This website is operated by serbizAI OÜ.
Last updated: 2025-05-29
1. Data Controller
The data controller for all personal data collected via this website is serbizAI OÜ.
Our full legal details—including company name, registry code, VAT number, registered address and contact email—appear in the Imprint page.
2. Personal Data We Collect
We collect the following categories of personal data:
Account & Purchase Data: your name, email address, billing address and IP address.
Usage Data: login timestamps, course progress and pages visited.
Communications: support emails and chat transcripts.
Marketing & Analytics Data: cookies, device identifiers and referral source.
3. Purposes and Legal Bases
We process your data for these purposes under the following GDPR articles:
Performance of Contract (Art. 6(1)(b)): to fulfil our obligations under your purchase agreement.
Service Delivery & Support (Art. 6(1)(b)): to grant you access to courses and assist you.
Legal Compliance & Accounting (Art. 6(1)(c)): to satisfy tax and record-keeping laws.
Marketing (Art. 6(1)(a)): to send newsletters and offers, where you have given consent.
Site Analytics & Improvement (Art. 6(1)(f)): for our legitimate interest in understanding and enhancing site performance.
4. Data Sharing
We share personal data only with:
Stripe (for payment processing)
Our hosting and CDN providers
Analytics services such as Google Analytics
All recipients are bound by data-protection contracts and, where required, EU Standard Contractual Clauses.
5. Data Transfers & Your Consent
a - International Storage and Processing
We store and process your personal data on secure servers located within the European Economic Area (EEA) and may transfer it to, and process it in, countries outside the EEA where our third-party service providers (e.g. Stripe, hosting, LMS, analytics) are located.
b - Your Consent
By purchasing any product or service from us, you acknowledge that:
Your personal data may be transferred to, and stored or processed in, jurisdictions outside the EEA that may not offer the same level of data protection as EU law;
You have read and understood this clause; and
You expressly consent to such transfers and processing.
c - Safeguards
Whenever we consciosly transfer personal data outside the EEA, we ensure appropriate safeguards are in place to protect your rights, such as:
Standard Contractual Clauses (SCCs) approved by the European Commission;
Binding corporate rules; or
Other EU-approved transfer mechanisms.
d - Withdrawal of Consent
You may withdraw your consent to data transfers at any time by contacting us at [email protected]. Please note that withdrawing consent may affect our ability to provide the contracted services.
6. Data Retention
We retain your data for no longer than is necessary:
Accounting records are kept for 7 years (per Estonian law).Customer account data is retained until you request deletion.
Marketing consents are stored until you withdraw consent.
7. Your Rights
Under the GDPR, you have the right to:
Access, correct or erase your personal data.
Restrict or object to our processing of your data.
Receive your data in a portable format.
Withdraw consent at any time (where processing is based on consent).
To exercise any right, please email us at [email protected].
We will respond within one month.
8. Cookies & Tracking
For full details on our use of cookies and how to manage them, please see our Cookie Policy.
9. Complaints
If you believe we have infringed your data-protection rights, you may lodge a complaint with:
Andmekaitse Inspektsioon (Estonian Data Protection Inspectorate)
Tõnismägi 2, 15165 Tallinn, Estonia
10. Changes to This Policy
We may update this policy to reflect changes in law or our practices.
The “Last updated” date above will indicate when material changes occurred.