Privacy Policy

Last updated: July 8, 2025

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our website and services. It incorporates rights and obligations under GDPR (for EU residents) and CCPA/CPRA (for California residents).

GDPR Compliance Policy

At 360Factor your privacy is our priority. We are committed to protecting your personal data and ensuring that your experience with us is secure, transparent, and fully compliant with the General Data Protection Regulation (GDPR).

This policy outlines how we collect, use, store, and protect your personal information when you interact with our website, services, or products.

What Is GDPR?

The General Data Protection Regulation (GDPR) is a data protection law that applies to all individuals within the European Union (EU) and the European Economic Area (EEA). It regulates how organizations collect, process, and store personal data, and it gives individuals more control over their personal information.

Even if you're not located in the EU, if you visit our website or use our services from the EU or EEA, GDPR may apply to your data and we fully respect that.

What Data We Collect

We may collect personal data such as:

  • Your name and contact details (e.g., email address)
  • Login or account information
  • IP address, device, and browser information
  • How you use our website or services (e.g., pages visited, time on site)

We only collect data that is necessary to provide our services, improve your experience, and comply with legal obligations.

How We Use Your Data

We use your personal information to:

  • Communicate with you about course registrations or upcoming expirations
  • Send you relevant updates (only with your consent)
  • Maintain website security and performance
  • Comply with legal and regulatory obligations

We will never sell your personal data to third parties.

Your Rights Under GDPR

If you're located in the EU/EEA, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or outdated information
  • Request deletion of your data (“Right to be forgotten”)
  • Restrict or object to how we process your data
  • Receive a copy of your data in a portable format
  • Withdraw consent at any time

To exercise any of these rights, contact us at [insert contact email or form link].

How We Protect Your Data

We use strong technical and organizational measures to keep your data secure, including:

  • Encryption of data in transit and at rest
  • Secure data storage and access controls
  • Regular security reviews and audits
  • Immediate notification in the event of a data breach
  • When we transfer your personal data outside the EU/EEA (e.g., to service providers in the U.S.), we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) are in place

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described above or as required by law.

Questions or Requests

If you have any questions about our GDPR policy or want to make a data request, please contact our team at: privacy@oasis-lms.com

California Privacy Rights (CCPA/CPRA)

This section applies solely to residents of the State of California.

1. Categories of Personal Information We Collect

This information is provided as a ‘Notice at Collection’ under the California Consumer Privacy Act.

In the past 12 months, we may have collected the following categories of personal information:

  • Identifiers – such as name, email address, IP address, or other similar identifiers
  • Commercial information – such as records of services purchased or considered
  • Internet or other electronic network activity – such as browser type, pages visited, time spent, and other usage data
  • Professional or employment-related information – if provided during registration or course enrollment
  • Inferences – drawn from the above to create a profile reflecting preferences or behavior

We collect this information directly from users, through cookies and analytics, or from our client organizations.

2. Purposes for Collection

We use this personal information for purposes such as:

  • Providing and maintaining the LMS services
  • Supporting user accounts and certifications
  • Personalizing the user experience
  • Analyzing usage and improving performance
  • Meeting legal and contractual obligations

3. Disclosure and Sharing of Personal Information

We may disclose personal information to service providers who assist us with hosting, analytics, support, and communication tools.

We do not sell personal information for monetary compensation. However, under California law, “sharing” may include the use of cookies for targeted advertising or analytics.

4. Your California Rights

California residents have the right to:

  • Know the categories and specific pieces of personal information we collect
  • Request deletion of your personal information
  • Opt out of sale or sharing of your personal information
  • Correct inaccurate personal information
  • Limit use and disclosure of sensitive personal information

To exercise any of these rights, you may:

We may need to verify your identity before processing your request. You may also designate an authorized agent to act on your behalf.

5. Do Not Sell or Share My Personal Information

If you would like to opt out of the sale or sharing of personal information (as defined under California law), you may email us here: privacy@oasis-lms.com

Copyright © 2025 Oasis-LMS. All Rights Reserved.

Privacy PolicyTerms and Conditions