Privacy Policy

1. Data Controller

Lens Academy operates as the data controller for personal data collected through this platform. All data is stored and processed within the European Union.

2. Data We Collect

2.1 Account Information

When you sign up via Discord, we receive:

• Discord user ID and username
• Discord avatar (if set)
• Email address (if you grant permission)

2.2 Profile Information

Information you provide:

• Display name/nickname
• Timezone
• Availability preferences for group scheduling
• Notification preferences

2.3 Learning Progress

To provide the educational service:

• Course enrollment and completion status
• Lesson progress (started, completed)
• Group meeting attendance
• Chat interactions within lessons

2.4 Analytics Data (With Consent)

If you consent to analytics cookies, we collect:

• Page views and navigation patterns
• Feature usage statistics
• Session duration and engagement metrics

You can withdraw consent at any time via the "Cookie Settings" link in the footer.

2.5 Error Tracking (With Consent)

If you consent, we collect error reports to improve the platform. This may include session replays when errors occur, with sensitive content masked.

2.6 Geolocation

We use a third-party service to detect your country to determine if GDPR cookie consent is required. This country code is not stored in our database.

3. How We Use Your Data

• Provide the service: Authenticate you, track course progress, schedule group sessions, send reminders
• Communication: Send course updates, meeting reminders, and important notifications via email or Discord DM
• Improve the platform: Analyze usage patterns (with consent) to improve the learning experience
• Technical operation: Debug issues, ensure security, prevent abuse

4. Legal Basis for Processing (GDPR)

• Contract: Processing account and learning data to provide the educational service you signed up for
• Consent: Analytics and error tracking cookies (you can withdraw anytime)
• Legitimate interests: Security, fraud prevention, service improvement

5. Third-Party Services

We use the following third-party services:

6. Data Retention

• Account data: Retained while your account is active. Deleted upon account deletion request.
• Learning progress: Retained for course completion records. May be anonymized for research after account deletion.
• Analytics data: Retained for up to 2 years, then deleted or anonymized.
• Error logs: Retained for up to 90 days.

7. Your Rights (GDPR)

You have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate personal data
• Erasure: Request deletion of your personal data
• Portability: Receive your data in a machine-readable format
• Restriction: Limit how we process your data
• Objection: Object to processing based on legitimate interests
• Withdraw consent: Withdraw analytics/tracking consent at any time

To exercise these rights, contact us at the address below.

8. Cookies

We use the following cookies:

• Essential: Authentication tokens, consent preferences (always active)
• Analytics: PostHog tracking (requires consent)
• Error tracking: Sentry session data (requires consent)

Manage your preferences via "Cookie Settings" in the footer.

9. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit (HTTPS), secure authentication via Discord OAuth, and access controls for our team.

10. Children's Privacy

This platform is not intended for users under 18 years of age. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this policy periodically. Significant changes will be communicated via email or platform notification. The "Last updated" date at the top indicates when the policy was last revised.

12. Contact

For privacy inquiries or to exercise your data rights, contact us at:

Lens Academy
Email: [Contact email to be added]
You may also reach us via our Discord server.