Payment records: Retained for 7 years to comply with financial reporting requirements
• Marketing consent records: Maintained until you withdraw consent, plus an additional period to prove compliance
• Website analytics data: Typically aggregated and anonymized after 26 months
• Support communications: Archived for 3 years then deleted unless part of an ongoing issue

Secure Deletion Process

When we delete data, it's done securely and completely. Files are overwritten to prevent recovery, and backups are purged according to our retention schedule. Some information might persist in archived backups for up to 90 days after deletion from active systems.

Cookies and Tracking Technologies

Like most websites, we use cookies and similar tools. Here's a straightforward explanation of what that means.

Types of Cookies We Use

Essential cookies keep the site working—they remember your login status and course progress. Analytics cookies help us understand which pages are popular and where users encounter problems. We use this to improve the platform, not to track you individually. Preference cookies remember your settings like video playback speed or preferred language.

We don't use advertising cookies or allow third-party ad networks to track you on our site. Some pages embed videos from external platforms like YouTube, which may set their own cookies under their privacy policies.

Managing Cookie Preferences

Your browser settings let you block or delete cookies, though this might affect how well the platform works. Essential cookies are necessary for core functionality, but you can opt out of analytics cookies through your account settings or browser preferences.

International Data Transfers

Our primary servers are located in Australia, but some services we use have infrastructure in other countries.

When we transfer data internationally, we ensure adequate protections are in place. This might include using service providers certified under recognized privacy frameworks, implementing standard contractual clauses, or obtaining your explicit consent where required. Your data might be processed in the United States or the European Union by our cloud hosting or email service providers.

Rest assured that wherever your data goes, it receives the same level of protection required under Australian privacy law.

Children's Privacy

Our courses are designed for adults and young adults pursuing financial education. We don't knowingly collect information from children under 13. If we discover we've inadvertently collected data from someone under 13, we'll delete it promptly.

For learners aged 13-17, we recommend parental involvement in the enrolment process and encourage parents to review this policy with their children.

Changes to This Policy

We update this privacy policy occasionally to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we'll notify active users by email and post a notice on our website.

The "Last Updated" date at the top shows when the current version took effect. We encourage you to review this policy periodically, especially before providing new personal information.

Previous versions are archived and available upon request if you want to see how our practices have evolved.

Australian Privacy Principles Compliance

crenilovaq adheres to all 13 Australian Privacy Principles established under the Privacy Act 1988. We maintain transparent practices around collection, use, disclosure, and security of personal information. Our data handling practices are regularly audited for APP compliance.

If you believe we've breached an APP, please contact us immediately so we can investigate and respond appropriately. You also have the right to lodge a complaint with the Office of the Australian Information Commissioner at any time.