Privacy Policy

Last Updated: April 1, 2025

---

At DataBuffet, we take your privacy seriously. This Privacy Policy explains how we collect, use, share, and protect your personal information when you visit our website or use our services.

This policy applies to our website databuffet.io and related subdomains (together, the “Service”). By using the Service, you agree to the practices described here. If you have any questions, contact us at hello@databuffet.io.

1. What Personal Data We Collect

We may collect the following types of personal information when you use our website, register for a course, or contact us:

• Full name
• Email address
• Phone number
• Payment and billing information
• Location data (optional and only if enabled by you)
• IP address and device/browser details
• Any other information you provide when contacting us or using our service

We may also collect data using cookies and similar tracking technologies. See Section 6 for more information.

2. How We Use Your Information

We use the data we collect for the following purposes:

• To process course registrations and payments
• To provide access to live sessions and recorded content
• To improve the quality and performance of our services
• To send important course updates and support emails
• To respond to customer inquiries
• To send marketing communications (only with your consent)
• To comply with legal obligations

3. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on one or more of the following:

• Your consent (e.g. for marketing emails or cookies)
• Performance of a contract (e.g. to deliver your course)
• Our legitimate interests (e.g. service improvements, fraud prevention)
• Legal obligations (e.g. tax compliance)

4. Your Rights Under GDPR

If you are located in the EU/EEA, you have the following rights:

• Access your personal data
• Request correction or deletion
• Object to or restrict data processing
• Withdraw your consent at any time
• Request data portability
• Lodge a complaint with a supervisory authority

To exercise any of these rights, contact us at hello@databuffet.io.

5. Sharing Your Information

We do not sell your personal information. However, we may share your data with:

• Trusted service providers (e.g., payment processors, email platforms, LMS providers)
• Legal authorities where required by law
• Successors in the event of a merger or acquisition

All third-party providers are GDPR-compliant and operate under data processing agreements (DPAs).

6. Cookies & Tracking Technologies

We use cookies and similar tools to:

• Understand how you use our website
• Improve site performance and functionality
• Offer personalized content and advertising

We respect your cookie preferences and ask for your explicit consent before placing non-essential cookies. You can manage your cookie settings anytime through our Cookie Banner or browser settings.

7. Email Communications

If you subscribe or register, we may send:

• Service-related emails (e.g., access links, course updates)
• Marketing emails (only with your prior consent)

You can unsubscribe at any time via the link in the email footer.

We may also use email addresses for custom audience advertising (e.g. on Facebook or LinkedIn), but only if you have opted in.

8. Data Security

We use appropriate technical and organizational measures to protect your data, including:

• Secure servers and SSL encryption
• Access controls and authentication systems
• Limited data retention policies

Despite our efforts, no method of transmission is 100% secure. If we detect a data breach, we will notify you and relevant authorities where required.

9. Data Retention

We retain your personal information only as long as necessary to:

• Deliver our services
• Fulfill legal obligations (e.g., accounting records)
• Resolve disputes or enforce agreements

If you delete your account, we will delete your personal data within 60 days, unless required to retain it longer by law.

10. International Transfers

As a U.S.-based company with a global audience, we may transfer your data outside the EU/EEA. All transfers are made in accordance with GDPR, using adequate safeguards such as:

• Standard Contractual Clauses (SCCs)
• Transfers to countries with an EU adequacy decision

11. Third-Party Links

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices or content of those sites. Please review their privacy policies before sharing personal data.

12. Updates to This Policy

We may update this Privacy Policy occasionally to reflect changes in laws or our business practices. When we do, we will revise the “Last Updated” date at the top. Major changes will be communicated directly to you.

14. Contact Us

If you have any questions about these Terms, your rights, or how we handle your data, contact us at:

📧 Email: hello@databuffet.io

🌍 Website: https://www.databuffet.io