Privacy Policy

Our Commitment to Data Protection

At SocialPro Academy, we take your privacy seriously and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, share, and protect your data when you visit our website, enroll in our courses, or interact with our advertising campaigns.

We work with major advertising platforms including Google, Facebook, and Microsoft to promote our educational services. These partnerships involve sophisticated data collection and processing practices that we want to make completely transparent to you.

This policy covers our practices regarding personal data collection, the legal basis for processing your information, your rights under privacy laws including GDPR and CCPA, and practical steps you can take to control how your data is used.

By using our website or services, you acknowledge that you have read and understood this Privacy Policy. We encourage you to review this policy regularly as we may update it to reflect changes in our practices or legal requirements.

Data Collection by Advertising Platforms

Facebook/Meta Data Collection

Facebook Pixel: Monitors user behavior including page views, button clicks, form interactions, video engagement, and course enrollment completions to optimize our Facebook and Instagram advertising campaigns and measure their effectiveness.

Custom Audiences: Uses hashed email addresses and phone numbers (when provided) to create targeted advertising audiences and build lookalike audiences of users with similar characteristics to our current students.

Data Points Collected: Website behavior patterns, interaction events, device identifiers, IP-based location data, browser information, and engagement metrics with our social media content and advertisements.

Cross-Platform Integration: Links your activity across Facebook, Instagram, WhatsApp, and other Meta-owned platforms to create comprehensive profiles for advertising personalization and campaign optimization.

Retention Period: Facebook retains pixel data for 180 days for remarketing purposes, with aggregated and anonymized data potentially retained longer for advertising performance analysis and improvement.

Microsoft/Bing Data Collection

UET (Universal Event Tracking) Tag: Tracks user actions and goal completions including course sign-ups, brochure downloads, and contact form submissions to measure and optimize our Bing search advertising performance.

Remarketing Lists: Creates audience segments of website visitors based on their behavior and interests to deliver relevant course advertisements when they use Bing search or visit partner websites in the Microsoft advertising network.

Data Points Collected: Search queries, click-through data, website navigation patterns, conversion events, demographic inferences, device and browser information, and geographic location data.

Microsoft Account Integration: When users are signed into Microsoft accounts, may link website activity with broader Microsoft ecosystem data to enhance advertising personalization and measurement accuracy.

Retention Period: Microsoft retains UET data for up to 390 days maximum, with some aggregated performance metrics retained longer for advertising platform improvement and industry benchmarking purposes.

How We Use Your Data

Purposes of Processing

Service Delivery

• Processing course enrollments and managing student accounts
• Delivering educational content and tracking learning progress
• Providing customer support and technical assistance
• Sending course updates and important notifications
• Managing certification and credential verification

Marketing & Advertising

• Creating targeted advertising campaigns across platforms
• Building custom audiences for course promotion
• Measuring advertising effectiveness and ROI
• Personalizing marketing messages and offers
• Retargeting website visitors with relevant content

Analytics & Improvement

• Analyzing website performance and user behavior
• Improving course content and user experience
• Conducting market research and trend analysis
• Optimizing website functionality and navigation
• Developing new educational offerings and features

Legal & Security

• Preventing fraud and ensuring platform security
• Complying with legal obligations and regulations
• Protecting intellectual property and course content
• Investigating security incidents and violations
• Maintaining records for tax and auditing purposes

Legal Basis for Processing

Contract Performance

For course delivery, student account management, payment processing, and providing the educational services you've enrolled in or inquired about.

Legitimate Interest

For website analytics, security monitoring, fraud prevention, improving our services, and direct marketing to existing customers (with opt-out options).

Legal Obligation

For tax compliance, financial record keeping, responding to legal requests, and meeting regulatory requirements in the education and advertising sectors.

Data Sharing with Third Parties

Advertising Partners

We share certain data with advertising platforms to deliver relevant course advertisements and measure campaign effectiveness. This sharing is essential for reaching potential students and optimizing our marketing efforts.

Meta Platforms

Facebook, Instagram, WhatsApp Business, and Audience Network

Microsoft Services

Bing Ads, LinkedIn advertising, and Microsoft Audience Network

Service Providers

Technology Infrastructure

Web hosting, content delivery networks, cloud storage, and backup services

Communication Services

Email marketing platforms, SMS providers, and customer support tools

Payment Processing

Payment gateways, billing systems, and financial service providers

Analytics & Measurement

Website analytics, user behavior tracking, and performance measurement tools

Security Services

Fraud prevention, security monitoring, and threat detection systems

Educational Tools

Learning management systems, video hosting, and certification platforms

International Data Transfers

Some of our service providers and advertising partners are located outside your country or region. When we transfer your personal data internationally, we ensure appropriate safeguards are in place:

EU-US Data Privacy Framework: We work with companies that participate in recognized adequacy frameworks for lawful international data transfers.

Standard Contractual Clauses: We use legally binding contracts that include data protection obligations approved by regulatory authorities.

Data Localization: Where required by local law, we ensure that certain categories of personal data remain within specific geographic boundaries.

Your Rights and How to Exercise Them

GDPR Rights (EU/UK Residents)

Right to Rectification

Correct any inaccurate or incomplete personal information in your student account or marketing profiles.

Right to Erasure

Request deletion of your personal data, subject to certain legal limitations and legitimate business interests.

Right to Restrict Processing

Limit how we use your data while we resolve disputes about accuracy or lawfulness of processing.

Right to Object

Opt-out of marketing, profiling, and processing based on legitimate interests, including advertising activities.

CCPA Rights (California Residents)

Right to Know

Learn what personal information we collect, use, disclose, and sell, including specific categories and sources of data.

Right to Delete

Request deletion of personal information, with certain exceptions for legal compliance and legitimate business operations.

Right to Opt-Out

Opt-out of the sale or sharing of personal information for advertising and marketing purposes.

Right to Non-Discrimination

Receive equal service and pricing regardless of exercising your privacy rights under California law.

Platform-Specific Privacy Controls

Facebook Privacy Center

Manage Meta platform privacy settings

Microsoft Privacy Dashboard

Access Microsoft privacy controls

Cookie Preferences

Manage your cookie settings on our site

How to Exercise Your Rights

To exercise any of your privacy rights, you can:

Contact Form: Use our website contact form to submit privacy requests with specific details about your request and verification information.

Platform Controls: Use the direct privacy controls provided by advertising platforms (Google, Facebook, Microsoft) for immediate changes to advertising preferences.

Browser Settings: Adjust your browser's privacy settings, including cookie controls and Do Not Track preferences.

Account Settings: Manage your communication preferences and data sharing options through your student account dashboard if you're enrolled in our courses.

We will respond to your privacy requests within 30 days and may require additional verification to protect your personal information from unauthorized access.

Data Retention and Deletion

Retention Periods

Data Type	Retention Period	Purpose
Contact Form Data	3 years from last interaction	Follow-up communications and lead nurturing
Analytics Data	26 months (Google default)	Website optimization and user behavior analysis
Marketing Data	Until consent withdrawn or 2 years inactive	Advertising targeting and campaign measurement
Student Records	7 years after course completion	Educational compliance and certification verification
Security Logs	90 days	Fraud prevention and security monitoring

Deletion Procedures

Manual Deletion

Upon request, we manually delete personal data within 30 days, coordinating with third-party platforms to ensure complete removal.

Anonymization

When deletion isn't possible due to legal requirements, we anonymize data by removing all personally identifiable information.

Backup Purging

Backup systems are purged within 90 days of deletion requests to ensure personal data doesn't persist in archived copies.

Exceptions to Deletion

We may retain certain personal data longer than standard retention periods in the following circumstances:

Legal Obligations: When required by tax law, educational regulations, or legal proceedings to maintain records for specified periods.

Legitimate Business Purposes: For fraud prevention, security monitoring, or resolving disputes that require historical data access.

Public Interest: When data is used for research, education improvement, or industry analysis in anonymized form.

Active Legal Claims: When personal data is relevant to ongoing litigation, investigations, or regulatory proceedings involving our organization.

Data Security Measures

Technical Measures

SSL/TLS encryption for all data transmission between your browser and our servers
Encryption at rest for sensitive personal data stored in our databases
Multi-factor authentication and access controls for administrative systems
Regular security audits and vulnerability assessments
Intrusion detection and monitoring systems for threat prevention

Organizational Measures

Limited access to personal data on a need-to-know basis only
Confidentiality agreements for all staff handling personal information
Regular training on data protection and privacy compliance
Incident response procedures for data breaches or security events
Vendor security assessments and data processing agreements