Privacy Policy

1. Introduction

Top AI Academy ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

By using our services, you consent to the data practices described in this policy. If you do not agree with this policy, please do not access our website or use our services.

2. Information We Collect

2.1 Personal Information

We collect information that you provide directly to us, including:

• Name and contact information (email, phone number, address)
• Account credentials (username, password)
• Payment information (processed securely through Stripe, our third-party payment processor)
• Educational background and professional information
• Skill assessment responses and results
• Course enrollment and progress data
• Communications with us (emails, messages, support tickets)

2.2 Automatically Collected Information

When you access our website, we automatically collect certain information:

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, time spent, click patterns)
• Cookies and similar tracking technologies
• Referral sources and search terms used to find our site

2.3 Information from Third Parties

We may receive information from third-party services you use to access our platform, such as Google or LinkedIn, if you choose to connect those services to your account.

3. How We Use Your Information

We use the collected information for various purposes:

• Provide, maintain, and improve our educational services
• Process enrollments and payments
• Send you course materials, updates, and communications
• Respond to your inquiries and provide customer support
• Personalize your learning experience
• Analyze usage patterns to improve our website and services
• Send marketing communications (with your consent)
• Comply with legal obligations and protect our rights
• Prevent fraud and ensure security

4. Cookies and Tracking Technologies

4.1 What Are Cookies

Cookies are small data files placed on your device. We use cookies and similar technologies to enhance your experience, analyze trends, and administer the website.

4.2 Types of Cookies We Use

• Essential Cookies: Required for website functionality
• Analytics Cookies: Help us understand how visitors use our site
• Marketing Cookies: Used to deliver relevant advertisements
• Preference Cookies: Remember your settings and preferences

4.3 Managing Cookies

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of our website.

5. Information Sharing and Disclosure

5.1 We May Share Information With:

• Service Providers: Stripe (payment processing), Supabase (data storage), email delivery services, and analytics providers
• Business Partners: Companies we collaborate with for specific programs or services
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets

5.2 We Do Not:

• Sell your personal information to third parties
• Share your information with advertisers without your consent
• Use your academic work or projects without your permission

6. Data Security

We implement appropriate technical and organizational measures to protect your information in accordance with APP 11:

• Encryption of data in transit and at rest
• Secure servers and databases
• Regular security audits and updates
• Access controls and authentication
• Employee training on data protection

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6.1 Notifiable Data Breaches

In accordance with the Notifiable Data Breaches (NDB) scheme under Part IIIC of the Privacy Act 1988, we will notify affected individuals and the OAIC as soon as practicable if we become aware of a data breach that is likely to result in serious harm to any individual whose personal information is involved in the breach.

7. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services to you
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Maintain business records

Course completion data and certificates are retained indefinitely for verification purposes. You may request deletion of your personal information, subject to legal requirements.

8. Your Privacy Rights

8.1 Australian Privacy Principles (APPs)

Under the Privacy Act 1988 (Cth) and the 13 Australian Privacy Principles, you have the right to:

• Know why we collect your personal information and how we will use it (APP 1 & 5)
• Access your personal information held by us (APP 12)
• Correct inaccurate, out-of-date, or incomplete information (APP 13)
• Request deletion of your information where we no longer need it (subject to legal requirements)
• Opt out of receiving direct marketing communications (APP 7)
• Not be subject to discrimination for exercising your privacy rights
• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au

8.2 Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.

9. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected information from a child without parental consent, we will delete it promptly.

For students under 18, parental or guardian consent is required for enrollment.

10. Cross-Border Disclosure (APP 8)

Your information may be transferred to and processed in countries other than Australia, including the United States (where our service providers such as payment processors and cloud hosting are located). Before disclosing personal information to overseas recipients, we take reasonable steps to ensure they comply with the Australian Privacy Principles or are subject to a substantially similar privacy regime. We remain accountable for any cross-border disclosure under APP 8.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to read the privacy policies of any third-party sites you visit.

12. Marketing Communications (Spam Act 2003)

In compliance with the Spam Act 2003 (Cth) and APP 7, we only send commercial electronic messages with your consent. Each message will:

• Clearly identify Top AI Academy as the sender
• Include accurate contact information
• Contain a functional unsubscribe mechanism

With your consent, we may send you course announcements, educational content, special offers, and newsletter insights.

You can unsubscribe from marketing emails at any time by clicking the unsubscribe link or contacting us directly. We will action unsubscribe requests within 5 business days. Note that you will still receive essential service-related communications.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

For material changes, we will provide additional notice, such as an email notification or prominent website notice.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

You also have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe we have not handled your personal information in accordance with privacy laws.