Privacy Policy

This Privacy Policy explains how ExamPrep collects, uses, shares, and protects personal data when you use our websites and services. It also explains your rights and how to contact us.

Last updated: Effective: Reading time:

1. Scope

This policy applies to all ExamPrep services and websites worldwide, including any mobile or desktop experiences, product interfaces, and support channels that link to this policy.

When third-party services are used (for example, payment processors or analytics providers), their processing is governed by their contracts and policies in addition to this policy.

2. Data We Collect

We collect only the data we need to operate, improve, and secure ExamPrep. The data we collect depends on how you use our services.

Account & profile data

  • Name and email address
  • Login credentials (stored securely and hashed where applicable)
  • Preferences (language, accessibility settings)

Usage & device data

  • Pages viewed and features used
  • Approximate location derived from IP (country/region)
  • Device and browser signals (for security and compatibility)

Communication data

  • Support messages and feedback
  • Survey responses (if you choose to participate)
  • Notification preferences

Cookies & similar tech

  • Essential cookies (login/session)
  • Preferences (theme, language)
  • Analytics (if enabled by consent where required)

If you provide data about others (for example, referring a colleague), you confirm you have permission to share it and to allow us to use it as described here.

3. How We Use Data

We use personal data to provide and improve ExamPrep, including to:

  • Deliver courses, assessments, and progress tracking
  • Personalize content and recommendations
  • Process payments and send transactional notices (where applicable)
  • Provide customer support and respond to requests
  • Monitor, prevent, and detect fraud or abuse
  • Comply with legal obligations and enforce our terms

Where required by law, we rely on consent. Otherwise, we process data based on contractual necessity, legitimate interests, or legal obligations.

4. Sharing

We do not sell personal data. We may share data in limited cases:

Service providers (processors)

Vendors who help us operate (hosting, support tooling, analytics). They can process data only under our instructions and contractual safeguards.

Legal and safety

We may disclose data to comply with lawful requests, protect rights and safety, and investigate or prevent fraud.

Business changes

If we’re involved in a merger, acquisition, or asset sale, data may be transferred subject to appropriate protections and notice where required.

With your direction

You may request that we share information with third parties (for example, integrating your account with a tool).

5. Retention

We keep data only as long as necessary for the purposes described in this policy, including providing the service, resolving disputes, establishing legal defenses, and complying with legal obligations.

Examples of retention logic

  • Account data: retained while your account is active; deleted or anonymized after account closure, subject to legal requirements.
  • Support records: retained for a limited period to improve service and handle follow-ups.
  • Security logs: retained for shorter periods unless needed for investigations.

6. Your Rights

Depending on your location, you may have rights such as:

  • Access: request a copy of your personal data.
  • Correction: rectify inaccurate or incomplete data.
  • Deletion: request deletion of data, subject to legal exceptions.
  • Objection: object to certain processing based on legitimate interests.
  • Restriction: request that we limit processing in some circumstances.
  • Portability: receive data in a structured, commonly used format.
  • Consent withdrawal: where processing is based on consent, you can withdraw it.

To exercise rights, contact us using the details in the Contact section. For security, we may need to verify your identity before fulfilling requests.

7. Security

We employ technical and organizational measures designed to safeguard data. Measures may include access controls, encryption in transit where supported, monitoring, and least-privilege practices.

No system is 100% secure. If you believe your account has been compromised, contact us promptly and reset your credentials where applicable.

8. International Transfers

We may process and store information on servers located in different countries. Where required, we implement safeguards for cross-border transfers, such as contractual protections and appropriate security controls.

9. Children’s Privacy

ExamPrep is not directed to children under the age where parental consent is required by applicable law. If you believe a child has provided personal data, contact us and we will take appropriate steps to delete it.

10. Changes to This Policy

We may update this policy from time to time to reflect changes in our practices, technologies, or legal requirements. The “Last updated” date at the top indicates when it was revised.

If changes are material, we will provide additional notice where required by law.

11. Contact

If you have questions, requests, or complaints about privacy, contact us:

If you contact us, we may keep a record of your request and our response to help resolve issues and improve support quality.

Back to contents