Your Privacy, Protected

1. Who We Are

Ark Platforms Inc ("we", "us", or "our") designs and develops custom eLearning platforms and Moodle-based solutions for clients worldwide.

2. Information We Collect

• Account & Contact Data: name, email, phone, organization, role.
• Platform Data: course enrollments, progress, assessments, messages, and support tickets.
• Technical Data: IP address, device/browser information, cookies, usage logs.
• Payment Data: billing details and transaction info processed via certified payment providers. We do not store full card numbers.

3. How We Use Information

• Provide, operate, and improve our eLearning services and Moodle implementations.
• Authenticate users, secure accounts, and prevent fraud or abuse.
• Configure courses, roles, and integrations per customer specifications.
• Process payments, subscriptions, and invoicing.
• Provide support, service communications, and product updates.
• Comply with legal obligations and enforce agreements.

4. Legal Bases (GDPR)

We process personal data under one or more of the following bases: performance of a contract, legitimate interests (e.g., service security and improvement), consent (where required), and legal obligations.

5. Cookies & Similar Technologies

We use essential cookies for authentication and security, and optional analytics cookies to understand usage. You can control cookies via your browser settings and, where offered, in-product preferences.

6. Analytics

We may use privacy-focused analytics to measure feature adoption and performance. Data is aggregated and pseudonymized where possible.

7. Payments

Payments are handled by third-party PCI-DSS compliant processors. We receive limited transaction metadata for reconciliation and support purposes.

8. Data Sharing

We do not sell personal data. We share information with vetted service providers (hosting, security, analytics, support) under strict confidentiality and data processing agreements, or as required by law.

9. International Transfers

Where data is transferred internationally, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent mechanisms.

10. Data Retention

We retain personal data only as long as necessary to provide services and meet legal, accounting, or reporting requirements. Upon contract termination, data is deleted or returned per agreement, subject to legal retention duties.

11. Security

We implement industry-standard security controls, including encryption in transit, access controls, network hardening, and continuous monitoring. No method of transmission is fully secure; residual risk remains.

12. Your Rights

• Access, rectification, erasure, and portability of your personal data.
• Restriction or objection to processing, including for direct marketing.
• Withdrawal of consent where processing is based on consent.
• Right to lodge a complaint with your local data protection authority.

13. Children’s Privacy

Our services are generally directed to organizations. We do not knowingly collect personal data from children without appropriate authorization from the controller (e.g., a school) and guardian consent as required by law.

14. Third-Party Links

Our sites or platforms may contain links to third-party sites. We are not responsible for their content or privacy practices. Review their policies before providing personal data.

15. Controller / Processor Roles

For client Moodle deployments, the client typically acts as the data controller. We act as a data processor, processing personal data solely on documented instructions from the controller.

16. Contact Us

If you have questions about this policy or wish to exercise your rights, contact our Data Protection Officer (DPO):

17. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through our website or via email where appropriate. The "Last Updated" date reflects the latest revision.