General Privacy Statement

This section clarifies key terms used in the policy so you can quickly identify what we mean by personal data, processing, and services in the context of Veyanta Path training and platform operations.

We collect specific categories of data to operate the platform, process enrollments, provide course content, manage billing and support collaborative learning scenarios. We limit collection to what is relevant for these purposes.

Information you supply directly when you sign up, enroll, participate in courses, or contact support.

• Contact details: full name, email address, phone number and organization (optional) used to create and manage your account.
• Profile and role information: job title, department, professional interests and learning preferences to tailor scenario-based content.
• Credentials and authentication data: hashed passwords, multi-factor authentication settings and account recovery information.
• Payment and billing information: billing name, invoice details, and payment processor references required for purchases and team subscriptions (actual card numbers are processed by third-party payment providers).
• Course activity and submissions: answers, project files, datasets and feedback provided during practical exercises and case studies.
• Support communications: records of chats, emails and helpdesk tickets used to resolve issues and improve instructional material.

Some data are gathered automatically when you use the platform to support security, analytics and personalized learning flows.

• Usage data: pages visited, modules accessed, time spent on lessons and interaction events tied to educational scenarios.
• Technical data: device type, browser version, operating system, unique device identifiers and screen resolution to optimize compatibility.
• Log data and IP addresses: connection timestamps, IP addresses and system logs for security monitoring and fraud detection.
• Performance metrics: system performance and error reports to maintain reliable delivery of practical datasets and exercises.
• Cookies and local storage entries used for session management and preference retention.
• Aggregated analytics: anonymized or pseudonymized reports on cohort progress and completion rates used to refine case-based curricula.

We may receive data about you from third parties where relevant to service delivery, verification or integrations that enhance the practical learning experience.

• Identity or verification providers used during account setup or corporate single sign-on (SSO) integrations.
• Payment processors and invoicing platforms that provide payment confirmation and billing records.
• Analytics and performance vendors that supply aggregated engagement metrics to help improve scenario sequences and content relevance.

We use data to deliver learning services, administer accounts, support customers, secure the platform and conduct educational research focused on applied AI workflows.

• Provision of the service: register accounts, deliver courses, host datasets and manage team subscriptions.
• Course personalization: adapt scenario sequences, recommend modules and provide tailored feedback based on learner progress.
• Billing and payments: process invoices, manage subscriptions and keep business records through authorized payment providers.
• Customer support: respond to inquiries, troubleshoot issues and record support interactions for quality improvement.
• Security and fraud prevention: detect suspicious activity, protect accounts and maintain platform integrity.
• Research and development: analyze anonymized cohort outcomes to refine case studies, exercises and assessment methods.
• Legal and regulatory compliance: respond to lawful requests and obligations from authorities when required.
• Marketing and communications: send relevant program updates and event invitations where you have opted in.

We rely on lawful bases for processing personal data depending on the purpose. These bases are described below so you understand the justification for each type of processing activity.

• Performance of a contract: processing needed to provide training, administer accounts and fulfill subscriptions.
• Consent: where you have given clear consent for marketing communications or optional data uses such as certain analytics features.
• Legal obligation: processing required to comply with tax, accounting or other statutory obligations.
• Legitimate interests: for platform safety, fraud prevention and improving course quality through aggregated, pseudonymized analysis, balanced against user rights.

We do not sell personal data. Data sharing is limited to trusted service providers and parties necessary to operate the platform or to comply with law.

• Service providers: cloud hosting, content delivery networks, learning management systems and analytics vendors.
• Payment processors and accountants for billing and business record-keeping.
• Identity and single sign-on providers for corporate account integrations.
• Legal and regulatory authorities when disclosure is required by law or to respond to valid legal requests.
• Affiliates and contractors who perform services on our behalf under data processing agreements and confidentiality obligations.
• Potential buyers or supporter in the event of a merger, acquisition or sale of assets, with appropriate safeguards and notice to affected users where practicable.

We apply appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure or destruction. Security practices are continuously reviewed and updated in response to evolving threats and to support the secure delivery of practical AI learning materials.

• Encryption in transit and at rest for sensitive data and course assets.
• Role-based access control, regular access reviews and least-privilege principles for staff and contractors.
• Security monitoring, periodic vulnerability assessments, and an incident response plan to address potential breaches.

Depending on your jurisdiction and the nature of processing, you have rights related to your personal data. These rights enable you to manage how we use your information and to seek remedies when appropriate.

• Access: request a copy of the personal data we hold about you.
• Rectification: correct inaccurate or incomplete personal data.
• Erasure: request deletion of personal data where legal grounds permit.
• Restriction: ask us to limit processing of your data in certain circumstances.
• Data portability: obtain a machine-readable copy of personal data you provided for use elsewhere when applicable.
• Objection: object to processing based on legitimate interests or direct marketing.
• Withdraw consent: where processing is based on consent, withdraw that consent at any time without affecting processing prior to withdrawal.
• Lodge a complaint with a supervisory authority if you consider your rights have not been respected.

• When processing falls under GDPR, you have the rights enumerated above and may contact our data protection contact to exercise them.
• For international transfers from the EU, we rely on appropriate safeguards such as standard contractual clauses and supplementary measures where required.
• Right to data portability: you may request a copy of personal data in a commonly used, machine-readable format to transfer to another service provider when technically feasible, for example a CSV of course enrollment and progress records.
• Right to object and restrict processing: you can object to specific uses of your personal data (such as profiling for targeted marketing) or request restrictions while a correction or dispute is being resolved; we will assess and respond based on legal and operational requirements.

If you believe your rights under applicable data protection laws have been breached, you may file a complaint with our data protection contact or with the Personal Data Protection Commission (PDPC) in Singapore. To help us resolve the matter faster, include details of the incident, the data affected, and any supporting documentation. We record and contribute each complaint and explain outcomes and next steps.

Veyanta Path courses and services are designed for professional and adult learners. We do not knowingly collect personal data from children under 16 without verifiable parental consent. If we discover that a minor provided personal data without appropriate consent, we will take steps to delete that data unless retention is required for legal reasons.

Our platform includes links and integrations with third-party tools (for example, assessment providers, collaboration platforms, or analytics services). These services have their own privacy policies. We recommend reviewing third-party terms before connecting accounts; Veyanta Path is not responsible for third-party practices, but we select partners with industry-standard privacy and security measures.

We may update our privacy policy to reflect new features, changes in law, or operational improvements. Substantive changes will be posted on this page with the effective date. For example, if we add a new learner analytics service, we will describe what data is used and provide opt-out guidance.