Privacy Policy
Your privacy matters to us. Learn how we protect and manage your personal information.
Last Updated: February 15, 2026
Josep Designs & Logistics ("the Institute", "we", "our", "us") is committed to protecting the privacy of our students, prospective students, and website visitors. This policy outlines how we collect, use, store, and safeguard your personal information in compliance with applicable data protection regulations.
1. Information We Collect
We collect information necessary to provide and improve our services:
Full name, email address, phone number, and country of residence during account creation.
Course selections, payment information (processed securely via third-party providers), academic progress, and certificate records.
IP address, browser type, device information, operating system, referring URL, and platform usage patterns.
Support queries, feedback submissions, newsletter subscription preferences, and survey responses.
2. Legal Basis for Processing
We process your data based on:
- Contractual Necessity: To deliver purchased educational services and manage your student account.
- Legitimate Interests: Service improvement, platform security, fraud prevention, and academic analytics.
- Legal Compliance: Financial record-keeping, tax obligations, and regulatory reporting requirements.
- Your Consent: For marketing communications, promotional offers, and non-essential cookies.
3. How We Use Your Information
- To create, manage, and authenticate your student account
- To process course enrollments, payments, and issue certificates
- To deliver course content, track learning progress, and provide instructor feedback
- To provide customer and technical support
- To communicate important service updates, course changes, and deadline reminders
- To improve our educational offerings through anonymised analytics
- To prevent fraud, abuse, and unauthorised access
- To comply with regulatory and legal requirements
4. Data Sharing & Third Parties
We share your data only when necessary and under strict safeguards:
- Payment Processors: Stripe and PayPal for secure transaction handling — we never store full card details on our servers.
- Cloud Infrastructure: Hosting and content delivery providers operating under data processing agreements.
- Communication Tools: Email service providers for transactional and marketing communications (with opt-out options).
- Legal Requirements: When mandated by law, court order, or regulatory bodies.
- Professional Advisors: Accountants and auditors operating under confidentiality obligations.
We never sell your personal data to third parties for marketing purposes.
5. Data Security Measures
- SSL/TLS encryption for all data transmissions
- Secure server infrastructure with regular security audits and vulnerability assessments
- Role-based access controls — personal data accessible only on a need-to-know basis
- Encrypted password storage using industry-standard hashing algorithms
- Regular staff training on data protection protocols
- Automated session timeout and account lockout after repeated failed access attempts
6. Data Retention
We retain personal data only as long as necessary for:
- Active service delivery and student support
- Legal and regulatory compliance (typically 7 years for financial records)
- Academic record-keeping (certificate verification maintained indefinitely)
- Resolution of disputes or enforcement of agreements
Upon account deletion request, we will remove personal data within 30 days, except where retention is legally required.
7. Your Rights
You have the right to:
- Access your personal data and request a copy of information we hold
- Correct inaccurate or incomplete information
- Delete your personal data (subject to legal retention requirements)
- Object to certain processing activities, including direct marketing
- Data Portability — receive your data in a structured, machine-readable format
- Withdraw Consent for marketing communications at any time
To exercise any of these rights, contact us at josslogistics778@gmail.com. We will respond within 30 days.
8. Cookies & Tracking
Our platform uses essential cookies for authentication and session management. Optional analytics cookies help us understand usage patterns. You can manage cookie preferences through your browser settings.
9. International Data Transfers
As a registered institute primarily operating in Kenya, we ensure any international data transfers comply with appropriate safeguards, including standard contractual clauses where applicable.
10. Children's Privacy
Our services are not directed at individuals under 18 years of age. We do not knowingly collect personal data from children.
11. Policy Updates
We may update this policy periodically. Material changes will be communicated via email or a prominent notice on our website. Continued use of our services after updates constitutes acceptance of the revised policy.
12. Contact Information
For privacy-related inquiries, data access requests, or complaints:
Email: josslogistics778@gmail.com
Response Time: Within 30 business days