This Data Handling Protocol (Privacy Policy) details how LEARNLAG collects, processes, and protects your information during system interaction via https://learnlag.com. Our protocol ensures compliance with all applicable UK and EU data protection frameworks (GDPR).
[01] Data Controller Interface
Entity_Name: LEARNLAG
Control_Location: HA4 0UN, South Ruislip, London, UK
Support_Interface: support@learnlag.com
[02] Data Payload Collection
The system collects the following categories of information:
A. USER_PROFILE_DATA
>Name, Username, Email address
>Encrypted authentication hash (Password)
>Avatar/Profile image reference
>System role (STUDENT / INSTRUCTOR)
B. INSTRUCTOR_METADATA
>Biographical data, expertise, timezone offset
>Schedule availability matrix
>Payout processing details (Bank/Mobile Money)
>Identity verification records
C. FINANCIAL_TRANSACT_DATA
All financial processing is externalized via Stripe. We do NOT store primary card data.
>Stripe Customer ID
>Payment Intent ID
>Transaction details and amounts
D. GOOGLE_API_SYNC_DATA (Optional)
The following data is collected ONLY when a user explicitly connects their Google account:
>Google User ID, Access Token, Refresh Token, ID Token
>Google Calendar event IDs created by LEARNLAG
WARNING: We do NOT access private events, reminders, tasks, emails, or contacts.
[03] Data Processing Directives
[X]Account creation and management
[X]Course enrollment execution
[X]Session scheduling and synchronization
[X]Payout and transaction tracking
[X]Google Calendar event API calls
[X]Progress monitoring and assignment grading
[X]Authentication, security, and integrity checks
[04] Google API Compliance Mandate
LEARNLAG`'s use of Google user data strictly adheres to the Google API Services User Data Policy including the Limited Use Requirements.
PROHIBITED_DIRECTIVES
[!]Sell or rent Google user data
[!]Use Google data for unauthorized advertising
[!]Share Google data with third parties
[!]Access private calendar entries
AUTHORIZED_DIRECTIVES
[+]Create tutoring session events
[+]Update or delete events created by the system
[+]Check scheduling availability
[05] Retention Cycle
Data is retained only as long as necessary to fulfill the directives outlined in this protocol.
[06] User Data Rights (GDPR Compliance)
Access the full personal data record.
Correct inaccurate data entries.
Request deletion ("right to be forgotten").
Request data transfer (portability).
Object to data processing directives.
[07] Minor Access Prohibition
The LEARNLAG platform is not authorized for those under 13.
[08] Protocol Revision
This protocol may be revised as required by operational or legal updates.