C
Back

Privacy Policy

Effective date: December 29, 2025

Introduction

This Privacy Policy explains how Cyber Code Academy ('we', 'us', 'our'), operated by Data Controller Marco Mornati, collects, uses, discloses, and protects personal data when you use our website and services. Controller email: marco@pygame.ovh. No physical address is provided.

Data Controller

Data Controller: Marco Mornati | Contact: marco@pygame.ovh | We do not currently maintain a physical business address. Personal data collected through the service is processed in accordance with GDPR and applicable data protection laws.

Types of Personal Data We Collect

Account data: username, hashed passwords (when applicable), profile information. Usage data: actions on the platform, challenge results, completion status, timestamps, device and browser data, IP address. Communication data: support requests and messages. Payment data: when applicable, payment processor data (we do not store full card details). Cookies and tracking data: session cookies, analytics, optional preference cookies.

How We Collect Data

We collect data you provide directly (registration, profile updates, support), and automatically via logs and cookies. We also obtain data from third-party services you connect (e.g., OAuth providers).

Legal Bases for Processing (GDPR)

Where GDPR applies, we rely on one or more lawful bases: Performance of a contract - to provide the Services and fulfill our obligations. Consent - when you opt-in to optional features or marketing communications. You may withdraw consent at any time. Legitimate interests - to operate, secure and improve the Service, detect abuse, and provide a personalized experience. We balance these interests against your rights. Legal obligations - to comply with applicable laws, e.g., recordkeeping or tax obligations.

Purpose and Use of Personal Data

Provide and operate the Services (account management, content delivery). Security and fraud prevention. Customer support and communications. Analytics and improvement of the platform. Legal compliance and enforcement of our Terms.

Data Sharing and Recipients

We may share personal data with: Service providers (hosting, analytics, authentication, payment processors) under contract and for specified purposes. Legal or regulatory authorities if required by law or to prevent fraud/harm. Other parties with your consent.

International Transfers

Personal data may be processed or stored outside the EEA/UK. When we transfer data to countries without an adequacy decision, we use appropriate safeguards (e.g., Standard Contractual Clauses) and limit access to necessary personnel or subprocessors.

Data Retention

We retain personal data as long as needed for the purposes described, to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Account deletion requests will remove or anonymize data as described below, subject to retention for legal or legitimate business reasons.

Your Rights (GDPR)

If GDPR applies you have rights including: Access - request a copy of your personal data. Rectification - correct inaccurate or incomplete data. Erasure - request deletion (subject to legal limits). Restriction - ask to limit processing in certain cases. Portability - receive your data in a portable format. Objection - object to processing based on legitimate interests. Withdraw consent - where processing is based on consent. You may exercise rights by contacting marco@pygame.ovh. You also can lodge a complaint with your supervisory authority.

Cookies and Similar Technologies

We use cookies for necessary site functionality, preferences, analytics, and optionally marketing. Browser controls allow blocking or deleting cookies. Note: blocking certain cookies may degrade functionality. The locale is stored in the NEXT_LOCALE cookie.

Security

We apply reasonable administrative, technical and physical measures to protect personal data. However, no system is completely secure — notify us at marco@pygame.ovh if you suspect unauthorized access.

Children's Privacy

Our Services are not directed to children under applicable minimum age. If you believe a child's information was provided without parental consent, contact us; we will investigate and remove data where appropriate.

Changes to This Policy

We may update this Privacy Policy; we will indicate the effective date at the top. Material changes will be notified via the Service or email where feasible.

Contact

Data Controller & Data Protection contact: marco@pygame.ovh