Privacy Policy

1. User’s Acknowledgment
This privacy policy has been compiled to better serve those who are concerned with how their ‘Personally Identifiable Information’ (PII) is being used online. PII, as described in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read this Agreement carefully before accessing or using the Website. By accessing or using any part of the web site, you agree to become bound by the terms and conditions of this agreement. Educarnival (“us”, “we”, or “our”) operates the http://educarnival.aqk6kf2rpz-gjy3m7rvq38q.p.runcloud.link website (the “Service”). This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data. We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy.

2. The type of personal information we collect
When ordering or registering on our site, as appropriate, you may be asked to enter your name, email address, mailing address, phone number, credit card information or other details to help you with your experience. We will store this information for as long as needed or when it is asked to be removed by the individual themselves.

3. When do we collect information and How do we use your information
We collect information from you when you register on our site, place an order, subscribe to a newsletter, respond to a survey, fill out a form, open a Support Ticket, enter information on our site, and when you provide us with feedback on our products or services.\

We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:\

To personalize your experience and to allow us to deliver the type of content and product offerings in which you are most interested.
To improve our website in order to better serve you.
To allow us to better service you in responding to your customer service requests.
To administer a contest, promotion, survey or other site feature.
To quickly process your transactions.
To ask for ratings and reviews of services or products
To follow up with them after correspondence (email or phone inquiries)

4. Data collection on our website
We collect personal information directly when you provide it to us, automatically as you navigate through the Sites, or through other people when you use services associated with the Sites. We also collect your personal information when you provide it to us when you complete user registration and submit a support (or pre-purchase) request, subscribe to a newsletter, email list, submit feedback, fill out a survey, or send us a communication.

4.1. Cookies
Some of our web pages use cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site. We use permanent cookies to enable users who have not logged in store certain website settings in their browser (like dismissing of the cookie bar or disabling features like Youtube videos or Google Analytics tracking)

If you leave a comment on our site you may opt-in to save your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

4.2. Server log files
The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are:

Browser type and browser version

Operating system used
Referrer URL
The hostname of the accessing computer
Time of the server request
IP address

The basis for data processing is Art. 6 (1) (f) GDPR, which allows the processing of data to fulfill a contract, or for measures preliminary to a contract.

4.3. Registration on this website
You can register on our website in order to access additional functions offered here. The input data will only be used for the purpose of using the respective site or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration.

To inform you about important changes such as those within the scope of our site or technical changes, we will use the email address specified during registration.

We will process the data provided during registration only based on your consent per Art. 6 (1)(a) GDPR. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

We will continue to store the data collected during registration for as long as you remain registered on our website. Statutory retention periods remain unaffected.

5. How we keep your personal information secure
Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible. We use regular malware scanning services.

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information.

All transactions are processed through a gateway provider and are not stored or processed on our servers.

Our hosting provider Cloudways adheres to the EU/US “Privacy Shield”, ensuring that your data is securely stored and GDPR compliant. For more information on Cloudways’s privacy policy, please see here: Cloudways Privacy Policy.

6. Third party access to your data
We don’t share your data with third-parties in a way as to reveal any of your personal information like email, name, etc. The only exceptions to that rule are for partners we have to share limited data with in order to provide the services you expect from us. Please see below:

6.1. Google Analytics
This website uses Google Analytics, a web analytics service. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. Google Analytics cookies are stored based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising. If you would like to opt-out of Google Analytics monitoring your behavior on our site please use this link: Google Analytics Opt-out.

6.2. Newsletter
If you sign up to our newsletter, using our newsletter form that is hosted by MailChimp or Mailgun (on their server), your email address as well as the marketing reasons to contact you for, will be stored by MailChimp or Mailgun. You have to give explicit consent to all marketing means you want us to use to contact you. For more information on MailChimp’s privacy policy, please see here: MailChimp Privacy Policy and Mailgun Privacy Policy.

6.3. Google AdSense
Google, as a third-party vendor, uses cookies to serve ads on our site. Google’s use of the DART cookie enables it to serve ads to our users based on previous visits to our site and other sites on the Internet. Users may opt-out of the use of the DART cookie by visiting the Google Ad and Content Network privacy policy.

We have implemented the following:

Remarketing with Google AdSense
Google Display Network Impression Reporting
Demographics and Interests Reporting
DoubleClick Platform Integration

We, along with third-party vendors such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.

Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt-Out page or by using the Google Analytics Opt-Out Browser Add-on.

6.4. Youtube
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited. If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account. YouTube is used to help make our website appealing and also to display the capabilities of the WordPress Themes we sell at Kriesi Media. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR. Further information about handling user data, can be found in the data protection declaration on YouTube.

6.5. Google Fonts
For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. For this purpose, your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our website and also to display the capabilities of the WordPress Themes we sell at Kriesi Media. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR. If your browser does not support web fonts, a standard font is used by your computer. Further information about handling user data, can be found at Google font’s FAQ section and in Google’s privacy policy.

6.6. Facebook
Our website includes plugins for the social network Facebook, Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. The Facebook plugins can be recognized by the Facebook logo or the Like button on our site. When you visit our site, a direct connection between your browser and the Facebook server is established via the plugin. This enables Facebook to receive information that you have visited our site from your IP address. If you click on the Facebook “Like button” while you are logged into your Facebook account, you can link the content of our site to your Facebook profile. This allows Facebook to associate visits to our site with your user account. Please note that, as the operator of this site, we have no knowledge of the content of the data transmitted to Facebook or of how Facebook uses these data. For more information, please see Facebook’s privacy policy. If you do not want Facebook to associate your visit to our site with your Facebook account, please log out of your Facebook account.

6.7. Cloudflare
We use Cloudflare for our website security, CDN, page optimization, etc.. Cloudflare maintains GDPR and privacy policy. They believe that the protection of their customers’ and the end users’ data is fundamental to this mission. To know to more, please view Cloudflare’s GDPR Policy and Privacy Policy.

7. Third-party disclosure
We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it’s release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.

However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

While we make every effort to preserve your privacy, personal information may be disclosed when required by law where we have a good-faith belief that such action is necessary to comply with a judicial proceeding, court order or legal process.

8. COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 18, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. We do not specifically market to children under 13.

9. Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:

We will notify you via email within 3 business days
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.

10. Who has access to your data
If you are not a registered client for our site, there is no personal information we can retain or view regarding yourself. If you are a client with a registered account, your personal information can be accessed by:

Our system administrators.
Our supporters when they (in order to provide support) need to get the information about the client accounts and access.

11. How long we retain your data
If you complete a purchase on our website, our system automatically creates an account for you in order to store your order data and create your subscription. This account information is stored indefinitely to allow us to keep accurate records of any data we are obliged to keep for administrative, legal, or security purposes.

If you fill out one of our contact forms, your data is stored in our website database indefinitely. Additionally, this information is stored in our website backups for no longer than 90 days.

If you sign up for our mailing list, your data is stored in MailChimp indefinitely, or until that data is determined to be no longer valid or necessary for us to contact you in accordance with our mailing list procedures.

12. Our security measure
We use the SSL/HTTPS protocol throughout our site. This encrypts our user communications with the servers so that personally identifiable information is not captured/hijacked by third parties without authorization. In case of a data breach, system administrators will immediately take all needed steps to ensure system integrity, will contact affected users and will attempt to reset passwords if needed.

Additionally, if, at any point, Educarnival becomes aware of a data breach through one of the third parties listed above, or by our own measures, we will immediately contact all affected parties and also take immediate action in accordance with the rules and regulations of the authority having jurisdiction.

14. Notification of Changes
We reserve the right to amend the privacy policy in order to bring it in line with changes in the legal situation or in the event of changes to the service or to data processing related to our services. If we change our privacy policy, we will post those changes to this privacy statement. Please check this page for updates regularly.