1. Introduction
Welcome to Xepybia.com. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our speed reading development services.
By accessing or using Xepybia.com, you consent to the practices described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our website or services.
2. Information We Collect
We collect several types of information from and about users of our website, including:
- Personal Data: First name, last name, email address, and other contact information you provide when registering or subscribing to our services.
- Usage Data: Information about how you interact with our website, including reading progress, test results, completed exercises, and performance metrics.
- Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system, and platform.
- Cookies and Similar Technologies: We use cookies to enhance your experience, gather general visitor information, and track visits to our website.
3. How We Use Your Information
We use the information we collect about you for various purposes, including:
- Providing, maintaining, and improving our speed reading training services
- Personalizing your experience and delivering content relevant to your interests
- Tracking your progress and adapting our training methods to optimize your learning
- Processing payments and providing customer support
- Sending administrative information, service updates, and promotional materials
- Analyzing usage patterns to enhance website functionality and user experience
- Protecting our website against fraudulent activity and ensuring the security of our services
4. Legal Basis for Processing (GDPR Compliance)
Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:
- Consent: You have given clear consent for us to process your personal data for specific purposes.
- Contract: Processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract.
- Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.
- Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject.
5. Data Retention
We will retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, and applicable legal requirements.
User account data and learning progress information are typically retained for the duration of your active account plus 24 months after account inactivity to allow for potential reactivation.
6. Your Data Protection Rights
Depending on your location, you may have various rights regarding your personal data, including:
- Right to Access: You can request copies of your personal data.
- Right to Rectification: You can request that we correct inaccurate or complete incomplete information.
- Right to Erasure: You can request that we erase your personal data under certain conditions.
- Right to Restrict Processing: You can request that we restrict the processing of your data under certain circumstances.
- Right to Data Portability: You can request that we transfer your data to another organization or directly to you.
- Right to Object: You can object to our processing of your personal data under certain circumstances.
To exercise any of these rights, please submit a request through your account settings or contact us directly. We will respond to all legitimate requests within one month.
7. Data Security
We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:
- Encryption of sensitive data during transmission using SSL technology
- Regular security assessments and vulnerability testing
- Access controls and authentication requirements for all systems containing personal data
- Staff training on data protection and security practices
- Regular backups to prevent data loss
While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
8. Changes to Our Privacy Policy
We may update our Privacy Policy from time to time. Any changes will be posted on this page with a revised "Last Updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
Your continued use of our website following the posting of changes constitutes your acceptance of such changes.
9. Children's Privacy
Our services are not intended for individuals under the age of 16, and we do not knowingly collect personal data from children. If we learn that we have collected personal information from a child under 16, we will take steps to delete that information as quickly as possible.