Codistry Logo

Privacy Policy

Last Updated: March 22, 2026

1. Introduction

Welcome to CodistryAcademy.com ("we", "our", or "us"), operated by Codistry, Inc, a Delaware corporation.

We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our platform.

2. Data Controller

The data controller responsible for your personal data is:

Codistry, Inc
Email: privacy@codistry.com

3. Information We Collect

3 (a) Information You Provide

When you sign up using Google OAuth, we collect:

  • Name

  • Email address

  • Profile picture (if available)

  • Google account ID (used for authentication only)

3 (b) Usage Information

We collect information about how you use the platform, including:

  • Lesson progress and completion

  • Time spent on lessons

  • Navigation paths

  • Last access dates

3 (c) Technical Information

We may collect:

  • Browser type and version

  • Device information

  • IP address

  • Session data

3 (d) Analytics Data

We use Google Analytics (GA4) to understand usage patterns. This may include:

  • Pages visited

  • Session duration

  • Interaction events

We do not use advertising or remarketing features.

4. Legal Bases for Processing

For users in the EU and UK, we rely on the following legal bases under the General Data Protection Regulation:

4 (a) Contractual Necessity

To provide and operate the platform.

4 (b) Legitimate Interests

To improve the platform, ensure security, and analyze usage.

4 (c) Consent

For:

  • Analytics cookies (where required)

  • Marketing communications

4 (d) Legal Obligations

To comply with applicable laws.

5. How We Use Your Information

We use your data to:

5 (a) Platform Operation

  • Provide and maintain the service

  • Authenticate users

5 (b) Personalization

  • Track learning progress

  • Improve user experience

5 (c) Communications

  • Send account-related emails

  • Send marketing emails (with opt-out)

5 (d) Analytics and Improvement

  • Analyze usage patterns

  • Improve content and functionality

5 (e) Security

  • Detect and prevent misuse

  • Maintain system integrity

6. Data Retention

6 (a) Account Data

Retained until the user deletes their account.

6 (b) Usage and Analytics Data

Retained according to Google Analytics default retention settings.

6 (c) Server Logs and Technical Data

Retained for up to 3 years.

6 (d) Backups

Backups are retained for up to 12 months and may temporarily contain deleted data until overwritten.

7. Data Sharing and Disclosure

We do not sell personal data.

We may share data in the following cases:

7 (a) Service Providers

We use third-party providers, including:

  • Amazon Web Services (hosting and email via SES)

  • Google (OAuth and Analytics)

These providers process data on our behalf.

7 (b) Legal Requirements

We may disclose data if required by law, legal process, or government request.

7 (c) Business Transfers

If Codistry, Inc is involved in a merger, acquisition, or asset sale, your data may be transferred as part of that transaction.

8. International Data Transfers

Your data may be processed in the United States and other jurisdictions.

Where required, we rely on Standard Contractual Clauses and similar safeguards to ensure your data is protected.

9. Your Rights

Depending on your location, you may have the following rights:

9 (a) Access

Request a copy of your personal data.

9 (b) Correction

Request correction of inaccurate or incomplete data.

9 (c) Deletion

Request deletion of your data.

9 (d) Data Portability

Request transfer of your data.

9 (e) Withdraw Consent

Withdraw consent at any time where processing is based on consent.

9 (f) Complaint

You have the right to lodge a complaint with your local data protection authority.

To exercise your rights, contact: privacy@codistry.com

10. Cookies and Tracking

We use cookies and similar technologies for:

  • Authentication and session management

  • Analytics (via Google Analytics)

Where required by law, analytics cookies are only enabled after user consent.

11. Children’s Privacy

This platform is intended for users aged 16 and over.

We do not knowingly collect personal data from individuals under 16.

12. Data Security

We implement appropriate technical and organizational measures, including:

  • Encryption in transit (HTTPS)

  • Encryption at rest (AWS-managed)

  • Access controls using authenticated credentials

  • Regular monitoring and updates

13. Data Breach Notification

In the event of a data breach affecting your personal data, we will notify affected users and relevant authorities as required by law.

For security-related concerns, contact: legal@codistry.com

14. Changes to This Policy

We may update this policy from time to time. Updates will be posted on this page with a revised "Last Updated" date.

15. Contact

For questions about this Privacy Policy:

Email: privacy@codistry.com
Website: https://codistry.com