fintekin's Privacy Policy

Last updated: October 23, 2025

Table of Contents

1. Definitions
2. What Data We Collect
3. How We Collect Data
4. Legal Bases for Processing (GDPR/UK GDPR)
5. How We Use Your Data
6. Who We Share Your Data With
7. Cookies and Tracking Technologies
8. AI and Automated Processing
9. Security
10. Your Rights
11. Jurisdiction-Specific Rules
12. Children’s Privacy
13. International Data Transfers
14. Data Retention
15. Updates to This Policy
16. Contact Us

1. Definitions

• • Personal Data: Any information relating to an identified or identifiable person.
• • Processing: Any action performed on data, including collection, use, storage, or deletion.
• • Services: The fintekin platform including web, mobile, API, and related services.

2. What Data We Collect

• • Account Information: Full name, email address, username, encrypted password, country, preferred language, and account settings.
• • Profile Data: Profile photo, biography, social media handles, and professional details such as job title, company name, and industry.
• • Learning Data: Enrolled courses, learning paths, progress metrics, test results, discussion activity, completion certificates, and user notes.
• • Payment Data: Billing name and address, ZIP/postal code, transaction ID, and payment status. Full credit card data is handled only by PCI-compliant third-party processors.
• • Instructor Data: Tax identification numbers, government ID (where required for verification), payout method (e.g., PayPal, bank account), and payout schedule preferences.
• • Communications: Support messages, chat logs, surveys, contact form data, complaint submissions, and responses to feedback requests.
• • System and Usage Data: IP address, device type and ID, operating system, browser type and version, screen resolution, session logs, login timestamps, and traffic sources.
• • Third-Party Data: Data from social login providers (Google, LinkedIn, Facebook), advertising attribution data, affiliate referral codes, and enterprise integrations.
• • Marketing Data: Interaction with emails, newsletter opt-in status, clickthrough rates, A/B test participation, campaign referral tracking.
• • Technical Diagnostics: Error reports, crash logs, latency statistics, feature usage heatmaps, and browser console logs (where consented).

3. How We Collect Data

• • Direct input (e.g., registration, content uploads)
• • Automated tracking (cookies, scripts, pixels)
• • Third-party integrations (SSO, payment gateways, analytics)
• • Communication metadata (support tickets, app messaging)
• • Browser and device fingerprinting tools

4. Legal Bases for Processing (GDPR/UK GDPR)

We process your data based on:

• • Performance of a contract: Course access, purchases, customer support.
• • Legal obligations: Tax compliance, anti-fraud duties, consumer rights enforcement.
• • Legitimate interests: Service improvement, personalized content delivery, marketing performance.
• • Consent: Opt-in email communications, cookie-based tracking.
• • Vital interests: Emergency contact purposes, misuse prevention.

5. How We Use Your Data

• • Provide and improve educational content
• • Verify account identity and prevent unauthorized access
• • Enable course progress tracking and certification
• • Suggest content and resources based on usage patterns
• • Communicate account and system updates
• • Conduct analytics and develop new features
• • Enforce terms and detect fraud
• • Fulfil contractual and legal duties

6. Who We Share Your Data With

• a. Instructors and Program Facilitators: Learning metrics, anonymized feedback
• b. Other Users: If you post reviews, questions, or public profile content
• c. Vendors and Processors: CRM tools, cloud hosting, analytics services, payment systems
• d. Group Entities: Internal affiliates and subsidiaries
• e. Accrediting Bodies: With consent, for continuing education and credential validation
• f. Government and Regulators: Upon lawful request
• g. Acquirers and Investors: If fintekin undergoes corporate changes
• h. Marketing Platforms: Ad targeting tools under contractual safeguards
• i. Academic Researchers: De-identified datasets for educational studies

7. Cookies and Tracking Technologies

• a. Strictly Necessary: Login, load balancing, fraud defence
• b. Functional: User settings, audio/video preferences
• c. Performance: A/B testing, traffic origin analytics
• d. Advertising: Retargeting pixels, affiliate tracking
• e. Social Media: Embedded sharing buttons, platform login buttons

You can manage your cookie preferences via browser settings or our Cookie Banner. For more information, see Cookie Policy.

8. AI and Automated Processing

We may use AI to:

• • Suggest learning paths
• • Provide automated support
• • Detect inappropriate content or behaviors. 

We do not train generative AI on identifiable personal data. Users can opt out of automated decisions that produce legal or similarly significant effects.

9. Security

Security measures include:

• • TLS/SSL data encryption
• • MFA (Multi-Factor Authentication)
• • Role-based access control
• • Periodic third-party audits
• • Anomaly detection systems Despite safeguards, online transmission is not 100% secure. We recommend using strong passwords and logging out after each session.

10. Your Rights

• • Access, correct, or delete your data
• • Restrict or object to certain processing
• • Withdraw consent for marketing or analytics
• • Request data portability
• • File a complaint with your local authority.
  
  

To exercise these rights, contact privacy@fintekin.com. We may require you to verify your identity. For authorized agents making requests on behalf of a user, we may require additional verification and authorization documents.

11. Jurisdiction-Specific Rules

a. Users in California (CCPA/CPRA) 

California residents have the right to:

• • Know what personal data is collected and how it is used
• • Request access to and deletion of their personal data
• • Correct inaccurate personal information
• • Opt-out of the sale or sharing of personal information
• • Not be discriminated against for exercising these rights

To exercise your rights, contact privacy@fintekin.com. We may require you to verify your identity. For authorized agents making requests on behalf of a user, we may require additional verification and authorization documents.

b. Users in Virginia, Colorado, Connecticut, Utah 

Residents of these states may:

• • Access, correct, delete, and obtain a copy of their personal data
• • Opt-out of targeted advertising and profiling
• • Submit a complaint if a request is denied

You may exercise these rights via privacy@fintekin.com. We will respond within 45 days.

c. Users in Nevada 

Nevada law allows residents to request that a website operator not sell their personal information.

Although fintekin does not sell personal information, requests can be submitted to privacy@fintekin.com.

d. Users in the European Economic Area (EEA) 

Under the GDPR, you have the right to:

• • Access, correct, delete, restrict, or object to processing of your data
• • Data portability
• • Withdraw consent at any time
• • Lodge complaints with a supervisory authority

• We use Standard Contractual Clauses (SCCs) to ensure adequate protection of your data during international transfers.

e. Users in the United Kingdom (UK GDPR) 

The UK GDPR mirrors EU GDPR protections.

You may:

• • Access, rectify, or erase your data
• • Restrict or object to processing
• • File a complaint with the Information Commissioner's Office (ICO)

We transfer data using SCCs or other lawful mechanisms.

f. Users in Switzerland 

Swiss users are protected by similar rights under the Swiss Federal Data Protection Act. Complaints can be made to the Swiss Federal Data Protection and Information Commissioner (FDPIC).

g. Users in Australia 

We comply with the Australian Privacy Principles (APPs). You have the right to:

• • Know why we collect your data
• • Request access or correction
• • Lodge complaints with the Office of the Australian Information Commissioner (OAIC)

Website: www.oaic.gov.au | Email: enquiries@oaic.gov.au | Phone: 1300 363 992

h. Users Outside of the United States

If you are using our Services from outside the United States, please be aware that your personal data will be transferred to, stored, and processed in the United States and other countries where our service providers or partners operate.

By using the Services, you consent to this transfer in accordance with this Privacy Policy.

12. Children's Privacy

We do not knowingly collect data from children under:

• • 13 years (U.S.)
• • 16 years (EU/UK) Parents/guardians can contact us to review or delete information at privacy@fintekin.com.

13. International Data Transfers

We transfer data using:

• • Standard Contractual Clauses (SCCs)
• • Data Privacy Framework participation
• • Binding Corporate Rules (if applicable)
• • Regional adequacy decisions (e.g., UK, EEA)

14. Data Retention

We retain:

• • Core account data while your account is active.
• • Legal and transactional data for 6-10 years as required.
• • Inactive user logs for 24 months (anonymized afterward).
• • Feedback, reviews, and certificates permanently unless deleted by request.

15. Updates To This Policy

We will notify you of significant updates via:

• • Email
• • In-app alerts
• • Website banners

All changes are effective upon posting unless otherwise stated.

16. Contact Us

If you have any questions, concerns, or feedback about the Privacy Policy, we encourage you to contact our Support Team.

The best way to reach out to us is through our Contact Us page on our website. We value open communication and are here to help.

Thank you for trusting fintekin.