Privacy Policy
Introduction and Scope
BrainyCog operates from Sofia, Bulgaria, and provides financial modeling education services globally. We respect your privacy and are committed to protecting your personal data in accordance with European Union General Data Protection Regulation (GDPR) and Bulgarian Personal Data Protection Act. This policy explains how we collect, use, store, and protect your information when you interact with our platform at brainycog.com.
This privacy policy applies to all users of our educational platform, regardless of your location. When you access our services, you're trusting us with your personal information, and we take that responsibility seriously. We've structured this document to be clear and comprehensive, covering all aspects of data handling that might concern you.
Our commitment extends beyond legal compliance – we believe transparency about data practices builds stronger educational relationships with our students and partners.
Information We Collect
Personal Information You Provide
When you register for our financial modeling courses or contact us for information, we collect personal details that help us deliver educational services effectively. This includes your full name, email address, phone number, and professional background information that helps us tailor program recommendations to your career goals.
- Contact information including name, email, phone number, and mailing address
- Professional details such as current job title, industry experience, and career objectives
- Educational background and prior financial modeling experience levels
- Payment information processed securely through third-party payment processors
- Communication preferences and program interests
Technical Information and Usage Data
Our platform automatically collects certain technical information to improve user experience and ensure platform security. We track how you navigate through course materials, which helps us identify areas where students commonly struggle and optimize our teaching approach accordingly.
| Data Type | Purpose | Retention Period |
|---|---|---|
| IP Address and Browser Data | Security monitoring and technical support | 12 months |
| Course Progress and Completion | Educational tracking and certification | 7 years |
| Platform Interaction Logs | User experience improvement | 24 months |
| Communication Records | Support quality and follow-up | 3 years |
How We Use Your Information
We use your personal information primarily to deliver high-quality financial modeling education and support your professional development journey. Every use of your data serves a legitimate educational or business purpose that directly benefits your learning experience or enables us to operate our platform effectively.
Your information helps us customize course recommendations based on your background, send relevant program updates, and provide technical support when you encounter platform issues. We also analyze aggregated usage patterns to improve course content and identify topics that resonate most with our student community.
Educational Service Delivery
- Processing course registrations and managing your enrollment status
- Delivering course materials, assignments, and educational resources
- Tracking progress through certification programs
- Providing personalized feedback and guidance from instructors
- Issuing certificates and credentials upon program completion
Communication and Support
- Responding to inquiries about programs, schedules, and requirements
- Sending important updates about course changes or platform maintenance
- Sharing relevant industry insights and educational opportunities
- Providing technical support and troubleshooting assistance
- Following up on program completion and career development outcomes
Data Sharing and Third Parties
We maintain strict control over who has access to your personal information and never sell student data to third parties for marketing purposes. Our approach to data sharing is conservative and transparent – we only share information when it's necessary for delivering educational services or required by law.
When we work with service providers like payment processors or email platforms, we ensure they meet European data protection standards and sign comprehensive data processing agreements that limit how they can use your information.
Authorized Service Providers
- Payment processing companies for secure transaction handling
- Cloud hosting providers for platform infrastructure and data storage
- Email service providers for course communications and updates
- Analytics tools that help us understand platform usage patterns
- Customer support platforms for managing inquiries and assistance requests
All third-party service providers are contractually bound to protect your data and can only use it for specified purposes related to supporting our educational services.
Your Privacy Rights
Under GDPR and Bulgarian data protection laws, you have comprehensive rights regarding your personal information. We've designed straightforward processes for exercising these rights and typically respond to requests within 72 hours during business days.
Access Your Data
Request a complete copy of all personal information we hold about you, including how it's being used and who it's shared with.
Correct Inaccuracies
Update or correct any personal information that's outdated or incorrect in our systems, including contact details and professional information.
Delete Your Information
Request deletion of your personal data, subject to legal retention requirements for educational records and certification documentation.
Restrict Processing
Limit how we use your information while maintaining your account access and course progress records.
Data Portability
Receive your personal information in a structured format that can be transferred to other educational platforms or services.
Withdraw Consent
Opt out of non-essential communications and data processing activities while maintaining core educational services.
How to Exercise Your Rights
To exercise any of these rights, contact us using the information provided below. We'll verify your identity to protect against unauthorized access and process most requests within one month. For complex requests involving large amounts of data, we may extend this period by two additional months with proper notification.
Data Security and Protection
We implement comprehensive security measures to protect your personal information from unauthorized access, alteration, or disclosure. Our security approach combines technical safeguards, administrative procedures, and physical protections appropriate for the sensitivity of educational data we handle.
All data transmission occurs over encrypted connections, and we store information on secure servers with regular security audits and monitoring. Our staff receives regular training on data protection practices, and access to personal information is limited to employees who need it for their job responsibilities.
Security Measures in Place
- SSL/TLS encryption for all data transmission and storage
- Regular security assessments and vulnerability testing
- Multi-factor authentication for administrative access
- Automated backup systems with encrypted offline storage
- Incident response procedures for potential security breaches
- Employee background checks and confidentiality agreements
Data Retention and Deletion
We retain personal information only as long as necessary for educational purposes, legal compliance, or legitimate business interests. Different types of information have different retention periods based on their purpose and legal requirements for educational institutions.
Course completion records and certification information are maintained longer to support credential verification and continuing education planning. Contact information and communication preferences are typically deleted within three years of account closure unless you've specifically requested longer retention for ongoing program updates.
Retention Schedule
- Course enrollment and progress data: Retained for 7 years to support career development and credential verification
- Contact and communication data: Deleted after 3 years of account inactivity
- Payment and billing information: Retained for 7 years per Bulgarian accounting requirements
- Technical logs and usage data: Automatically deleted after 24 months
- Support communications: Deleted after 3 years unless required for ongoing assistance
International Data Transfers
As an educational platform serving students globally, we occasionally transfer personal data outside Bulgaria and the European Union to provide platform services and support. All international transfers comply with GDPR requirements and include appropriate safeguards to protect your information.
When we work with service providers in countries without adequate data protection laws, we use standard contractual clauses approved by the European Commission or ensure providers maintain appropriate certifications for handling European personal data.
Updates to This Policy
We review and update this privacy policy annually or when significant changes occur in our data processing practices, legal requirements, or business operations. When we make material changes that affect how we collect or use personal information, we'll notify you via email and post the updated policy on our website with a prominent notice.
Minor updates like clarifications or contact information changes may be posted without individual notification, but we'll always update the "Last Updated" date at the top of this policy. We encourage you to review this policy periodically to stay informed about how we protect your information.
Contact Us About Privacy
ul. "Kukush" 34, 1345 g.k. Zaharna fabrika
Sofia, Bulgaria
General Contact: info@brainycog.com
Phone: +359879887017
For privacy-related questions or to exercise your data protection rights, contact our Privacy Officer directly. We respond to all privacy inquiries within 72 hours and provide regular updates on request processing status.