Privacy Policy

We collect information from multiple sources:

• Directly from you when you create an account, update your profile, enroll in a course, communicate with support, apply for jobs, or use our AI Builder.
• Automatically through cookies, web beacons, SDKs, and server logs when you visit or use the Services.
• From third-party partners and service providers when you connect accounts or use integrated services (for example, GitHub or payment processors).
• From public sources or third-party data providers where permitted by law (for identity verification and fraud prevention).

• To provide and operate the Services: account creation, authentication, course delivery, content hosting, and customer support.
• To personalize your experience: course recommendations, progress tracking, tailored messaging, and adaptive learning paths.
• To improve and develop products: analytics, A/B testing, feature development, and aggregated research.
• For security, fraud prevention, and legal compliance: detect and prevent abuse, enforce terms, investigate incidents, and comply with legal obligations.
• For payments and billing: process transactions and provide receipts via authorized payment processors.
• For communications: send transactional messages, security alerts, product updates, and marketing where permitted by law and your preferences.

We do not sell your personal information. We may share information with:

• Service providers: hosting, analytics, email delivery, payment processors, and AI providers who process data on our behalf under contractual obligations.
• Business transfers: in connection with a merger, acquisition, or asset sale — with notice to you and protections for personal data.
• Legal and safety: when required by law, to respond to lawful requests, to protect rights, prevent fraud, or respond to emergencies.
• With your consent: when you explicitly permit sharing (for example, connecting a third-party integration or sharing your public profile).

We maintain a list of subprocessors and major third-party partners in our documentation (contact Codelearnz.help@hotmail.com for the current subprocessors list and data processing agreements).

We use cookies and similar technologies to operate the Service, maintain sessions, understand usage patterns, and improve functionality. Types of cookies we use include:

• Essential: required for authentication and security.
• Performance & analytics: used to monitor and improve the platform (e.g., Google Analytics, internal analytics).
• Functional: remember preferences and settings.
• Advertising: to deliver relevant ads where applicable — with opt-out mechanisms.

You can manage cookie preferences through the cookie banner, browser settings, or account privacy controls. Note that disabling certain cookies may impact the functionality of the Services.

When we provide personalized content or advertising, we rely on profile information, usage signals, and inferred interests. We do not target minors with marketing. You can opt out of targeted advertising in your account settings or by following industry opt-out mechanisms.

We use automated systems to power personalization (e.g., suggested courses) and to detect abuse. For critical decisions that have legal or similarly significant effects, we will provide meaningful information about the logic involved and, where required by law, offer human review and appeal mechanisms.

Where applicable under GDPR, our legal bases include:

• Contract performance: processing necessary to provide the Services and fulfill our contractual obligations.
• Legal compliance: processing required to comply with legal obligations (tax, law enforcement requests).
• Legitimate interests: for platform security, fraud prevention, and service improvements, balanced against individual rights.
• Consent: for optional features, marketing, or AI training where we explicitly request consent and allow withdrawal.

We apply layered technical and organizational measures to protect personal data, including but not limited to:

• Encryption in transit (TLS) and at rest for sensitive data.
• Role-based access controls, least-privilege principles, and strict access logging.
• Regular vulnerability scanning, penetration testing, and third-party audits (SOC 2, where applicable).
• Secure development lifecycle practices, code reviews, and dependency management.
• Data access approvals, background checks for staff with elevated access, and encryption key management.

While we use industry-standard protections, no system is entirely risk-free. We continually review and improve our security posture and will notify affected users in accordance with applicable breach notification laws.

We retain personal information only as long as necessary to provide services, meet legal obligations, resolve disputes, enforce agreements, and for legitimate business purposes. Specific retention periods depend on the type of data and processing purpose; examples include:

• Account and profile data: retained while your account is active and for a reasonable period after account deletion to support legal obligations and fraud prevention.
• Payment records: retained as required for tax and accounting purposes.
• Logs and diagnostics: retained in a truncated or aggregated form to enable service reliability monitoring and security investigations.

You can request deletion or export of your data (details below). Requests are subject to verification, and we may retain certain information when necessary to comply with our legal obligations or defend legal claims.

ByteWise operates globally. Personal data may be processed in countries other than your country of residence. Where data is transferred internationally, we take appropriate measures such as standard contractual clauses, relying on adequacy decisions, or implementing other lawful transfer mechanisms to ensure an adequate level of protection.

Our Services are intended for users who are at least 13 years old (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children under the applicable age without parental consent. If you are a parent or guardian and believe we have collected information from a child, please contact us to request deletion.

• Access: You may request a copy of personal data we hold about you in a commonly used, machine-readable format.
• Correction: Update inaccurate or incomplete information.
• Deletion: Request deletion of personal data. We will delete data unless legal obligations or legitimate interests require retention.
• Restriction & objection: Ask us to restrict processing or object to processing based on legitimate interests or direct marketing.
• Portability: Receive your data or have it transmitted to another controller when technically feasible.
• How to request: Submit requests via Codelearnz.help@hotmail.com or through account settings. We verify identity before fulfilling requests and respond within applicable legal timelines.

In the event of a data breach, we maintain an incident response plan that includes containment, assessment, remediation, and notifications to affected users and regulators where required by law. We will notify affected users without undue delay and in accordance with applicable legal requirements.

We may update this Privacy Policy periodically. Material changes will be posted with a revised "Last updated" date and, where appropriate, we will provide additional notice (for example, via email). Continued use of the Services after updates indicates acceptance of the updated Policy.

For privacy-related questions, requests, or complaints, contact our Data Protection Officer at: