Privacy Policy

What Information We Collect

We only gather what we actually need to provide our services and communicate with you effectively. Here's what that looks like in practice:

Information You Give Us Directly

• Contact details: Your name, email address, phone number, and postal address when you register for programs or get in touch with us
• Educational background: Previous qualifications or experience relevant to our financial communication courses
• Professional information: Current work situation, career goals, areas of interest in financial management
• Payment information: Billing details when you enroll in paid programs (though we don't store full credit card numbers ourselves)
• Communication records: Messages you send us, feedback forms, survey responses

Information We Collect Automatically

When you visit our website, some technical data gets logged automatically. This includes your IP address, browser type, device information, and how you navigate through our site. We use this to improve the user experience and spot technical issues.

How We Use Your Information

We're not in the business of collecting data for its own sake. Everything we gather serves a specific purpose related to providing educational services:

• Delivering course content and managing your enrollment in our programs
• Communicating about schedules, updates, and changes to services you've signed up for
• Processing payments and maintaining financial records (as required by Australian tax law)
• Responding to your questions and providing support when you need it
• Improving our curriculum based on feedback and learning outcomes
• Sending relevant information about new courses or services that match your interests (you can opt out anytime)
• Meeting legal obligations, like maintaining educational records for accreditation purposes

We won't use your information for purposes you haven't consented to. If we want to use data in a new way that wasn't covered when you originally provided it, we'll ask for your permission first.

Sharing Your Information

We keep your data in-house as much as possible. But running an educational service means working with some trusted partners. Here's who might see your information and why:

Service Providers We Work With

• Payment processors: To handle enrollment fees securely (they follow strict financial industry standards)
• Email service providers: For sending course communications and updates
• Cloud hosting services: Where we store course materials and data securely
• Learning management systems: Platforms that deliver our online content

All these providers are bound by confidentiality agreements. They can only use your data to provide the specific services we've hired them for, and they can't use it for their own purposes.

When We Might Be Required to Share

Sometimes disclosure isn't optional. We might need to share information if legally required to do so, if there's a genuine emergency involving someone's safety, or if we're defending our legal rights. We'd assess each situation carefully and only share what's necessary.

Your Rights and Choices

This is your data. Australian privacy law gives you several rights, and we've built processes to make them easy to exercise:

To exercise any of these rights, send us an email at info@cleverbrainhub.com with details of what you're requesting. We'll respond within 30 days, usually sooner. If we need to verify your identity first, we'll let you know what we need.

How We Protect Your Data

Security isn't just about technology, though we use industry-standard encryption and secure servers. It's also about processes and training our team to handle data responsibly.

Technical Measures

• SSL encryption for all data transmitted between your browser and our servers
• Secure password storage using modern hashing algorithms
• Regular security updates and vulnerability testing
• Restricted access to personal data, limited to staff who need it for their roles
• Automated backups stored in secure, separate locations

Organizational Measures

We've developed clear internal policies about who can access what data and why. Staff receive training on privacy obligations. And we review our security practices regularly, especially when adopting new technologies or services.

Despite our best efforts, no system is completely immune to security breaches. If a data breach occurs that's likely to result in serious harm, we'll notify affected individuals and the Office of the Australian Information Commissioner as required by law.

Data Retention

We don't keep information longer than necessary. But "necessary" varies depending on the type of data and our legal obligations.

• Course enrollment records: Kept for seven years after course completion (required for educational compliance and tax purposes)
• Payment records: Maintained for seven years as required by Australian tax law
• Marketing communications: Retained until you unsubscribe or request deletion
• Support correspondence: Usually deleted after three years unless it's part of an ongoing matter
• Website analytics data: Aggregated and anonymized after 26 months

If you request deletion of your account, we'll remove your personal data except where we're legally required to retain it. We'll make sure anything we must keep is properly secured and not used for any other purpose.

International Data Transfers

We primarily store data on servers located in Australia. However, some of our service providers operate globally, which might mean your information occasionally gets processed overseas.

When we use international services, we verify they have adequate privacy protections in place. This might include contractual guarantees, certification under recognized privacy frameworks, or operations in countries with strong data protection laws.

You have the right to ask about the countries where your data might be transferred and the safeguards we've put in place. Just contact us at the details below.

Children's Privacy

Our services are designed for adults. We don't knowingly collect personal information from anyone under 18 without parental consent. If you're a parent and believe your child has provided us with information without your knowledge, please contact us immediately so we can delete it.

For individuals aged 16-17 interested in our programs, we require parental consent during the enrollment process.

Changes to This Policy

We review this privacy policy periodically to make sure it reflects our current practices and remains compliant with evolving privacy laws. When we make changes, we'll update the date at the top of this page.

For minor updates (like clarifying existing practices), we'll just post the revised policy. For significant changes that affect how we handle your data, we'll notify you directly via email or through a prominent notice on our website.

Continuing to use our services after changes take effect means you accept the updated policy. If you disagree with changes, you can close your account and request deletion of your data.

Making a Complaint

If you're concerned about how we've handled your personal information, we want to know. Please contact our privacy officer first using the details below. We'll investigate and respond within a reasonable timeframe, usually within 30 days.

If you're not satisfied with our response, you have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC). Their website is www.oaic.gov.au, and they provide guidance on the complaint process.