Privacy Policy

1. Who we are and who controls your data

Training Tracker (“we,” “us,” “our”) operates the Training Tracker service and website. We are the data controller for the personal data we collect through the Service. For questions about this policy or your data, contact us at support@trainingtracker.me or via our Support page.

2. What data we collect

We collect information you give us and information we get from your use of the Service:

• Account and profile: name, email address, password (stored in hashed form), role (e.g. manager, trainee), and organization/company you belong to.
• Organization data: company name, subdomain (e.g. yourcompany.trainingtracker.me), and any details you add about locations, teams, or settings.
• Training and operations: employee names, schedules, training progress, roadmaps, and any messages or notes you create in the Service.
• Billing: if you subscribe, we or our payment processor (e.g. Stripe) may collect billing name, address, and payment method details; we do not store full card numbers.
• Support and contact: when you use the support form or contact us, we collect the information you submit (e.g. name, email, message).
• Usage and technical: IP address, browser type, device information, and logs of how you use the Service (e.g. pages visited, actions taken) to operate and improve the Service.
• Cookies and similar tech: we use session and essential cookies as described in our Cookies Policy.

3. How we use your data

We use your data to:

• Provide, operate, and improve the Training Tracker service.
• Authenticate you and manage your account and organization.
• Process payments and manage subscriptions.
• Send service-related messages (e.g. password reset, billing, important product updates).
• Respond to support requests and contact you about your account.
• Analyze usage to improve security, performance, and features.
• Comply with legal obligations and enforce our Terms of Service.

4. Legal basis (GDPR)

If you are in the European Economic Area or UK, we process your data on the following bases:

• Contract: to perform our contract with you (providing the Service, billing).
• Legitimate interests: to operate and improve the Service, prevent fraud, and ensure security.
• Consent: where we ask for your consent (e.g. optional marketing), you can withdraw it at any time.
• Legal obligation: where we must process data to comply with law.

5. Sharing and disclosure

We do not sell your personal data. We may share data with:

• Service providers: hosting, email, payment processing (e.g. Stripe), and analytics, under contracts that protect your data.
• Your organization: data you provide in the Service (e.g. as a trainee or manager) is visible to your organization’s admins and authorized users as intended by the product.
• Legal and safety: when required by law, or to protect our rights, users, or safety.

6. Data retention

We keep your data for as long as your account is active or as needed to provide the Service and comply with legal obligations. After account closure, we may retain data for a limited period for backup, legal, or dispute-resolution purposes, then delete or anonymize it. Billing records may be kept longer where required by law.

7. International transfers

Your data may be stored and processed in the United States or other countries where we or our service providers operate. If you are in the EEA or UK, we ensure appropriate safeguards (e.g. standard contractual clauses or adequacy decisions) where required by law.

8. Your rights

Depending on where you live, you may have the right to:

• Access: request a copy of the personal data we hold about you.
• Correction: request correction of inaccurate data.
• Deletion: request deletion of your data, subject to legal exceptions.
• Restriction or object: in certain cases, restrict processing or object to processing.
• Portability: receive your data in a structured, machine-readable format.
• Withdraw consent: where we rely on consent, withdraw it at any time.
• Complain: lodge a complaint with a supervisory authority (e.g. in your EU/EEA country).

To exercise these rights, contact us at support@trainingtracker.me. We will respond within the time required by applicable law. For California residents, we do not sell personal information; you may have additional rights under the CCPA as described in our notices.

9. Security

We use appropriate technical and organizational measures to protect your data (e.g. encryption, access controls, secure hosting). No system is completely secure; we encourage you to use a strong password and keep it confidential.

10. Children

The Service is not intended for users under 16. We do not knowingly collect personal data from children under 16. If you believe we have collected such data, please contact us so we can delete it.

11. Changes to this policy

We may update this Privacy Policy from time to time. We will post the new version on this page and update the “Last updated” date. For material changes, we may notify you by email or through the Service. We encourage you to review this policy periodically.

12. Contact

For privacy questions or to exercise your rights: support@trainingtracker.me or Support. For our Cookies practices, see our Cookies Policy.