Privacy policy

Crypto Compliance Academy
 Effective Date: 09 June 2026
 Last Updated: 09 June 2026

1. Introduction

Crypto Compliance Academy respects your privacy and is committed to protecting your personal information.

This Privacy Policy explains how we collect, use, store, disclose, transfer, and protect personal information when you visit our website, create an account, enrol on a course, purchase a product or service, contact us, subscribe to our communications, or otherwise interact with Crypto Compliance Academy.

This Privacy Policy applies to:

• Our website
  
• Our online learning platform
• Course registrations and enrolments
• Course access, progress, assessments, and completion records
  
• Certificates, transcripts, and learning records
  
• Purchases, payments, refunds, and invoices
  
• Customer support and contact forms
• Marketing emails and promotional communications
  
• Business, corporate, or team training arrangements
• Any other related products, services, or communications provided by Crypto Compliance Academy
  

For the purposes of this Privacy Policy, “Crypto Compliance Academy”, “we”, “us”, and “our” refer to:

Crypto Compliance Academy
 Legal Entity: [Insert legal company name]
 Business Address: [Insert business address]
 Email: [email protected]
 Website: https://cryptocomplianceacademy.com/

By using our website or services, you acknowledge that you have read and understood this Privacy Policy.

2. About Crypto Compliance Academy

Crypto Compliance Academy is an online education platform providing courses and learning resources in areas such as crypto compliance, anti-money laundering, KYC, KYB, sanctions screening, transaction monitoring, blockchain analytics, digital asset risk, financial crime prevention, and related compliance topics.

Our services are provided for educational and training purposes only. We do not provide legal, financial, investment, tax, regulatory, or professional advisory services.

3. Who Is Responsible for Your Personal Information?

Crypto Compliance Academy is generally the organisation responsible for deciding how and why your personal information is processed.

In some cases, we may process information on behalf of another organisation, such as an employer, business client, corporate training partner, or organisation that enrols learners onto our courses. Where this applies, that organisation may also be responsible for how your information is used.

4. Personal Information We Collect

We may collect personal information directly from you, automatically when you use our website or learning platform, from third-party service providers, or from an organisation that enrols you in our services.

The types of personal information we may collect include the following.

5. Information You Provide to Us

We may collect information that you provide when you register, purchase, enrol, complete forms, contact us, or use our services, including:

• Full name
  
•  Email address
  
•  Phone number
• Billing address
• Country, state, province, or region
  
• Account username and password
  
• Course enrolment information
  
• Course progress and completion records
  
• Assessment, quiz, or learning activity records
  
• Certificate or transcript details
  
• Employer, organisation, or company name, where provided
• Job title or professional background, where provided
  
• Payment and order details
  
• Customer support messages
• Enquiries, complaints, or feedback
• Survey responses or reviews
• Marketing preferences
  
• Any other information you choose to provide
  

6. Information Collected Automatically

When you visit our website or use our learning platform, we may automatically collect technical and usage information, including:

• IP address
• Device type
• Browser type and version
  
• Operating system
  
• Time zone setting
•  Approximate location based on IP address
•  Pages visited
• Links clicked
  
• Login activity
  
• Course pages accessed
  
• Time spent on pages or learning materials
• Referral source
  
•  Cookie identifiers
• Analytics and performance data
  
• Security logs and error reports
  

This information helps us operate, protect, improve, and personalise our website and learning services.

7. Payment Information

If you purchase a course, subscription, certificate, transcript, or other service, payment may be processed by a secure third-party payment provider.

• Name
• Email address
  
• Billing address
  
• Order number
  
• Transaction date
  
• Payment status
  
• Purchased course or service
  
• Refund status, where applicable
• Limited card information, such as the last four digits, where provided by the payment provider

We do not intentionally store full credit card or debit card details on our own systems.

8. Information from Employers, Organisations, or Training Partners

If you are enrolled by an employer, organisation, business client, or training partner, we may receive information about you from that organisation, including:

• Name
• Email address
• Role or department
  

• Course allocation details
  

• Training requirements
  
• Billing or purchase information
  
• Organisation contact details
  

We may also share limited learning records with that organisation, as explained in this Privacy Policy.

9. How We Use Your Personal Information

We may use personal information for the following purposes.

10. To Provide Our Services

We use personal information to:

• Create and manage learner accounts
  
• Process registrations and course enrolments
  
• Provide access to courses and learning materials
  
• Track course progress and completion
  
• Record assessment, quiz, or learning activity results
  
• Issue certificates, transcripts, or completion records
  
• Process payments, invoices, receipts, and refunds
• Provide customer support
  
• Respond to enquiries or complaints
  
• Manage account access and authentication
  
• Send important service-related messages

11. To Improve Our Website, Courses, and Services

We may use information to:

• Improve website performance and functionality
• Improve course content and learning experience
• Understand learner engagement
• Identify technical issues
  
• Test and develop new features
  
• Improve customer support processes
• Analyse trends and usage patterns
  
• Monitor the effectiveness of our services
  

12. To Communicate With You

We may contact you to:

• Confirm your registration or purchase
  
• Send course access information
  
• Provide course updates or reminders
  
• Respond to support requests
  
• Send certificate or completion updates
  
• Notify you about account, security, payment, or service matters
  
• Inform you of changes to our services, terms, or policies
  

13. Marketing and Promotional Communications

Where permitted by applicable law, we may use your contact details to send you:

• Course updates
• Special offers
• Educational resources
  
• Newsletters
• Product announcements
  
• Promotional emails
  
• Information about related training services
  

You can opt out of marketing emails at any time by clicking the unsubscribe link in our emails or by contacting us directly.

Even if you opt out of marketing communications, we may still send you service-related messages, such as account notices, course access details, purchase confirmations, certificate updates, security alerts, and customer support responses.

14. Legal, Security, and Business Purposes

We may use your information to:

• Protect our website and learning platform
  
• Prevent fraud, misuse, or unauthorised access
  
• Detect and investigate suspicious activity
• Maintain security logs
• Enforce our terms and conditions
  
• Protect our legal rights, users, staff, and business
  
• Maintain accounting, tax, and business records
  
• Comply with applicable laws, regulations, court orders, or government requests
• Resolve disputes or complaints
• Support business restructuring, merger, acquisition, or sale of assets, where applicable
  

15. Legal Bases for Processing

Where laws such as the UK GDPR, EU GDPR, or similar data protection laws apply, we rely on one or more legal bases to process personal information.

These may include:

Contract

We process information where necessary to provide the services you request, such as creating an account, enrolling you on a course, processing payment, providing access to learning materials, or issuing a certificate.

Consent

We may rely on consent for certain activities, such as optional marketing, non-essential cookies, surveys, testimonials, or where you voluntarily provide information for a specific purpose.

You may withdraw consent at any time where processing is based on consent.

Legitimate Interests

We may process information where necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. This may include improving our services, securing our systems, responding to enquiries, maintaining business records, and sending relevant communications where permitted.

Legal Obligation

We may process information where necessary to comply with legal, tax, accounting, regulatory, or reporting obligations.

Vital or Public Interest

In rare cases, we may process information where necessary to protect someone’s vital interests or where required for a public interest purpose recognised by law.

16. Cookies and Similar Technologies

We may use cookies, pixels, tags, analytics tools, and similar technologies on our website and learning platform.

These technologies may help us:

• Keep you logged in
  
• Remember your preferences
  
• Operate website features
  
• Understand how visitors use our website
  
• Measure website and course performance
  
• Improve user experience
  
• Analyse marketing effectiveness
  
• Deliver or measure advertisements, where applicable
• Protect our website from misuse or fraud
  

You can manage cookies through your browser settings. Some cookies are necessary for our website and learning platform to work properly. If you disable cookies, some features may not function correctly.

Where required by law, we will request consent before using non-essential cookies.

17. Analytics and Advertising Tools

We may use analytics, advertising, and marketing tools to understand website usage, improve our services, and measure marketing performance.

These tools may collect information such as:

• IP address
  
• Device identifiers
• Browser information
  
• Website activity
  
• Pages visited
  
• Links clicked
• Conversion activity
• General location information

Some privacy laws may treat certain analytics, advertising, or tracking activities as “sharing”, “sale”, or “targeted advertising”. Where applicable, you may have the right to opt out of these activities.

18. How We Share Personal Information

We may share personal information with trusted third parties where necessary to operate our business, provide our services, comply with legal obligations, or protect our rights.

These third parties may include:

• Learning management system providers
  
• Website hosting providers
• Payment processors
  
• Email service providers
  
• Customer support platforms
  
• Analytics providers
  
• Marketing and advertising platforms
  
• Certificate or document generation providers
  
•  IT and cybersecurity providers
  
• Cloud storage providers
  
• Professional advisers, such as accountants, lawyers, or consultants
• Business partners involved in delivering training services
  
• Employers, organisations, or training partners in group training arrangements
  
• Regulators, courts, law enforcement, or public authorities where required by law
  

We do not sell your personal information for money.

19. Corporate, Employer, or Team Training

If you access our courses through an employer, organisation, business client, or group training arrangement, we may share limited learner information with that organisation, including:

• Name
• Email address
  
• Course enrolment status
• Course progress
  
• Course completion status
  
• Certificate or transcript status
  
• Assessment or learning records, where applicable
  

This information may be shared to administer the training arrangement, confirm completion, support reporting, and fulfil our agreement with the organisation.

20. International Data Transfers

Crypto Compliance Academy may use service providers, systems, or business partners located in different countries.

This means your personal information may be transferred to, stored in, or processed in countries other than the country where you live.

Where required by applicable law, we will take appropriate steps to protect international transfers of personal information. These steps may include:

• Using recognised contractual safeguards
  
• Working with providers that apply appropriate data protection measures
  
• Relying on adequacy decisions or similar legal mechanisms, where available
  
• Applying technical and organisational security measures

By using our services, you understand that your information may be processed in countries with privacy laws that may differ from those in your country of residence.

21. Data Security

We use reasonable technical, administrative, and organisational safeguards designed to protect personal information from unauthorised access, loss, misuse, disclosure, alteration, or destruction.

These safeguards may include:

• Secure website connections
• Access controls
  
• Password protection
• Secure hosting
• Encryption where appropriate
  
• Security monitoring
  
•  Limited access to personal information
  
• Staff and contractor confidentiality obligations
  
• Secure payment processing through third-party providers
  
• Regular review of security practices
  

However, no website, platform, or electronic storage system can be guaranteed to be completely secure. You are responsible for keeping your login details confidential and notifying us promptly if you suspect unauthorised access to your account.

22. Data Retention

We keep personal information only for as long as reasonably necessary for the purposes described in this Privacy Policy.

The retention period may depend on:

• The type of information
• Your account status
  
• Course access and completion requirements
• Certificate and learning record requirements
  
• Customer support needs
• Legal, tax, and accounting obligations
  
• Fraud prevention and security requirements
  
• Dispute resolution needs
• Business recordkeeping requirements
  

When personal information is no longer needed, we may delete, anonymise, or securely archive it.

23. Your Privacy Rights

Depending on where you live and the privacy laws that apply to you, you may have certain rights in relation to your personal information.

These may include the right to:

• Access the personal information we hold about you
  
• Request correction of inaccurate or incomplete information
• Request deletion of your personal information
  
• Request restriction of processing
  
• Object to certain processing activities
  
• Withdraw consent where processing is based on consent
• Request a copy of your personal information
  
• Request transfer of your information to another provider
  
• Opt out of marketing communications
  
• Opt out of certain targeted advertising, sale, or sharing activities
  
• Appeal a privacy rights decision, where applicable
  
• Complain to a data protection authority or regulator
  

To exercise your privacy rights, please contact us at:

Email: [email protected]

We may need to verify your identity before processing your request. We will respond within the timeframe required by applicable law.

24. UK, EEA, and Switzerland Privacy Rights

If you are located in the United Kingdom, European Economic Area, or Switzerland, you may have additional rights under applicable data protection laws.

These may include rights to:

• Be informed about how your personal information is used
  
• Access your personal information
  
• Correct inaccurate information
• Request deletion of your information
  
• Restrict processing
  
• Object to processing
  
•  Data portability
  
• Withdraw consent
• Complain to your local data protection authority
  

Where required, we will also identify the legal basis for processing and apply appropriate safeguards for international data transfers.

25. United States Privacy Rights

If you are located in the United States, certain state privacy laws may provide additional rights depending on your state of residence and whether the relevant legal thresholds apply.

These rights may include the right to:

• Know what personal information we collect
• Access personal information
• Correct inaccurate personal information
• Delete personal information
  
• Receive a portable copy of personal information
  
• Opt out of sale, sharing, targeted advertising, or certain profiling
• Limit the use of sensitive personal information, where applicable
  
• Not be discriminated against for exercising privacy rights
  
• Appeal a decision regarding your privacy request, where applicable
  

Crypto Compliance Academy does not sell personal information for money. However, some analytics, advertising, or tracking technologies may be considered “sharing”, “sale”, or “targeted advertising” under certain US state laws. Where applicable, you may request to opt out.

26. California Privacy Notice

This section applies to California residents and supplements the rest of this Privacy Policy.

In the past 12 months, we may have collected the following categories of personal information:

Identifiers

Examples include name, email address, phone number, billing address, account username, IP address, and device identifiers.

Customer Records Information

Examples include billing details, order details, payment confirmation information, and customer support records.

Commercial Information

Examples include courses purchased, transaction history, enrolment records, certificate requests, and service usage.

Internet or Electronic Network Activity

Examples include browsing activity, course activity, login activity, pages viewed, links clicked, and analytics data.

Geolocation Information

Examples include approximate location based on IP address.

Professional or Employment-Related Information

Examples include employer name, job title, industry, department, or professional background where provided.

Education-Related Information

Examples include course enrolment, course progress, assessment records, completion records, certificates, and transcripts.

Inferences

Examples include preferences or interests based on course selections, website activity, or engagement with communications.

Sensitive Personal Information

We do not intentionally collect sensitive personal information unless you voluntarily provide it or it is necessary for a specific service. We do not use sensitive personal information to infer characteristics about you.

California residents may have rights to access, delete, correct, opt out of sale or sharing, limit certain uses of sensitive personal information, and not be discriminated against for exercising privacy rights.

To submit a request, contact us at:

Email: [email protected]

27. Canada Privacy Rights

If you are located in Canada, you may have rights under Canadian privacy laws, including the right to access personal information held about you and request correction of inaccurate information.

We will collect, use, and disclose personal information only for identified and appropriate purposes, and we will use reasonable safeguards to protect it.

28. Australia Privacy Rights

If you are located in Australia, you may have rights under Australian privacy laws, including the right to request access to your personal information and request correction of inaccurate or incomplete information.

You may also contact us if you have a privacy complaint. We will review and respond to privacy complaints in accordance with applicable requirements.

29. Brazil Privacy Rights

If you are located in Brazil, you may have rights under applicable Brazilian data protection laws, including rights to confirm processing, access personal data, correct incomplete or inaccurate data, request anonymisation or deletion where applicable, request information about sharing, and withdraw consent where processing is based on consent.

30. Singapore and Other Regions

If you are located in Singapore or another region with applicable privacy laws, you may have rights to request access to or correction of your personal information, withdraw consent where applicable, and contact us about how your personal information is handled.

We will respond to valid privacy requests in accordance with applicable laws.

31. Children’s Privacy

Crypto Compliance Academy is intended for adult learners, professionals, and business users.

Our services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13.

If you are located in a region where a higher age threshold applies, we will comply with the applicable legal requirement.

If we become aware that we have collected personal information from a child without appropriate consent, we will take reasonable steps to delete that information.

If you believe a child has provided us with personal information, please contact us at:

Email: [email protected]

32. User Content, Reviews, and Testimonials

If you submit feedback, reviews, testimonials, comments, survey responses, or other content, we may use that information to improve our services, respond to your comments, or promote our courses where permitted by law.

We will not publish personal testimonials in a way that identifies you unless we have an appropriate lawful basis to do so, such as your consent or another permitted legal basis.

33. Third-Party Links

Our website, courses, emails, or resources may contain links to third-party websites, platforms, tools, or services.

This Privacy Policy does not apply to third-party websites or services. We are not responsible for the privacy practices, content, security, or policies of third parties.

You should review the privacy policy of any third-party website or service before providing personal information.

34. Do Not Track and Opt-Out Signals

Some browsers offer “Do Not Track” signals. Because there is no consistent industry standard for responding to these signals, our website may not respond to all such signals.

Where required by applicable law, we will honour recognised opt-out preference signals.

35. Automated Decision-Making

We do not currently use personal information to make decisions that have legal or similarly significant effects solely by automated means.

If this changes, we will update this Privacy Policy and provide any information required by applicable law.

36. Complaints

If you have a concern about how we handle your personal information, please contact us first so that we can try to resolve the matter.

Email: [Insert privacy/contact email]

Depending on your location, you may also have the right to complain to a data protection authority, privacy regulator, or consumer protection authority.

37. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, technologies, legal requirements, or business operations.

When we update this Privacy Policy, we will revise the “Last Updated” date at the top of this page.

We encourage you to review this Privacy Policy regularly.

38. Contact Us

If you have any questions about this Privacy Policy, our privacy practices, or your privacy rights, please contact us:

Crypto Compliance Academy
Legal Entity: [Insert legal company name]
 Business Address: [Insert business address]
 Email: [email protected]
 Website: https://cryptocomplianceacademy.com/