Privacy Policy

Personal Data Privacy Policy

Change-revolution.com (a brand of FULL Digital SRL) is committed to protecting the privacy of your personal data. If you have any questions about this Privacy Policy or how we handle your information, please contact us using the details below.

By using this website or our services, you agree to the processing of your personal data as described in this policy.

Exercise your privacy rights: use our self-service Privacy Tools to download a copy of your data or request deletion of your account and personal data.

Manage your data & privacy requests

About us

FULL Digital SRL, hereinafter referred to as Change-revolution.com, is registered in Bucharest, Romania, at Sos. Iancului 12, Ap. 4, Sector 2, and is the operator of the website compliance.change-revolution.com.

Definitions

  • Personal data — any information relating to an identified or identifiable natural person.
  • Processing — any operation or set of operations performed on personal data, such as collection, recording, storage, use, disclosure, erasure or destruction.
  • Controller — the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data. For this policy, the Controller is FULL Digital SRL.
  • User — any natural person who visits this website or uses the services we provide on it.

What personal data we collect

  • Account data: name, email address, password (stored in hashed form), company name (where provided), and role.
  • Course data: courses you are enrolled in, your progress, quiz answers, completion dates and certificates issued.
  • Communications data: messages you send us via the contact form, email or support.
  • Technical data: IP address, browser type and version, operating system, time-zone and language preference, and device identifiers.
  • Usage data: information about how you interact with the site, collected via cookies and similar technologies (see Cookies below).
  • Payment data: where applicable, payment card details are processed by certified third-party providers and not stored by us.

Why we process your data — purposes and legal basis

  • To deliver the services you sign up for — providing access to courses, tracking progress, issuing certificates. Legal basis: performance of a contract (Art. 6(1)(b) GDPR).
  • To create and maintain your user account — authentication, account recovery, account communications. Legal basis: performance of a contract.
  • To respond to your enquiries. Legal basis: legitimate interest in supporting users (Art. 6(1)(f) GDPR).
  • To comply with legal obligations — accounting, tax, regulatory reporting. Legal basis: legal obligation (Art. 6(1)(c) GDPR).
  • To improve and secure the platform — monitoring usage, preventing abuse, debugging. Legal basis: legitimate interest.
  • To send marketing communications — only where you have consented; you can withdraw consent at any time. Legal basis: consent (Art. 6(1)(a) GDPR).

Who we share your data with

We do not sell your personal data. We may share it with:

  • Service providers — hosting, email delivery, payment processing, analytics — only as needed to deliver the service, under written data-processing agreements requiring GDPR-compliant handling.
  • Your employer or course sponsor — if you were enrolled by a company group, we may share your course progress and completion status with that organisation’s designated administrator.
  • Public authorities — where we are legally required to do so.

Data retention

We keep your personal data only for as long as necessary for the purposes set out in this policy. Account data and learning records are kept for the duration of your active account plus any period required by law (typically up to 10 years for accounting records). You can request that we delete your account and associated data, subject to retention obligations.

International transfers

Your personal data is processed primarily within the European Economic Area. Where any of our service providers operate outside the EEA, we ensure appropriate safeguards are in place (such as the European Commission’s Standard Contractual Clauses).

Your rights

Under the GDPR, you have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate or incomplete data.
  • Erase your data (“right to be forgotten”) subject to retention obligations.
  • Restrict processing in certain circumstances.
  • Object to processing based on legitimate interests, including profiling.
  • Data portability — receive a copy of your data in a structured, machine-readable format.
  • Withdraw consent at any time for processing based on consent.
  • Lodge a complaint with the Romanian Data Protection Authority (ANSPDCP) or the supervisory authority in your country of residence.

To exercise any of these rights, contact us via the Contact page.

Cookies

We use cookies and similar technologies to operate the site, remember your preferences, and analyse usage. You can manage your cookie preferences via your browser settings. Strictly necessary cookies are required for the site to function and cannot be disabled.

Children’s data

This site is not directed at children under 16. We do not knowingly collect personal data from minors. If you believe we have done so, please contact us and we will delete the information.

Security

We use industry-standard measures to protect your personal data, including encryption in transit (HTTPS), access controls, and regular security reviews. No system is completely secure, however, and we cannot guarantee absolute security.

Changes to this Policy

We may update this Privacy Policy from time to time. The latest version will always be available on this page. Material changes will be communicated to active users by email or via a notice on the site.

Contact

For any questions about this Privacy Policy or to exercise your rights, please use the Contact page or write to office[at]change-revolution.com.