Privacy Policy

Who we are

Data Masked provides online learning content and account services through this website.

If you have privacy questions, contact us at info@datamasked.com.

Data we collect

Depending on how you use the site, we may collect:

• Account data (name, email, account IDs, and authentication state).
• Password data (stored as a one-way hash, never plain text).
• Google Sign-In data (basic profile information such as email and name) when you choose Google login.
• Billing and purchase data (course purchased, amount, currency, Stripe IDs, receipt metadata such as card brand/last4 when available).
• Learning data (enrollments, lesson progress, certificates, receipts).
• Security/technical data (IP address, user-agent, session tokens, and anti-abuse rate-limit records).

How we use data

• Provide sign-in, account access, and course functionality.
• Process payments and fulfill enrollments.
• Send transactional emails (verification, password, enrollment, billing alerts).
• Provide receipts/certificates and customer support.
• Prevent fraud, abuse, and unauthorized access.
• Maintain and improve platform reliability.

Google user data

If you use Google Sign-In, we use Google account information only to authenticate you, create/link your account, and let you sign in.

We do not sell Google user data. We do not use Google user data for advertising. Our use of Google user data is limited to the practices disclosed in this policy.

Data Masked's use and transfer of information received from Google APIs follows the Google API Services User Data Policy, including the Limited Use requirements.

You can revoke this app's Google access at myaccount.google.com/permissions.

How data is shared

We do not sell personal data. We share data only with service providers needed to operate the service, such as:

• Stripe (payment processing).
• Postmark (transactional email delivery).
• Hosting/database/infrastructure providers used by this app.

We may also share data when required by law, to enforce our terms, or to protect users and the platform.

Cookies and sessions

We use cookies and similar tokens for authentication, checkout integrity, and login flows (for example session, checkout, and OAuth state cookies).

Retention and deletion

We keep personal data for as long as needed to provide the service and operate the business, including recordkeeping, fraud prevention, and legal compliance.

To request account/data deletion, email info@datamasked.com.

Security

We use reasonable administrative, technical, and organizational safeguards to protect data in transit and at rest. No system is 100% secure, but we continuously work to reduce risk.

Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated effective date.

Contact

Privacy requests and questions: info@datamasked.com