World Class Design Logo

Privacy Policy

Last updated: May 3, 2025

This Privacy Policy describes how World Class Design ("we", "us", or "our") collects, uses, stores, and shares your personal information when you use our services. It also explains your rights under the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

1. Information We Collect

For purposes of this Privacy Policy, "personal data" refers to any information relating to an identified or identifiable natural person (GDPR Article 4).

1.1 Personal Data

We may collect the following categories of personal data. Required fields are marked as mandatory, while others are optional and help us enhance your experience.

  • Identity Data (mandatory): Name, username, date of birth.
  • Contact Data (mandatory): Email address.
  • Contact Data (optional): Phone number, mailing address.
  • Account Data (optional): Login credentials, profile information, preferences.
  • Payment Data (optional): Credit/debit card details, billing address (processed securely by our payment provider).

1.2 Usage Data

We automatically collect information about how you access and use our services, including:

  • Device & Connection Data: IP address, browser type, operating system, device identifiers.
  • Usage Logs: Pages visited, time spent on pages, features used, clickstream data.
  • Analytics Data: Cookies, web beacons, and similar technologies to understand usage patterns.

1.3 Third-Party Data

We may receive data from third parties, such as social media platforms (if you link your account), analytics providers, or marketing partners.

2. How We Use Your Information

We use personal data for the following purposes:

  • To Provide Services: Process transactions, maintain your account, deliver features, and respond to your requests.
  • To Improve Services: Analyze usage patterns, conduct research, and troubleshoot technical problems.
  • To Communicate: Send updates, newsletters, marketing communications (with your consent), and respond to customer service inquiries.
  • To Comply with Legal Obligations: Prevent fraud, enforce our Terms of Service, and comply with court orders or legal requirements.

3. Data Retention and Storage

3.1 Retention Period

We retain personal data for the following periods, unless otherwise required by law:

  • Identity Data: Up to 2 years after account closure or inactivity.
  • Contact Data: Up to 2 years after the last interaction or account deletion.
  • Account Data: Up to 90 days after account termination.
  • Payment Data: Up to 7 years (to comply with financial regulations).
  • Usage Logs & Analytics Data: Up to 12 months.
  • Third‑Party Data: Retained according to the original source provider's policy, up to 2 years.

3.2 Storage Location

Your data is stored on secure servers located in Africa (with data centers in South Africa and Kenya). We implement industry-standard security measures (encryption, access controls) to protect your information.

4. Data Sharing and Disclosure

4.1 Service Providers

We may share your data with third-party service providers who perform services on our behalf, such as payment processing, hosting, analytics, and marketing.

4.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or to protect our rights, privacy, safety, or property.

4.3 Business Transfers

If we merge with, are acquired by, or sell all or part of our assets, your personal data may be transferred to the new owner.

5. International Data Transfers

Your personal data may be transferred and stored outside your country of residence. We ensure adequate safeguards, such as EU Standard Contractual Clauses, are in place to protect your information.

6. Your Rights

6.1 GDPR Rights

If you are an EU resident, you have the right to:

  • Access: Request a copy of your personal data.
  • Rectification: Correct inaccurate or incomplete information.
  • Erasure: Delete your personal data ("right to be forgotten"), subject to legal exceptions.
  • Restrict Processing: Pause processing under certain conditions.
  • Portability: Receive your data in a structured, machine-readable format.
  • Object: Object to processing based on legitimate interests.
  • Withdraw Consent: Withdraw consent at any time for processing based on consent.
  • Lodge a Complaint: Lodge a complaint with a supervisory authority in your EU member state.

6.2 CCPA Rights

If you are a California resident, you have the right to:

  • Know: Request disclosure of categories and specific pieces of personal data collected.
  • Delete: Request deletion of personal data, with certain exceptions.
  • Opt-Out: Instruct us not to sell your personal data.
  • Non-Discrimination: Not be discriminated against for exercising your rights.

7. Cookies and Tracking

We use cookies and similar technologies to enhance your experience. You can manage cookie preferences through your browser settings or our cookie banner.

8. Security Measures

We implement reasonable technical and organizational measures—such as encryption, access controls, regular vulnerability scans, and an incident response plan—to protect against unauthorized access, disclosure, alteration, or destruction of personal data.

9. Children's Privacy

Our services are not intended for individuals under 16 (or the minimum age in your jurisdiction). Where we lawfully target minors, we obtain verifiable parental or guardian consent prior to collecting personal data.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at hi@wcd.school.