Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, store, and protect your personal information when you use LearnCodingFast.

Last updated: 19 March 2025•Version 2.0

Our Privacy Principles

🔒We never sell your personal data

📧Marketing emails are strictly opt-in

🍪No tracking until you give consent

🗑️You can delete your data at any time

🛡️GDPR & UK GDPR fully compliant

👁️Full transparency on data usage

1. Introduction & Scope

This Privacy Policy ("Policy") explains how LearnCodingFast ("the Service", "the Platform", "we", "us", or "our") collects, uses, discloses, and protects your personal information when you visit our website, create an account, interact with courses, or use any features of the platform.

By using the Service, you acknowledge that you have read and understood this Policy and consent to the practices described herein.

We comply with:

UK General Data Protection Regulation (UK GDPR) — Data Protection Act 2018
EU General Data Protection Regulation (EU GDPR) — Regulation (EU) 2016/679
ePrivacy Directive — Directive 2002/58/EC (as amended)
Google AdSense Programme Policies — including Consent Mode v2 requirements
Google Analytics Terms of Service

The data controller for personal data collected through the Service is the operator of LearnCodingFast. For enquiries, please use the Contact page.

2. Legal Bases for Processing

Under GDPR, we process your personal data based on the following legal bases:

Consent (Article 6(1)(a))

For marketing emails, analytics cookies, ad personalisation, and non-essential data processing. You can withdraw consent at any time.

Contract Performance (Article 6(1)(b))

To provide account services, save course progress, and deliver the educational platform you registered for.

Legitimate Interests (Article 6(1)(f))

For platform security, fraud prevention, service improvement, and essential operational analytics.

Legal Obligation (Article 6(1)(c))

To comply with applicable laws, regulations, and lawful government requests.

3. Information We Collect

A. Information You Provide Directly

When you create an account or interact with the Service:

Account data: Name, email address, password (securely hashed — we never store plaintext passwords)
Profile preferences: Display name, notification settings, theme preference
Learning data: Course progress, completed lessons, bookmarks, last activity timestamps
Consent records: Cookie consent choices, email opt-in/opt-out preferences with timestamps
Communications: Messages sent through the Contact page

B. Information Collected Automatically

When you visit the Service, we may automatically collect (subject to your consent choices):

Device information: Browser type, operating system, screen resolution, device type
Network information: IP address (for security and fraud prevention)
Usage data: Pages visited, time spent on pages, click patterns, navigation paths
Referral data: How you arrived at the Service (search engine, direct link, social media)

C. Advertising & Analytics Data (Consent Required)

Only if you grant consent, Google and analytics tools may collect:

Cookie identifiers and advertising IDs
Ad interaction data (impressions, clicks)
Browsing activity related to ad targeting
Device identifiers for cross-device measurement

You can reject or withdraw this consent at any time — see Section 9.

4. How We Use Your Information

We use the information we collect for the following purposes:

Purpose	Legal Basis
Provide and operate the learning platform	Contract
Save and sync course progress	Contract
Authenticate and secure your account	Contract / Legitimate Interest
Send learning reminders (if opted in)	Consent
Send news & updates (if opted in)	Consent
Display advertisements via AdSense	Consent
Analyse website usage and performance	Consent / Legitimate Interest
Prevent fraud and ensure security	Legitimate Interest
Comply with legal obligations	Legal Obligation

We never sell, rent, or trade your personal data to third parties for their marketing purposes.

5. Email Communications

We offer two categories of optional emails:

📚 Learning Reminders

Triggered after 72+ hours of inactivity
Contains your last course and progress
Designed to maintain learning momentum
Maximum frequency: once per week

📰 News & Updates

New courses and lesson announcements
Platform improvements and features
Educational blog posts and tips
Sent no more than twice per month

🔒 Our Commitments:

All email types are off by default — we never pre-check consent boxes
Every email includes a clear, one-click unsubscribe link
Preferences can be changed anytime in Account Settings
We never share your email with third parties for marketing
Unsubscribe requests are honoured within 24 hours

6. Cookies & Google Consent Mode v2

We use cookies and similar tracking technologies as described in our Cookie Policy. Key points:

A cookie consent banner appears on every first visit, regardless of entry point
No analytics or advertising cookies are loaded before you make a consent choice
We implement Google Consent Mode v2 with four signals: ad_storage, ad_user_data, ad_personalization, analytics_storage
AdSense scripts only load after you respond to the consent banner
Strictly necessary cookies (authentication, security, consent storage) are always active

You can change your cookie preferences at any time via the cookie settings in your account or by clearing your browser cookies and revisiting the site.

7. Google AdSense Disclosure

We use Google AdSense to display advertisements on the platform. This is required disclosure under Google's programme policies.

Google and its advertising partners may:

Use cookies to serve ads based on your prior visits (if you consent to ad personalisation)
Display non-personalised, contextual ads (if you reject personalisation)
Use the DoubleClick cookie for ad serving and frequency capping
Collect and process data for ad measurement and fraud prevention

External Resources:

Google's advertising policies: policies.google.com/technologies/ads
Manage your Google ad settings: google.com/settings/ads
Opt out of personalised advertising: aboutads.info/choices

8. Data Sharing & Third Parties

We do not sell, rent, or trade your personal data.

We may share data with the following categories of recipients:

Service Providers

Hosting, database, email delivery, and infrastructure providers who process data on our behalf under strict data processing agreements.

Google (Advertising & Analytics)

Only if you consent to analytics and/or advertising cookies. Subject to Google's privacy policies.

Legal & Regulatory Authorities

When required by law, court order, or to protect the rights, safety, or property of our users or the public.

All third-party processors are bound by contractual obligations to protect your data in accordance with GDPR and applicable data protection laws.

9. Your Data Rights (GDPR / UK GDPR)

Under GDPR and UK GDPR, you have the following rights regarding your personal data:

Right of Access (Art. 15)

Request a copy of all personal data we hold about you.

Right to Rectification (Art. 16)

Request correction of inaccurate or incomplete personal data.

Right to Erasure (Art. 17)

Request deletion of your personal data ('right to be forgotten').

Right to Restrict Processing (Art. 18)

Request temporary restriction of processing while we verify accuracy or legitimate grounds.

Right to Data Portability (Art. 20)

Receive your personal data in a structured, machine-readable format.

Right to Object (Art. 21)

Object to processing based on legitimate interests, including profiling.

Right to Withdraw Consent (Art. 7(3))

Withdraw consent at any time, without affecting prior lawful processing.

Right to Lodge a Complaint

File a complaint with your local data protection authority (e.g., ICO in the UK).

How to exercise your rights: Visit your Account Settings to manage preferences or delete your account. For formal requests, use the Contact page. We will respond within 30 days as required by GDPR.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data:

Encryption in transit: All data is transmitted over HTTPS/TLS encrypted connections
Encryption at rest: Sensitive data is encrypted in our database
Password security: Passwords are hashed using industry-standard algorithms (never stored in plaintext)
Access controls: Strict role-based access with principle of least privilege
Row-Level Security: Database-level policies ensure users can only access their own data
Regular reviews: Periodic security assessments and dependency audits
Incident response: Procedures in place to detect, report, and respond to data breaches within 72 hours as required by GDPR

While no system is 100% secure, we are committed to maintaining the highest practical level of data protection. If you discover a security vulnerability, please report it responsibly through the Contact page.

11. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this Policy:

Data Type	Retention Period
Account data	Until you delete your account
Course progress	Until you delete your account
Consent records	3 years (GDPR compliance)
Server logs (IP, access)	90 days
Contact form messages	1 year after resolution
Cookie preferences	Until consent is withdrawn

When you delete your account, all associated personal data is permanently removed within 30 days, except where retention is required by law.

12. International Data Transfers

Your personal data may be processed in countries outside the UK or EEA where our service providers operate. When we transfer data internationally, we ensure appropriate safeguards are in place:

Adequacy decisions: Transfers to countries recognised as providing adequate data protection
Standard Contractual Clauses (SCCs): EU/UK-approved contractual protections with processors
Data Processing Agreements: Binding obligations on all sub-processors

You may request information about the safeguards in place for international transfers by contacting us through the Contact page.

13. Children's Privacy

The Service is not directed at children under 13 years of age. We do not knowingly collect personal data from children under 13. Users aged 13-15 in the EEA/UK require verifiable parental consent.

If you believe we have collected personal data from a child under the applicable age, please contact us immediately through the Contact page. We will promptly investigate and delete the data if confirmed.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or platform features. When we make material changes:

The "Last Updated" date at the top of this page will be revised
A notification may be displayed on the platform
Registered users who opted in to communications may receive an email notification

We encourage you to review this Policy periodically. Your continued use of the Service after changes are posted constitutes acceptance of the updated Policy.

15. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your data rights, or need to report a privacy concern, please contact us through the Contact Us page.

We aim to respond to all privacy-related enquiries within 30 days.

If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority. For UK residents, this is the Information Commissioner's Office (ICO).