Privacy Policy

• As a Data Controller: We control the personal data of our direct clients (Administrators and Instructors) regarding account creation, billing, and platform support.
• As a Data Processor: When you utilize our platform to survey participants and distribute certificates, you are the Data Controller. FeedbackCert acts solely as a Data Processor, handling participant data exclusively under your automated instructions.

• Client Account Data: Names, email addresses, encrypted passwords, and organizational details required to operate your dashboard.
• Billing Information: Processed entirely by Paddle.com. We do not store, process, or transmit raw credit card data on our servers.
• Participant Data: End-user names, email addresses, and the specific feedback responses you configure the platform to collect.
• Telemetry & Technical Data: IP addresses, browser types, interaction logs, and email delivery statuses (e.g., bounce rates, open tracking) to maintain security and measure platform performance.

We process data on the following bases:

• Contractual Necessity: Supplying the core SaaS services and account management.
• Legitimate Interest: Preventing fraud, ensuring network security, and anonymizing data to optimize our infrastructure.
• Legal Obligation: Maintaining financial records for regulatory compliance.

We never sell personal data. We securely transmit data only to verified sub-processors necessary to run the platform:

• Payment & Global Operations: Paddle.com (Merchant of Record).
• Infrastructure Hosting: Secure cloud hosting providers ensuring minimal latency and high availability.
• Communications: Transactional email APIs utilized solely to deliver user-triggered credentials and password resets.

• Active Subscriptions: We hold your account and participant data for the duration of your active subscription to allow for historical analytics and certificate verification.
• Terminated Accounts: Upon subscription cancellation and subsequent account deletion requests, personal data is permanently purged from our active databases within 30 days. Immutable financial transaction logs are retained for up to 7 years strictly for tax auditing purposes.

We utilize enterprise-grade security protocols. Data is encrypted in transit via forced TLS 1.2+ connections and encrypted at rest utilizing AES-256 standard encryption. Internal access to production environments is strictly limited, logged, and shielded by multi-factor authentication (MFA).

Under applicable global laws (e.g., GDPR, CCPA), you have the right to access, rectify, port, or request the deletion of your personal data. To exercise these rights, or to direct us to delete participant data processed on your behalf, contact our data privacy team at support@feedbackcert.com.