1. Information We Collect

We collect information directly from you when you sign up for our programs, contact us, or use our website. This includes basic details like your name, email address, and phone number. Sometimes we gather additional information about your professional background—but only if you choose to share it with us during enrollment or consultations.

Our website also collects technical data automatically. Things like your IP address, browser type, and how you navigate through our pages. We use this to improve your experience and understand what content works best. None of this is linked to your personal identity unless you're logged into your account.

Types of Personal Data

• Contact information: name, email address, phone number, postal address
• Professional details: current job role, industry background, education history
• Financial information: payment details when you enroll in paid programs
• Communication records: emails, messages, and feedback you send us
• Usage data: pages visited, time spent on site, courses accessed
• Device information: IP address, browser version, operating system

2. How We Use Your Information

Your data helps us run our educational programs effectively. We use it to communicate with you about course schedules, send learning materials, and answer your questions. If you've enrolled in a program, we'll use your contact information to keep you updated about sessions starting in autumn 2025 or early 2026.

We also analyze usage patterns to improve our content. For example, if many students struggle with a particular topic, we'll adjust our approach. Your feedback—both explicit and implicit—shapes how we teach seasonal budgeting concepts.

3. Data Sharing and Third Parties

We don't sell your personal information. Period. But we do work with certain service providers who help us operate our business. These include payment processors, email service providers, and hosting companies. They only access the data necessary to perform their specific functions.

All our third-party partners are required to protect your data with the same care we do. We have contracts in place that restrict how they can use your information. If we ever need to share data for a different reason—like complying with a legal request—we'll notify you unless prohibited by law.

Categories of Third Parties

• Payment processors for handling course fees and transactions
• Email platforms for sending newsletters and course updates
• Cloud storage providers for hosting educational materials
• Analytics services to understand website usage patterns
• Customer support tools for managing inquiries

4. Your Rights Under GDPR

Because we operate in Bulgaria, you have strong rights under European data protection law. You can request a copy of all personal data we hold about you. If something's incorrect, you can ask us to fix it. And if you want us to delete your information entirely, we'll do that—unless we have a legal reason to keep it.

You also have the right to object to certain types of processing. For instance, if you don't want to receive our educational newsletters anymore, just click the unsubscribe link or email us. We'll stop sending them within a few days.

Detailed Rights Breakdown

• Right of Access: Get a copy of your personal data in a readable format
• Right to Rectification: Correct inaccurate or incomplete information
• Right to Erasure: Request deletion of your data when no longer necessary
• Right to Restriction: Limit how we process your data in certain situations
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Stop processing based on legitimate interests or for direct marketing
• Right to Withdraw Consent: Revoke permission for consent-based processing at any time

5. Data Security Measures

We take security seriously. Your data is stored on encrypted servers with restricted access. Only team members who genuinely need to see your information can access it—and they're trained on data protection practices. We use secure connections (HTTPS) across our entire website to protect data in transit.

Payment information never sits on our servers. When you purchase a course, your credit card details go directly to our payment processor through a secure, encrypted channel. We only receive confirmation that the payment went through.

That said, no system is completely bulletproof. We do our best to protect your data, but we can't guarantee absolute security. If we ever experience a breach that affects your information, we'll notify you and the Bulgarian data protection authority within 72 hours as required by law.

6. Data Retention Periods

We keep your data only as long as necessary. For active students enrolled in programs running through 2025 and 2026, we maintain your information throughout your course duration plus three years after completion. This allows us to provide certificates and answer questions about your learning history.

Marketing data—like newsletter subscriptions—stays in our system until you unsubscribe. Financial records are kept for seven years to comply with Bulgarian accounting and tax regulations. Technical logs and analytics data typically get deleted after 18 months.

7. Cookies and Tracking Technologies

Our website uses cookies—small text files stored on your device. Some are essential for the site to function properly. Others help us understand how people use our content so we can make it better. You can control cookie preferences through your browser settings, though disabling certain cookies might limit site functionality.

We use analytics tools to see which pages get the most attention and where students spend their time. This data is anonymized and aggregated—we're not tracking individual browsing habits in detail. If you'd prefer not to be included in analytics at all, most browsers offer a "Do Not Track" option.

8. International Data Transfers

Most of your data stays within the European Union. However, some of our service providers—like certain cloud hosting companies—operate servers in other countries. When data leaves the EU, we ensure it's protected through approved transfer mechanisms like Standard Contractual Clauses.

These legal frameworks guarantee that your information receives equivalent protection regardless of where it's physically stored. We regularly review our data flows to make sure everything complies with current European data protection standards.

9. Children's Privacy

Our educational programs are designed for adults. We don't knowingly collect information from anyone under 16 years old. If you're a parent or guardian and believe your child has provided us with personal data, please contact us immediately. We'll delete it from our systems promptly.

10. Changes to This Policy

Privacy practices evolve, and so does this policy. We review and update it periodically to reflect changes in our operations or legal requirements. When we make significant changes, we'll notify enrolled students by email and post a notice on our website.

The "Last Updated" date at the top of this page shows when we most recently revised the policy. We encourage you to check back occasionally, especially if you're enrolled in programs scheduled for later in 2025 or 2026.

11. Supervisory Authority

If you're not satisfied with how we handle your data, you have the right to lodge a complaint with the Commission for Personal Data Protection (CPDP) in Bulgaria. They're the supervisory authority responsible for enforcing data protection law in our country.

You can reach the CPDP at 2 Prof. Tsvetan Lazarov Blvd., Sofia 1592, Bulgaria. Their website provides additional information about filing complaints and understanding your rights under Bulgarian and European data protection law.