Information We Collect

When you use our services, we gather different types of information to provide you with quality educational content and personalized learning experiences. Here's what we collect and why:

Personal Identification Information

• Full name and preferred name for course certificates and communication
• Email address for account access, course updates, and educational materials
• Phone number (optional) for urgent course notifications or support
• Billing address when processing payments for premium courses
• Date of birth to verify age requirements for certain financial education content

Educational and Usage Data

• Course enrollment history and completion rates
• Quiz scores, assignment submissions, and learning progress
• Time spent on different modules and content interaction patterns
• Discussion forum posts and peer interaction data
• Resource downloads and material access frequency

Technical Information

Our systems automatically collect certain technical data to ensure platform functionality and security:

• IP address and general geographic location
• Browser type, operating system, and device information
• Pages visited, links clicked, and navigation patterns
• Session duration and access timestamps
• Referral sources and search terms used to find our site

How We Use Your Information

We use collected data responsibly to improve your learning experience and maintain our service quality. Your information helps us in several ways:

1. Course Delivery and Administration: Managing your enrollment, tracking progress, issuing certificates, and providing access to educational materials you've purchased or registered for.
2. Communication: Sending course updates, responding to inquiries, sharing relevant educational resources, and notifying you about new content that matches your interests.
3. Payment Processing: Handling transactions securely through our payment partners, maintaining billing records, and processing refunds when applicable.
4. Platform Improvement: Analyzing usage patterns to enhance course content, fix technical issues, and develop new features that benefit our learning community.
5. Personalization: Recommending courses based on your learning history, customizing your dashboard, and tailoring content to your educational goals.
6. Security and Fraud Prevention: Protecting your account from unauthorized access, detecting suspicious activity, and maintaining platform integrity.

Data Storage and Retention

We store your information securely and retain it only as long as necessary for legitimate educational and legal purposes.

Storage Duration

After retention periods expire, we securely delete or anonymize your data. Anonymized data may be kept indefinitely for statistical analysis and research purposes, but it cannot be linked back to you personally.

Sharing and Disclosure

We share your information only with trusted partners who help us deliver our services, and only when necessary:

Service Providers

• Payment Processors: Secure payment handling through certified financial service providers operating in South Korea
• Cloud Hosting: Data storage on secure servers maintained by reputable hosting companies with strong security protocols
• Email Services: Course notifications and educational content delivery through professional email platforms
• Analytics Tools: Website performance monitoring and user experience analysis through privacy-compliant tools

Legal Obligations

We may disclose your information when required by South Korean law, such as:

• Responding to valid legal requests from government authorities
• Complying with court orders or legal proceedings
• Protecting our rights, property, or safety, or that of our users
• Preventing fraud or investigating suspected illegal activities

Business Transfers

If EnergyInsightIQ undergoes a merger, acquisition, or sale of assets, your information may be transferred to the new entity. We'll notify you via email and website notice before any such transfer occurs, giving you the option to delete your account if you prefer.

Your Rights Under South Korean Law

PIPA grants you significant control over your personal information. Here's what you can do:

1. Access Your Data: Request a copy of all personal information we hold about you. We'll provide this within 10 business days in a commonly used electronic format.
2. Correct Inaccuracies: Update or fix any incorrect or outdated information in your account. Most corrections can be made directly through your account settings.
3. Delete Your Information: Request complete deletion of your account and associated data. Some information may be retained for legal compliance periods as specified above.
4. Restrict Processing: Temporarily limit how we use your data while we verify accuracy or address your concerns about processing activities.
5. Data Portability: Receive your personal data in a structured, machine-readable format to transfer to another service provider.
6. Object to Processing: Opt out of certain data uses, particularly for marketing purposes or automated decision-making.
7. Withdraw Consent: Revoke previously given consent for data processing at any time without affecting the lawfulness of processing before withdrawal.

Security Measures

Protecting your information is a top priority. We implement multiple layers of security to prevent unauthorized access, disclosure, or loss:

Technical Safeguards

• SSL/TLS encryption for all data transmission between your device and our servers
• Strong password requirements with bcrypt hashing for stored credentials
• Regular security audits and vulnerability assessments by third-party experts
• Firewalls and intrusion detection systems monitoring network traffic
• Automated backup systems with encrypted off-site storage
• Two-factor authentication available for account access

Organizational Measures

• Access controls limiting staff access to personal data on a need-to-know basis
• Regular privacy and security training for all employees handling user data
• Confidentiality agreements with all staff and contractors
• Incident response procedures for potential security breaches
• Annual third-party security certification reviews

Despite our best efforts, no system is completely secure. If you notice any suspicious activity on your account, contact us immediately at contact@energyinsightiq.com.

Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience on our platform. These small files help us remember your preferences and understand how you use our site.

Types of Cookies We Use

• Essential Cookies: Required for basic site functionality like login sessions and course access. These cannot be disabled without affecting site usability.
• Performance Cookies: Help us understand which pages are popular, how long users spend on different sections, and where technical issues occur.
• Functional Cookies: Remember your preferences like language settings, course bookmarks, and display options for a personalized experience.
• Analytics Cookies: Collect aggregated data about site usage to help us improve content and features. These are anonymized and cannot identify you personally.

You can control cookie settings through your browser preferences. Blocking certain cookies may impact your ability to access some features. We respect "Do Not Track" signals and adjust our tracking accordingly.

Children's Privacy

Our financial education courses are designed for adults and young adults who meet minimum age requirements. We do not knowingly collect information from children under 14 years of age without parental consent, in accordance with South Korean regulations.

Some courses may be suitable for users aged 14-18 with parental or guardian permission. If we discover we've inadvertently collected data from a child under 14 without proper consent, we'll delete that information promptly.

Parents or guardians who believe their child has provided us with personal information can contact us at contact@energyinsightiq.com to request deletion.

International Data Transfers

While our primary operations are based in South Korea, some of our service providers may process data in other countries. When we transfer your information internationally, we ensure adequate protection through:

• Standard contractual clauses approved by relevant data protection authorities
• Verification that recipient countries provide adequate data protection standards
• Additional security measures during cross-border transmission
• Regular audits of international partners' privacy practices

You have the right to request information about specific international transfers affecting your data and the safeguards in place.

Changes to This Policy

We review and update this privacy policy periodically to reflect changes in our practices, technology, or legal requirements. Significant changes will be communicated through:

• Email notification to your registered address at least 30 days before changes take effect
• Prominent notice on our website homepage and in your account dashboard
• In-app notification when you next log in to your account

Continued use of our services after the effective date of changes constitutes acceptance of the updated policy. If you disagree with modifications, you can delete your account before the changes take effect.

Previous versions of this policy are archived and available upon request for your reference.