Privacy Policy
Effective date: 2026-01-01 • Last updated: 2026-06-01
Wavecrest Finance Institute (“we”, “us”, “our”) provides educational content about personal finance. This policy explains what personal data we collect, how we use it, and the choices you have. Educational services do not include individualized financial, legal, tax, or investment advice.
We design our platform with a minimal data footprint. We collect only what we need to deliver courses, support learners, and maintain security.
Data we collect
- Account data: email, hashed password, and basic profile preferences (theme, notifications).
- Course activity: progress markers, completion timestamps, quiz attempts (if applicable).
- Support communications: messages you send to [email protected].
- Technical data: IP address, device/browser metadata, and logs for security and fraud prevention.
- Cookies: essential session cookies; analytics only with consent. See Cookie section.
How we use data
- Provide and improve courses and platform features.
- Authenticate users and protect the service from abuse.
- Communicate about updates, support, and transactional notices.
- Comply with legal obligations and enforce Terms.
Legal bases
We process personal data under these bases: performance of a contract (course delivery), legitimate interests (security, fraud prevention, service improvement), consent (non-essential cookies, certain communications), and compliance with legal obligations.
Sharing
We do not sell personal data. We share data with service providers who support platform operations (hosting, email), subject to confidentiality and data processing agreements. We may disclose data to comply with law or protect rights, safety, or property.
International transfers
Where data is transferred across borders, we use appropriate safeguards such as standard contractual clauses and security controls.
Retention
We keep data only as long as necessary. Account data is retained while your account is active; course activity is retained for educational records; support communications are retained for service quality and legal requirements. We honor deletion requests when legally permissible.
Your rights
- Access, correct, or delete your personal data.
- Object to or restrict certain processing.
- Withdraw consent where processing is based on consent.
- Portability of data you provided in a structured format.
To exercise rights, contact [email protected]. We will verify your request where required by law.
Cookies
We use essential cookies for login sessions, preferences, and security. With consent, we may enable privacy-friendly analytics to understand course usage. You can control cookies via your browser settings and our on-site consent banner. Essential cookies cannot be disabled as they are required for the service to function.
Security
We employ encryption in transit, role-based access controls, and secure development practices. No system is perfectly secure; we continuously improve safeguards and encourage responsible disclosure.
Children
Our services are not directed to individuals under 16. If we learn that we processed data from a child without appropriate consent, we will delete it.
Contact
Questions about this policy? Email [email protected] or write to our support team. We respond promptly and respectfully.