Privacy Policy

Effective Date: 10th January, 2026
Last Updated: 10th January, 2026

Your Privacy Matters to Us

Primeversity is committed to protecting your personal information and respecting your privacy rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This Privacy Policy explains what information we collect, why we collect it, how we use it, and your rights regarding your personal data.

Who We Are

Primeversity Ltd is the data controller responsible for your personal information.

Company Details:

• Company Name: Primeversity Ltd
• Company Registration Number: 16952897
• Registered in: England and Wales
• Registered Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ
• Data Protection Officer: Primeversity Ltd
• Contact Email: support@primeversity.com
• Phone (UK only): 07918 533723
• WhatsApp (Global): +44 7918 533723

If you have any questions about this Privacy Policy or how we handle your data, please contact our Data Protection Officer using the details above.

What Information We Collect

We collect only the information we need to provide and improve our services. The personal data we collect includes:

Information You Provide to Us

Account Information:

• Name
• Email address
• Password (encrypted)
• Profile photo (optional)
• Country/location

Course Activity:

• Course enrollments
• Learning progress
• Quiz and assessment results
• Course completions and certificates
• Reviews and ratings

Payment Information:

• Billing name and address
• Payment method details (processed securely by our payment providers – we do not store full card details)
• Purchase history
• Transaction records

Instructor Information (if you teach on Primeversity):

• Professional biography
• Teaching credentials and qualifications
• Course materials (videos, documents, resources)
• Bank account details (for payments)
• Tax information (where required by law)

Communications:

• Messages sent through our platform
• Customer support inquiries
• Feedback and survey responses
• Email preferences

Information We Collect Automatically

Technical Information:

• IP address
• Browser type and version
• Device type and operating system
• Referring website
• Pages visited and time spent on pages
• Cookie data (see our Cookie Policy)

Usage Data:

• How you interact with our courses
• Features you use
• Buttons you click
• Search queries

We do not sell your personal information to third parties.

How We Use Your Information

We use your personal data for the following purposes, based on legitimate legal grounds:

To Provide Our Services (Contractual Necessity)

• Create and manage your account
• Process your course enrollments
• Deliver course content and track your progress
• Issue certificates of completion
• Process payments and refunds
• Provide customer support
• Facilitate communication between students and instructors

To Improve Our Platform (Legitimate Interest)

• Analyze how users interact with our platform
• Identify and fix technical issues
• Develop new features and courses
• Conduct research and analytics
• Test new functionality

To Communicate With You (Legitimate Interest & Consent)

• Send transactional emails (purchase confirmations, password resets)
• Provide customer support responses
• Send course updates and announcements
• Send marketing communications (only with your consent)
• Notify you of platform updates or policy changes

To Ensure Security and Prevent Fraud (Legitimate Interest & Legal Obligation)

• Protect against unauthorized access
• Detect and prevent fraud
• Enforce our Terms & Conditions
• Comply with legal requirements
• Investigate violations of our policies

To Comply With Legal Obligations

• Respond to legal requests from authorities
• Comply with tax and financial regulations
• Meet employment law requirements (for instructors)
• Fulfill data protection obligations

Legal Basis for Processing Your Data

Under UK GDPR, we must have a lawful basis to process your personal data. We rely on the following legal grounds:

Legitimate Interest Assessment: Where we process data based on legitimate interest, we have carefully balanced our business needs against your privacy rights. You have the right to object to processing based on legitimate interest at any time.

Special Categories of Personal Data

We do not intentionally collect special categories of personal data (also known as sensitive data), which includes:

• Racial or ethnic origin
• Political opinions
• Religious or philosophical beliefs
• Trade union membership
• Genetic data
• Biometric data
• Health data
• Sexual orientation

If you choose to share such information (for example, in course discussions or profile information), you do so at your own discretion. We recommend not sharing sensitive personal data publicly on our platform.

Who We Share Your Information With

We share your personal data only when necessary and with trusted partners:

Service Providers & Third Parties

Payment Processors:

• Stripe (for secure payment processing)
• PayPal (for secure payment processing)

Cloud Hosting & Storage:

• Amazon Web Services (AWS) or similar providers for secure data storage

Email Communications:

• Email service providers for transactional and marketing emails

Analytics:

• Google Analytics (anonymized data) to understand platform usage

Video Hosting:

• Third-party video hosting platforms for course content delivery

All third-party service providers are required to:

• Process your data only as instructed by us
• Implement appropriate security measures
• Comply with UK GDPR and data protection laws

Legal Requirements

We may disclose your information to:

• Law enforcement or regulatory authorities if required by law
• Tax authorities (HMRC) for tax compliance
• Courts or tribunals in response to legal proceedings

Business Transfers

If Primeversity is acquired, merged, or undergoes a business restructuring, your personal data may be transferred to the new entity. We will notify you of any such change.

International Data Transfers

Your data is primarily stored and processed in the United Kingdom. If we need to transfer your data outside the UK or European Economic Area (EEA), we will ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the UK Information Commissioner’s Office
• Transfers to countries with adequate data protection laws
• Explicit consent where required

We will never transfer your data to countries without adequate protection unless legally required or with your explicit consent.

How Long We Keep Your Data

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law.

Retention Periods

After Account Deletion: When you request account deletion, we will:

• Immediately remove your personal data from active systems
• Retain certain information for legal compliance (e.g., financial records for 7 years)
• Anonymize data used for analytics and research

Your Privacy Rights

Under UK GDPR, you have the following rights regarding your personal data:

1. Right to Access (Subject Access Request)

You can request a copy of the personal data we hold about you. We will provide this free of charge within one month.

2. Right to Rectification

You can request that we correct inaccurate or incomplete personal data.

3. Right to Erasure (“Right to be Forgotten”)

You can request deletion of your personal data in certain circumstances:

• The data is no longer necessary for the purpose it was collected
• You withdraw consent (where processing is based on consent)
• You object to processing and there are no overriding legitimate grounds
• The data was unlawfully processed

Note: We may need to retain some data for legal compliance (e.g., financial records).

4. Right to Restrict Processing

You can request that we limit how we use your data in certain situations:

• You contest the accuracy of your data
• Processing is unlawful but you don’t want it deleted
• We no longer need the data but you need it for legal claims
• You have objected to processing pending verification

5. Right to Data Portability

You can request your data in a structured, commonly used, machine-readable format and transfer it to another service.

6. Right to Object

You can object to processing based on legitimate interest or for direct marketing purposes. We will stop processing unless we have compelling legitimate grounds.

7. Right to Withdraw Consent

Where we process data based on consent, you can withdraw consent at any time. This will not affect the lawfulness of processing before withdrawal.

8. Right Not to Be Subject to Automated Decision-Making

We do not currently use automated decision-making or profiling that produces legal effects. If this changes, we will notify you and provide information about the logic involved.

How to Exercise Your Rights

To exercise any of these rights, please contact us at:

• Email: support@primeversity.com
• Phone: 07918 533723
• Post: Primeversity Ltd, 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ

We will respond to your request within one month. In complex cases, we may extend this by two additional months and will inform you of the delay.

Subject Access Requests are normally free of charge. However, we may charge a reasonable fee or refuse requests that are manifestly unfounded or excessive.

Children’s Privacy

Primeversity is intended for users aged 16 and over.

• We do not knowingly collect data from children under 16 without parental consent
• If we discover we have collected data from a child under 16 without consent, we will delete it immediately
• Parents or guardians can contact us to request deletion of their child’s data

If you are under 16, please do not create an account or provide personal information without your parent or guardian’s permission.

How We Protect Your Data

We take data security seriously and implement appropriate technical and organizational measures, including:

Technical Safeguards:

• Encryption of data in transit (SSL/TLS)
• Encryption of sensitive data at rest
• Secure password hashing
• Regular security testing and vulnerability assessments
• Firewalls and intrusion detection systems

Organizational Safeguards:

• Access controls (data accessible only to authorized personnel)
• Staff training on data protection
• Confidentiality agreements with employees and contractors
• Regular security audits and reviews
• Incident response procedures

Payment Security: We use PCI-DSS compliant payment processors (Stripe, PayPal). We do not store full credit card details on our servers.

While we implement robust security measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security but will notify you of any data breach within 72 hours if there is a risk to your rights and freedoms.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will:

1. Notify the ICO within 72 hours of becoming aware of the breach
2. Notify affected individuals within 72 hours if there is a high risk
3. Provide clear information about:
   • The nature of the breach
   • Likely consequences
   • Measures taken to address the breach
   • Steps you can take to protect yourself
4. Take immediate action to contain and remediate the breach

Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience. For detailed information about the cookies we use, please see our Cookie Policy.

Summary:

• Essential cookies: Required for the platform to function (login, payments)
• Functional cookies: Remember your preferences (language, settings)
• Analytics cookies: Help us understand how you use the platform
• Marketing cookies: Show relevant content and measure campaigns

You can manage your cookie preferences through our cookie consent tool or your browser settings.

Marketing Communications

We will only send you marketing emails if you have:

• Opted in to receive marketing communications
• Purchased a course and not opted out
• Explicitly consented

You can opt out anytime by:

• Clicking “unsubscribe” in any marketing email
• Updating your email preferences in your account settings
• Contacting support@primeversity.com

Note: You will still receive transactional emails (purchase confirmations, password resets, etc.) even if you opt out of marketing.

Third-Party Links

Our platform may contain links to third-party websites (e.g., instructor websites, external resources). We are not responsible for the privacy practices of these sites. We encourage you to review their privacy policies before providing personal information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

• Changes in our practices
• Legal or regulatory requirements
• New features or services

When we make significant changes:

• We will update the “Last Updated” date at the top
• We will notify you via email or a prominent notice on our platform
• We may request renewed consent where required

We encourage you to review this policy periodically.

How to Contact Us

If you have questions, concerns, or complaints about this Privacy Policy or our data practices, please contact:

Data Protection Officer
Primeversity Ltd
71-75 Shelton Street
Covent Garden
London, WC2H 9JQ

Email: support@primeversity.com
Phone (UK only): 07918 533723
WhatsApp (Global): +44 7918 533723

We aim to respond to all inquiries within 5 business days.

Your Right to Complain

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the UK’s supervisory authority:

Information Commissioner’s Office (ICO)
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Website: https://ico.org.uk
Helpline: 0303 123 1113

We would appreciate the opportunity to resolve your concerns before you contact the ICO, so please contact us first.

Summary of Key Points

✅ We collect only what we need to provide and improve our services
✅ We do not sell your data to third parties
✅ You have full control over your data and privacy settings
✅ We use secure encryption and industry-standard security practices
✅ You can request access, correction, or deletion of your data anytime
✅ We comply with UK GDPR and Data Protection Act 2018
✅ We will notify you within 72 hours of any data breach affecting you

How to Request Your Personal Data (Subject Access Request)

Under UK GDPR, you have the right to request a copy of the personal data we hold about you.

To Submit a Subject Access Request:

Please email us at support@primeversity.com with the following information:

– Your full name
– Email address associated with your Primeversity account
– Specific information you’re requesting (or “all personal data”)
– Proof of identity (copy of passport, driving licence, or similar)

What Happens Next:

1. We will verify your identity to protect your data
2. We will respond within one month (or inform you if we need more time)
3. You will receive your data in a commonly used electronic format
4. This service is free of charge (unless your request is manifestly unfounded or excessive)

What Information You’ll Receive:

– All personal data we hold about you
– The purposes of processing
– Categories of data concerned
– Recipients of your data
– How long we will store your data
– Your rights regarding your data

For other data-related requests (correction, deletion, restriction), please use the same email address.

Company Information

Primeversity Ltd
Company Registration Number: 16952897
Registered in England and Wales
Registered Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ

Primeversity – Empowering global learning in business & technology.

Back to Terms & Conditions | Cookie Policy | Contact Us