Privacy Policy
Last Updated: January 2025
Your privacy is important to us. This Privacy Policy explains how CafeTele collects, uses, and protects your personal information when you use our learning platform.
1. Information We Collect
1.1 Personal Information
When you create an account or use our services, we collect:
- Full name and email address
- Phone number (optional)
- Profile picture (optional)
- Educational background and interests
- Payment information (processed securely through payment gateways)
1.2 Usage Data
We automatically collect information about how you use our platform:
- Course enrollment and progress data
- Learning activities and quiz results
- Device information (browser type, OS, device ID)
- IP address and location data
- Cookies and similar tracking technologies
1.3 Course Content
When you create or upload content as an instructor:
- Course materials, videos, and documents
- Comments and discussions
- Reviews and ratings
2. How We Use Your Information
We use collected information for the following purposes:
2.1 Service Delivery
- Provide access to courses and learning materials
- Process payments and issue certificates
- Send course updates and notifications
- Respond to your inquiries and support requests
2.2 Platform Improvement
- Analyze usage patterns to improve user experience
- Personalize course recommendations
- Develop new features and services
- Conduct research and analytics
2.3 Communication
- Send important updates about our services
- Marketing communications (with your consent)
- Course completion notifications
- Newsletter and promotional offers (you can opt-out anytime)
3. Data Sharing and Disclosure
3.1 We DO NOT Sell Your Data
We never sell, rent, or trade your personal information to third parties for marketing purposes.
3.2 We Share Data With:
- Course Instructors: Limited information (name, progress) to facilitate learning
- Payment Processors: Razorpay, Stripe, or other secure payment gateways
- Service Providers: Email services, hosting providers, analytics tools
- Legal Requirements: When required by law or to protect our rights
4. Data Security
We implement industry-standard security measures to protect your data:
- Encryption: SSL/TLS encryption for data transmission
- Secure Storage: Encrypted database with access controls
- Authentication: Secure password hashing and optional 2FA
- Regular Audits: Security assessments and vulnerability testing
- Access Control: Limited employee access to personal data
- Monitoring: 24/7 security monitoring and logging
🔒 Our Security Promise: We use 12 layers of enterprise-grade security including Helmet headers, rate limiting, XSS protection, NoSQL injection prevention, and more. Your data is safe with us.
5. Your Rights and Choices
5.1 Access and Control
You have the right to:
- Access: View and download your personal data
- Update: Modify your profile information anytime
- Delete: Request account deletion and data erasure
- Export: Download your learning data and certificates
- Opt-out: Unsubscribe from marketing emails
5.2 Cookie Preferences
You can control cookies through your browser settings. However, disabling cookies may affect platform functionality.
6. Data Retention
We retain your data for different periods:
- Active Accounts: Data retained while account is active
- Inactive Accounts: Data may be deleted after 3 years of inactivity
- Legal Requirements: Some data retained as required by law
- Transaction Records: Payment data retained for 7 years (tax compliance)
7. Children's Privacy
Our platform is not intended for children under 13 years of age. We do not knowingly collect personal information from children. If you are a parent and believe your child has provided us with personal information, please contact us.
8. International Data Transfers
Your data may be transferred to and processed in countries other than India. We ensure appropriate safeguards are in place to protect your data in compliance with applicable laws.
9. Third-Party Links
Our platform may contain links to external websites. We are not responsible for the privacy practices of third-party sites. Please review their privacy policies before providing any information.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes via:
- Email notification to your registered email
- Prominent notice on our platform
- Updated "Last Modified" date at the top of this policy
11. GDPR Compliance (For EU Users)
If you are located in the European Union, you have additional rights under GDPR:
- Right to data portability
- Right to object to processing
- Right to restrict processing
- Right to lodge a complaint with supervisory authority
12. California Privacy Rights (CCPA)
California residents have specific rights under CCPA including the right to know what personal information is collected, sold, or disclosed.