Legal

Privacy Policy

Last updated: 1 January 2025 · Luminary Academy

01
Who We Are

Luminary Academy ("we", "us", "our") is an educational platform providing operational training materials and downloadable resources for retail, warehouse, and industrial managers. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Our contact email is MdoeDeveloper@gmail.com.

02
Data We Collect

We collect the following personal data when you use our website:

  • Account data: your full name and email address when you create an account
  • Purchase data: course enrolment records and payment confirmation details
  • Download activity: records of which course materials you have accessed or downloaded
  • Communications: any emails or messages you send to us

We do not collect or store payment card details. All payment processing is handled by PayPal. We receive only a payment confirmation — not your card details.

We do not collect special category data (health, race, religion, political opinion) and do not collect data from children under 18.

03
How We Use Your Data

We use your personal data for the following purposes:

  • To create and manage your account and login session
  • To record your course enrolments and grant access to purchased materials and downloads
  • To maintain a record of which materials you have downloaded (for our no-refund policy)
  • To send you transactional emails such as order confirmations and account updates
  • To respond to your enquiries and provide customer support
  • To improve our website and course content
  • To comply with legal and regulatory obligations

We will not use your data for marketing without your explicit consent. We will never sell your personal data to third parties.

04
Legal Basis

We process your personal data under the following legal bases:

  • Contract: processing is necessary to fulfil your course purchase and deliver access to materials
  • Legitimate interests: to operate, improve, and secure our Service
  • Legal obligation: to comply with applicable law, including maintaining purchase records
  • Consent: for any marketing communications — you may withdraw consent at any time
05
Data Storage

Your account information — including your name, email address, hashed password, and enrolment records — is stored in your browser's local storage on your device. This means:

  • Your account data stays on your device and is not transmitted to an external server
  • Clearing your browser's storage will delete your local account data — we recommend noting your login email and password
  • Course materials uploaded by administrators are also stored in browser local storage

Passwords are hashed using SHA-256 before storage and are never stored in plain text.

06
Third-Party Services

We use the following third-party services which may process your data:

We do not use advertising networks, tracking pixels, or sell data to any third party.

07
Data Retention

We retain your personal data for as long as your account is active or as needed to provide our services and comply with legal obligations.

Purchase records — including evidence of which materials were accessed or downloaded — may be retained for up to 6 years to comply with UK financial record-keeping requirements, even if you close your account.

If you close your account or request deletion, we will delete your personal data within 30 days, except where retention is legally required.

08
Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

Right of AccessRequest a copy of the data we hold about you
Right to RectificationCorrect inaccurate or incomplete data
Right to ErasureRequest deletion of your data
Right to RestrictionLimit how we process your data
Right to PortabilityReceive your data in a machine-readable format
Right to ObjectObject to processing based on legitimate interests

To exercise any of these rights, contact us at MdoeDeveloper@gmail.com. We will respond within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.

09
Security

We take appropriate technical measures to protect your personal data. Passwords are hashed using SHA-256 before storage and are never stored in plain text. Data transmitted between your browser and our website is encrypted via HTTPS.

No method of internet transmission is 100% secure. If you believe your account has been compromised, please contact us immediately at MdoeDeveloper@gmail.com.

10
Children's Privacy

Our services are intended for adults aged 18 and over. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with their data, please contact us and we will delete it promptly.

11
Cookies

This website uses browser local storage (not cookies) to maintain your login session and save your account and enrolment data on your device. We do not use tracking cookies, advertising cookies, or analytics cookies.

Google Fonts may load resources from Google's servers. You can disable these in your browser settings, though this may affect the appearance of the site.

12
Policy Updates

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by posting a notice on our website. The date at the top of this page reflects the most recent update.

Continued use of our Service after changes constitutes your acceptance of the updated policy.

13
Contact Us