This Privacy Policy describes how Dr. Marwa Badr's educational platform ("we", "our", or "us") collects, uses, and protects your personal information when you use our website and services. By accessing our platform, you agree to the practices described in this policy.
1. Information We Collect
We may collect the following types of personal information:
- Account Information: Full name, email address, and password (stored encrypted)
- Purchase Information: Payment records (we do not store card numbers), course purchase history, and transaction IDs
- Usage Data: Pages visited, course progress, session duration, and browser/device type
- Communication Data: Messages submitted through our contact form
- Cookies & Analytics: Anonymous analytics data via Google Analytics (with your consent)
2. How We Use Your Information
We use the information collected for the following purposes:
- To create and manage your account
- To process payments and grant access to purchased courses
- To track your course progress and issue completion records
- To send transactional emails (email verification, purchase confirmations, password resets)
- To improve our platform based on usage analytics
- To respond to your support requests and inquiries
- To comply with legal obligations
3. Data Sharing
We do not sell, trade, or rent your personal information to third parties. We may share limited data with trusted service providers who assist us in operating our platform, including:
- Supabase: Authentication and database management (GDPR compliant)
- Payment Gateway: For processing transactions (PCI-DSS compliant)
- Google Analytics: Anonymous usage statistics (only with your cookie consent)
- Render.com: Backend server hosting
- Cloudflare: Website hosting and CDN
All third-party providers are required to maintain the confidentiality of your information.
4. Data Security
We implement industry-standard security measures to protect your data:
- All data is transmitted over HTTPS (SSL/TLS encryption)
- Passwords are hashed and never stored in plain text
- Database access is secured with Row Level Security (RLS) policies
- Authentication tokens are short-lived and regularly refreshed
- Payment card details are never stored on our servers
5. Cookies & Tracking
We use cookies and similar technologies for:
- Essential Cookies: Required for authentication and platform functionality (cannot be disabled)
- Analytics Cookies: Google Analytics for usage insights (opt-in via our cookie consent banner)
You can manage your cookie preferences through our cookie consent banner or your browser settings.
6. Your Rights
You have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate or incomplete data
- Deletion: Request deletion of your account and associated data
- Portability: Request your data in a portable format
- Opt-out: Unsubscribe from non-essential communications at any time
To exercise any of these rights, contact us at our contact form.
7. Children's Privacy
Our platform is designed for mental health professionals and adult learners. We do not knowingly collect personal data from individuals under 18 years of age. If we become aware that a minor has provided us with personal information, we will promptly delete it.
8. International Data Transfers
Your information may be processed and stored on servers located outside your country. By using our platform, you consent to the transfer of your data to countries that may have different data protection laws than your own.
9. Changes to This Policy
We may update this Privacy Policy from time to time. When we make significant changes, we will notify you via email or through a prominent notice on our platform. The "Last updated" date at the top of this page reflects the most recent revision.
10. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact us:
- Via our contact form
- WhatsApp: +965 6069 5570