Privacy Policy

Last updated: September 1, 2025

BSCA Group, LLC ("BSCA", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our websites, purchase products, use our services, or otherwise interact with us.

1) Scope

This Policy applies to information processed by BSCA in connection with:

Our websites and landing pages (including forms and chat widgets);
Payment and checkout experiences (e.g., Stripe Checkout, invoices, links);
Customer portals, CRM and support tools we provide or administer; and
Marketing communications, events, and surveys.

Separate agreements may govern specific services. Where a client appoints BSCA as a data processor for their end‑customer data, we process such data solely under that client’s instructions.

2) Information we collect

Identity & contact

Name, company, job title, email, phone, mailing address, country.

Account & transaction

Purchase history, subscription status, invoices, receipts, and limited payment details (tokenized by our payment processors—BSCA does not store full card numbers).

Usage & device

IP address, device identifiers, browser type, pages viewed, referring URLs, and interactions with our sites and emails.

Support & communications

Messages you send us (email, forms, chat), call/meeting notes, and feedback.

Education & content products

Progress, quiz results, certificates, and preferences when you enroll in a course or download digital products.

3) How we collect information

Directly from you when you create an account, make a purchase, or contact us.
Automatically via cookies and similar technologies when you browse our sites.
From service providers such as payment processors (e.g., Stripe), analytics tools (e.g., Google Analytics), email and CRM platforms, and support tools.

4) How we use information

Provide and improve our services, websites, products, training, and support;
Process payments, issue invoices/receipts, and manage subscriptions;
Send transactional messages (receipts, service updates) and, with your consent or as permitted by law, marketing communications;
Personalize content, measure performance, and analyze product usage;
Detect, prevent, and respond to fraud, abuse, and security incidents;
Comply with legal obligations and enforce our terms and policies.

5) Legal bases (EEA/UK)

Where EU/UK data protection law applies, we process personal data under one or more of the following bases:

Contract — to deliver products/services you request;
Legitimate interests — e.g., to secure and improve our services and communicate with you about them; balanced against your rights;
Consent — for optional analytics, marketing, or cookies where required; and
Legal obligation — e.g., tax, accounting, or compliance requests.

7) Cookies & tracking

We use cookies and similar technologies to run our site, keep you signed in, remember preferences, and measure performance. You can control cookies through your browser settings. Where required, we display a cookie notice to obtain consent for non‑essential cookies.

Strictly necessary — essential site and checkout functionality
Analytics — usage measurement and performance
Marketing — only with consent and where permitted

Do Not Track: Our sites do not currently respond to DNT signals.

8) Data retention

We keep personal information only as long as necessary for the purposes outlined in this Policy, to comply with legal obligations (e.g., tax and accounting), and to resolve disputes. Retention periods vary by data category and context.

9) Security

We employ administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure. If you believe your information has been compromised, contact us immediately.

10) International transfers

We are a U.S. company with operations and partners in other countries (e.g., the United Arab Emirates). When we transfer personal data internationally, we implement appropriate safeguards such as standard contractual clauses or other lawful transfer mechanisms.

11) Your privacy rights

EEA/UK residents

You may have the right to request access, correction, deletion, restriction, or portability of your personal data, and to object to certain processing. Where we rely on consent, you can withdraw it at any time. To exercise rights, see Contact us.

California residents (CCPA/CPRA)

You may request to know, access, correct, or delete certain personal information, and to limit use and disclosure of sensitive personal information, subject to exceptions. We do not sell personal information. To submit a request, see Contact us.

Marketing choices

You can opt out of marketing emails by using the “unsubscribe” link in our emails. We will continue sending essential transactional emails.

12) Children’s privacy

Our services are not directed to children under 13 (or the age required by your jurisdiction). We do not knowingly collect personal information from children. If you believe a child provided information, please contact us so we can delete it.

13) Third‑party links & content

Our sites may link to third‑party websites, apps, or services. We are not responsible for the privacy practices of those third parties. We encourage you to read their privacy policies.

14) Changes to this policy

We may update this Policy from time to time. The “Last updated” date at the top reflects the latest revision. If changes are material, we will provide additional notice as required by law.

15) Contact us

If you have questions or wish to exercise your rights, contact us at:

Email: privacy@bsca-group.com or info@bsca-group.com
Mailing address (legal correspondence): BSCA Group, LLC, 1111B S Governors Ave, STE 39703, Dover, DE 19904, USA

This document is provided for informational purposes and does not constitute legal advice.