Privacy Policy

Effective Date: December 10, 2025
Last Updated: December 10, 2025

1. Introduction

Welcome to Greenlearners Technologies (“Company,” “we,” “us,” or “our”). We operate the website https://greenlearnerstechnologies.com (the “Website”) and provide digital marketing courses, marketing services, software solutions, digital products, books, and other business growth offerings (collectively, “Services”).

We are committed to protecting your privacy and ensuring transparency in how we collect, use, disclose, and safeguard your personal information. This Privacy Policy applies to all users globally, including those in the European Union, United Kingdom, California (United States), Nigeria, and other international locations.

Please read this Privacy Policy carefully. By accessing our Website, purchasing our Services, or engaging with our digital platforms, you acknowledge that you have read, understood, and agree to be bound by all terms of this Privacy Policy. If you do not agree with our policies and practices, please do not use our Website or Services.

1.1 Important Legal Notice

This Privacy Policy does not guarantee complete legal immunity. While we implement comprehensive privacy protections and comply with applicable laws including GDPR, CCPA, CPRA, and CalOPPA, privacy law is complex and constantly evolving. We strongly recommend:

Consulting with a qualified attorney regarding your specific privacy concerns
Regularly reviewing this policy for updates
Understanding your rights under applicable privacy laws
Contacting us immediately with any privacy questions or concerns

1.2 Contact Information

Greenlearners Technologies
Location: Nigeria (Online-Based)
Website: https://greenlearnerstechnologies.com
Email: contact@greenlearnerstechnologies.com
Phone/WhatsApp: +234 706 598 8960
Contact Form: https://greenlearnerstechnologies.com/contact/

2. Information We Collect

We collect various types of information from and about users of our Website and Services to provide, maintain, and improve our offerings.

2.1 Personal Information You Provide Directly

We collect information that you voluntarily provide when you:

Create an account or register on our Website
Purchase courses, services, software, books, or digital products
Subscribe to our email list or newsletters
Contact us via email, phone, WhatsApp, or contact forms
Connect through social media platforms
Participate in surveys, contests, or promotions
Submit feedback, reviews, or testimonials

Categories of Personal Information Collected:

Identity and Contact Information:

First name and last name
Email address
Phone number (including WhatsApp)
Physical address (street address, city, state/province, postal/ZIP code, country)

Account Information:

Username and password
Account preferences and settings
Security questions and answers

Payment and Transaction Information:

Payment method details (credit/debit card information, processed securely by third-party processors)
Billing address
Transaction history and purchase records
Order details and delivery information

Communication Information:

Messages, inquiries, and support requests
Feedback, reviews, and testimonials
Email correspondence and conversation history
Phone and WhatsApp communications

Social Media Information:

Profile information when you authenticate via social media (e.g., Facebook login, Twitter/X sign-in, LinkedIn, Instagram)
Public profile data, username, profile picture
Email address associated with social media accounts
Friends list or connections (if you grant permission)

Preference and Marketing Information:

Communication preferences (email, SMS, phone)
Marketing opt-in/opt-out selections
Content preferences and interests
Language and regional preferences

Professional and Educational Information:

Company name and industry
Job title and professional background
Course enrollments and learning progress
Certifications and achievements

Other Voluntary Information:

Any other information you choose to provide through forms, surveys, or direct communication

2.2 Information Collected Automatically

When you visit or interact with our Website, we automatically collect certain information through cookies, web beacons, and similar tracking technologies.

Technical and Device Information:

Device Data: Device type, model, operating system, and version
Browser Information: Browser type, version, language settings, and plug-ins
Network Information: IP address, Internet Service Provider (ISP), mobile network carrier
Device Identifiers: Unique device identifiers, advertising IDs, and hardware IDs

Usage and Activity Information:

Pages Viewed: URLs of pages visited, page views, and navigation paths
Time and Duration: Timestamps, time spent on pages, session duration
Interactions: Links clicked, buttons pressed, forms filled, downloads initiated
Referring Information: Referring/exit pages, search terms used to find our Website
Scroll Depth: How far users scroll on pages

Location Information:

General Location: Country, region, city inferred from IP address (not precise GPS location)
Time Zone: Time zone settings

Performance and Diagnostic Information:

Error logs and crash reports
Website performance metrics
Load times and response times

2.3 Tracking Technologies Used

We use the following tracking technologies:

Cookies:

Essential Cookies: Required for Website functionality (login, shopping cart, security)
Performance Cookies: Analyze usage and improve Website performance
Functional Cookies: Remember preferences and enhance user experience
Marketing/Advertising Cookies: Enable targeted advertising and remarketing

Web Beacons and Pixels:

Track email open rates and engagement
Measure advertising effectiveness
Monitor Website performance

Analytics Tools:

Google Analytics: Tracks user behavior, traffic sources, and engagement patterns
Other Analytics Services: Similar tools to understand Website usage

Session Storage and Local Storage:

Temporarily store information during your session
Remember preferences across sessions

You can manage cookie preferences through your browser settings, but disabling certain cookies may limit Website functionality.

2.4 Information from Third Parties

We may receive information about you from third-party sources, including:

Social Media Platforms:

Profile information when you connect via Facebook, Twitter, LinkedIn, Instagram
Public posts and interactions (if you engage with our social media content)

Payment Processors:

Transaction confirmation and payment status
Fraud detection information

Service Providers and Business Partners:

Email marketing platforms (Systeme.io, Mailchimp, Brevo)
CRM systems and customer support tools
Advertising networks and marketing partners

Publicly Available Sources:

Business directories and professional networks
Public records and databases
Publicly posted information online

Data Enrichment Services:

Demographic and firmographic data
Interest and behavior data for marketing purposes

3. How We Use Your Information

We collect and use your personal information for legitimate business purposes as described below.

3.1 Service Delivery and Operations

To Provide Our Services:

Process and fulfill orders for courses, services, software, books, and digital products
Create and manage your account
Authenticate users and maintain account security
Deliver digital products and course materials
Provide access to purchased content and resources

Transaction Processing:

Process payments securely through third-party processors
Generate invoices, receipts, and transaction confirmations
Handle refunds, exchanges, and billing disputes
Maintain financial and transaction records

Customer Support:

Respond to inquiries, questions, and support requests
Provide technical assistance and troubleshooting
Resolve complaints and disputes
Follow up on customer satisfaction

3.2 Communication and Notifications

Transactional Communications:

Send order confirmations and shipping notifications
Provide account updates and security alerts
Deliver service-related announcements
Send password reset instructions and verification codes

Marketing Communications (with your consent):

Send promotional emails about new courses, services, and products
Share special offers, discounts, and limited-time promotions
Deliver newsletters with educational content and industry insights
Announce product launches and feature updates
Invite participation in surveys, contests, and events

Administrative Communications:

Notify you of Terms of Service or Privacy Policy changes
Send important legal or regulatory notices
Communicate about account suspension or termination

3.3 Marketing, Advertising, and Remarketing

Targeted Advertising:

Display personalized advertisements on our Website and third-party platforms
Show relevant product recommendations based on browsing behavior
Create custom audiences for advertising campaigns

Remarketing and Retargeting:

Display ads to users who previously visited our Website
Show tailored content based on past interactions
Re-engage users who abandoned shopping carts or browsing sessions

Marketing Analytics:

Measure advertising effectiveness and conversion rates
Track return on ad spend (ROAS) and campaign performance
Optimize ad targeting and budget allocation
A/B test marketing messages and creative assets

Email Marketing Campaigns:

Segment email lists based on user behavior and preferences
Personalize email content and recommendations
Track email open rates, click-through rates, and conversions
Automate email sequences and drip campaigns

3.4 Analytics, Research, and Improvement

Website and Service Improvement:

Analyze user behavior, navigation patterns, and engagement metrics
Identify popular features and content
Detect and fix technical issues, bugs, and errors
Optimize Website design, layout, and user interface
Improve page load times and performance

Product Development:

Develop new features, courses, and services
Test beta versions and prototypes
Gather user feedback and suggestions
Prioritize product roadmap decisions

Business Intelligence:

Conduct market research and competitive analysis
Understand customer preferences and trends
Forecast demand and plan inventory
Measure customer lifetime value (CLV) and retention rates

Data Analytics:

Create reports and dashboards for business insights
Segment customers based on behavior and demographics
Build predictive models for churn and conversion

3.5 Security, Fraud Prevention, and Legal Compliance

Security and Protection:

Detect, prevent, and respond to security threats and vulnerabilities
Protect against fraud, unauthorized access, and abuse
Monitor for suspicious activity and anomalies
Maintain system integrity and availability

Legal Obligations:

Comply with applicable laws, regulations, and legal requirements
Respond to lawful government requests, court orders, and subpoenas
Maintain records for tax, accounting, and audit purposes
Enforce our Terms of Service and other agreements

Rights Protection:

Defend our intellectual property rights
Protect the rights, privacy, and safety of our users and third parties
Investigate and respond to claims of illegal or harmful conduct
Resolve disputes and legal proceedings

3.6 With Your Consent

For any other purposes with your explicit consent, which you can withdraw at any time by contacting us.

4. Legal Basis for Processing (GDPR & CCPA/CPRA)

4.1 GDPR Legal Bases (EU, UK, and Swiss Residents)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

Contractual Necessity (Article 6(1)(b)):

Processing necessary to perform our contract with you
Includes service delivery, order fulfillment, payment processing, and customer support

Legal Obligation (Article 6(1)(c)):

Compliance with tax, accounting, and financial regulations
Responding to lawful government requests
Meeting record-keeping requirements

Legitimate Interests (Article 6(1)(f)):

Improving our Services and Website functionality
Conducting analytics and research
Preventing fraud and ensuring security
Marketing to existing customers (soft opt-in)
Protecting our business interests and rights

We have conducted Legitimate Interests Assessments (LIAs) to balance our interests against your rights and freedoms.

Consent (Article 6(1)(a)):

Marketing communications to new contacts
Non-essential cookies and tracking
Sharing data with third parties for their purposes
Any processing not covered by other legal bases

You can withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal.

Vital Interests and Public Interest:

Rarely applicable but available when necessary to protect life or serve public interest

4.2 CCPA and CPRA Legal Framework (California Residents)

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), we process personal information for:

Business Purposes:

Providing and maintaining Services
Processing transactions and payments
Customer service and support
Security and fraud prevention
Legal compliance and dispute resolution

Commercial Purposes:

Marketing and advertising
Remarketing and retargeting
Business development and growth
Product improvement and innovation

Service Provider Purposes:

Sharing with service providers who assist in business operations
Contractually restricted use by service providers

5. How We Share Your Information

We share your personal information only in specific circumstances and with appropriate safeguards.

5.1 With Service Providers and Processors

We share information with trusted third-party service providers who perform services on our behalf. These providers are contractually obligated to:

Use your information only for specified purposes
Maintain confidentiality and security
Comply with applicable data protection laws
Delete or return data upon request

Categories of Service Providers:

Payment and Transaction Processors:

Payment gateways and merchant services
Fraud detection and prevention services
PCI-DSS compliant card processors

Email and Communication Platforms:

Email marketing platforms (Systeme.io, Mailchimp, Brevo)
SMS and messaging services
Email delivery and management systems

Analytics and Tracking Services:

Google Analytics and similar analytics tools
Heatmap and session recording services
A/B testing and optimization platforms

Advertising and Marketing Networks:

Google Ads, Facebook Ads, LinkedIn Ads
Remarketing and retargeting platforms
Affiliate marketing networks
Ad servers and exchanges

Cloud Infrastructure and Hosting:

Web hosting providers
Cloud storage services (e.g., AWS, Google Cloud, Azure)
Content delivery networks (CDNs)
Database hosting services

Customer Relationship Management (CRM):

CRM platforms and customer data systems
Customer support and ticketing tools
Help desk software

Content Delivery and Learning Management:

Course hosting platforms
Video streaming and hosting services
Learning management systems (LMS)

Security and Compliance:

Security monitoring and threat detection
Backup and disaster recovery services
Compliance and audit services

5.2 For Business Transactions

We may share your information in connection with:

Mergers and Acquisitions:

Sale, merger, or acquisition of our business or assets
Due diligence processes for potential transactions
Transfer of assets or business operations

Corporate Restructuring:

Reorganization, bankruptcy, or receivership proceedings
Transfer to successor entities or assignees

Business Partnerships:

Joint ventures and strategic partnerships
Co-marketing arrangements (with your consent)

In such events, we will require recipients to honor this Privacy Policy or provide equivalent protections.

5.3 For Legal Reasons and Safety

We may disclose information when required by law or necessary to:

Legal Compliance:

Comply with court orders, subpoenas, and legal processes
Respond to lawful government requests and investigations
Meet regulatory reporting requirements
Comply with tax and accounting obligations

Rights Protection:

Enforce our Terms of Service and other agreements
Protect our intellectual property rights
Defend against legal claims and litigation
Investigate violations of our policies

Safety and Security:

Protect against fraud, abuse, and illegal activities
Detect and prevent security threats
Safeguard the rights, property, and safety of our users and the public
Respond to emergencies involving danger of death or serious physical injury

5.4 With Your Consent or Direction

We may share your information:

When you explicitly consent to sharing
When you direct us to share information with third parties
For purposes you have been informed about and agreed to

5.5 Aggregate and De-Identified Information

We may share aggregated or de-identified information that cannot reasonably be used to identify you:

Statistical data and trends
Market research and industry reports
Public benchmarks and metrics
Academic research (with de-identification)

5.6 Public Forums and Social Sharing

Information you voluntarily post in public areas may be viewed by others:

Comments on blog posts or forums
Reviews and testimonials
Social media posts mentioning our brand
Information shared through social sharing features

Important Disclosure:
We do not sell your personal information to third parties for their direct marketing purposes. However, certain data sharing for targeted advertising may be considered a “sale” or “share” under CCPA/CPRA. California residents can opt out of this sharing (see Section 7.3).

6. Data Retention and Deletion

6.1 Retention Periods

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce agreements.

General Retention Guidelines:

Account Information:

Retained while your account is active
Retained for a reasonable period after account closure (typically 30-90 days) unless you request deletion
May be retained longer if required by law or for legitimate business interests

Transaction and Financial Records:

Retained for 3-7 years for accounting, tax, and audit purposes
Varies by jurisdiction and legal requirements
Includes invoices, receipts, payment records, and refund documentation

Marketing Information:

Retained until you unsubscribe or withdraw consent
Suppression lists retained indefinitely to honor opt-out requests
Campaign performance data retained for analytics (typically 2-3 years)

Communications Records:

Customer service communications retained for quality assurance and training (typically 1-3 years)
Email correspondence retained as long as necessary for ongoing relationships

Log and Analytics Data:

Technical logs retained for 12-24 months
Analytics data retained for historical analysis (typically 2-3 years)
Security logs retained as needed for security purposes

Legal and Compliance Records:

Retained as required by applicable laws and regulations
May be retained longer for ongoing legal matters or disputes

6.2 Deletion and Anonymization

When retention is no longer necessary, we will:

Securely Delete:

Permanently erase data from active systems
Remove data from backups within a reasonable timeframe
Ensure data is not recoverable

Anonymize:

Remove personally identifiable information
Aggregate data for statistical purposes
Render data non-re-identifiable

6.3 Requesting Deletion

You have the right to request deletion of your personal information (subject to legal exceptions). To request deletion:

Contact us at contact@greenlearnerstechnologies.com
Verify your identity
Specify what information you want deleted

Exceptions to Deletion: We may retain information when necessary to:

Complete transactions and fulfill contractual obligations
Comply with legal retention requirements
Resolve disputes and enforce agreements
Detect and prevent fraud or security threats
Exercise or defend legal rights

We will respond to deletion requests within 30-45 days.

7. Your Privacy Rights and How to Exercise Them

Depending on your location, you have various rights regarding your personal information. We are committed to honoring these rights.

7.1 General Rights (All Users)

Right to Information:

Know what personal information we collect about you
Understand how we use and share your information
Access this Privacy Policy at any time

Right to Correction:

Request correction of inaccurate or incomplete information
Update your account information directly

Right to Deletion:

Request deletion of your personal information (subject to legal exceptions)

Right to Opt-Out:

Unsubscribe from marketing emails
Opt out of targeted advertising and remarketing
Disable cookies through browser settings

Right to Non-Discrimination:

Receive equal service regardless of exercising privacy rights
Not be charged different prices for exercising rights

7.2 GDPR Rights (EU, UK, and Swiss Residents)

Under the General Data Protection Regulation (GDPR), you have the following rights:

Right of Access (Article 15):

Request a copy of personal data we hold about you
Receive information about how we process your data
Obtain details about data recipients and retention periods

Right to Rectification (Article 16):

Correct inaccurate or incomplete personal data
Update outdated information

Right to Erasure / “Right to be Forgotten” (Article 17):

Request deletion of your personal data when:
- No longer necessary for the purposes collected
- You withdraw consent (where processing is based on consent)
- You object to processing based on legitimate interests
- Data was unlawfully processed
- Required by legal obligation

Right to Restrict Processing (Article 18):

Limit how we use your data in certain circumstances:
- You contest the accuracy of data (while we verify)
- Processing is unlawful but you oppose deletion
- We no longer need the data but you need it for legal claims
- You object to processing based on legitimate interests (while we assess)

Right to Data Portability (Article 20):

Receive your data in a structured, commonly used, machine-readable format (e.g., CSV, JSON)
Transmit your data directly to another controller (where technically feasible)
Applies to data provided based on consent or contract

Right to Object (Article 21):

Object to processing based on legitimate interests
Object to direct marketing (including profiling for marketing)
Object to processing for scientific, historical, or statistical research

Right to Withdraw Consent (Article 7(3)):

Withdraw consent at any time for processing based on consent
Does not affect lawfulness of processing before withdrawal

Right Not to Be Subject to Automated Decision-Making (Article 22):

Not be subject to decisions based solely on automated processing (including profiling) with legal or significant effects
Request human intervention, express your point of view, and contest the decision

Right to Lodge a Complaint:

File a complaint with your local supervisory authority (Data Protection Authority)
Contact your national DPA if you believe we have violated GDPR

How to Exercise GDPR Rights:

Email: contact@greenlearnerstechnologies.com
Subject line: “GDPR Data Subject Request”
Include: Your name, email, specific right you wish to exercise, and any details needed
Response time: Within 30 days (extendable by 60 days for complex requests)

7.3 CCPA/CPRA Rights (California Residents)

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have the following rights:

Right to Know / Access (CCPA § 1798.100, CPRA § 1798.110):

Request disclosure of:
- Categories of personal information collected
- Categories of sources from which information was collected
- Business or commercial purposes for collecting or selling information
- Categories of third parties with whom we share information
- Specific pieces of personal information collected

Right to Delete (CCPA § 1798.105, CPRA § 1798.105):

Request deletion of personal information collected from you
Subject to exceptions (legal obligations, transaction completion, security, etc.)

Right to Correct (CPRA § 1798.106):

Request correction of inaccurate personal information
Must specify what information is inaccurate

Right to Opt-Out of Sale/Sharing (CCPA § 1798.120, CPRA § 1798.121):

Opt out of the “sale” or “sharing” of personal information
We do not sell information in the traditional sense, but sharing for targeted advertising may qualify
Exercise through: “Do Not Sell or Share My Personal Information” link (if implemented) or contact us

Right to Limit Use of Sensitive Personal Information (CPRA § 1798.121):

Limit use and disclosure of sensitive personal information to:
- Purposes necessary to provide Services
- Purposes permitted by CPRA regulations

Right to Non-Discrimination (CCPA § 1798.125):

We will not discriminate against you for exercising CCPA/CPRA rights
We will not:
- Deny goods or services
- Charge different prices or rates
- Provide different quality of service
- Suggest you will receive different prices or quality
Exception: We may charge different prices or provide different services if the difference is reasonably related to the value of your data

Right to Designate an Authorized Agent:

Authorize an agent to make requests on your behalf
Agent must provide:
- Written authorization signed by you
- Proof of your identity
- Proof of agent’s authority

How to Exercise CCPA/CPRA Rights:

Submit Requests:

Email: contact@greenlearnerstechnologies.com (subject: “CCPA Privacy Request”)
Phone/WhatsApp: +234 706 598 8960
Contact Form: https://greenlearnerstechnologies.com/contact/
Mail: Greenlearners Technologies, Nigeria

Verification Process:

We will verify your identity before fulfilling requests
May request additional information to match against our records
Authorized agents must provide proof of authorization

Response Timeline:

Respond within 45 days of receiving verifiable request
May extend by 45 additional days if necessary (with notice)
Will explain reasons if we cannot fulfill your request

Request Limits:

You may make up to 2 requests to know within a 12-month period
No limit on deletion or correction requests

7.4 CalOPPA Rights (California Residents)

Under the California Online Privacy Protection Act (CalOPPA), California residents have additional rights:

Do Not Track (DNT) Disclosure:

We honor browser “Do Not Track” signals
We do not track users across third-party websites when DNT is enabled
You can enable DNT in your browser settings:
- Chrome: Settings > Privacy and Security > Cookies
- Firefox: Preferences > Privacy & Security > Enhanced Tracking Protection
- Safari: Preferences > Privacy > Prevent Cross-Site Tracking

Third-Party Tracking Disclosure:

We disclose that third parties (Google, Facebook, ad networks) may collect information about your online activities
You can opt out through:
- Network Advertising Initiative (NAI): http://optout.networkadvertising.org/
- Digital Advertising Alliance (DAA): http://optout.aboutads.info/
- European Interactive Digital Advertising Alliance (EDAA): http://www.youronlinechoices.eu/

Privacy Policy Accessibility:

This Privacy Policy is prominently displayed and easily accessible
Available at all times on our Website footer

User Data Access and Modification:

Registered users can review, modify, or delete their account information by:
- Logging into account settings
- Contacting us directly

7.5 California “Shine the Light” Law

California Civil Code § 1798.83 allows California residents to request information about personal information shared with third parties for their direct marketing purposes.

To Request Shine the Light Information:

Email: contact@greenlearnerstechnologies.com
Subject: “California Shine the Light Request”
Include: Your name, address, and email
Response: We will provide categories of information shared (if any) within 30 days

Important: We do not share personal information with third parties for their direct marketing purposes without your consent.

7.6 Rights in Other Jurisdictions

Nigeria (NDPR/DPA):

Rights to access, rectify, delete, and object to processing
Right to data portability
Right to lodge complaints with NITDA

Canada (PIPEDA):

Right to access personal information
Right to challenge accuracy
Right to withdraw consent

Australia (Privacy Act):

Right to access and correct information
Right to complain to the Office of the Australian Information Commissioner

UK (UK GDPR & DPA 2018):

Same rights as EU GDPR
Right to lodge complaints with the Information Commissioner’s Office (ICO)

Contact us to inquire about your rights under local privacy laws.

7.7 How to Exercise Your Rights – General Process

Step 1: Submit Your Request

Email: contact@greenlearnerstechnologies.com
Phone/WhatsApp: +234 706 598 8960
Contact Form: https://greenlearnerstechnologies.com/contact/
Include: Your name, email, specific right you wish to exercise, relevant details

Step 2: Verify Your Identity

We may request additional information to verify your identity:
- Email confirmation
- Account verification questions
- Government-issued ID (in limited circumstances)
This protects your privacy and prevents unauthorized access

Step 3: We Process Your Request

Review and assess your request
Determine if exceptions apply (legal obligations, ongoing transactions)
Fulfill request or explain why we cannot

Step 4: Receive Our Response

GDPR: Within 30 days (extendable to 90 days)
CCPA/CPRA: Within 45 days (extendable to 90 days)
Other jurisdictions: As required by applicable law

Step 5: Follow-Up (if needed)

If you’re not satisfied with our response, you can:
- Request clarification or additional information
- File a complaint with your local supervisory authority
- Seek legal advice

8. Email Marketing and Communications

8.1 Types of Communications

Transactional Emails (Cannot Opt-Out):

Order confirmations and receipts
Shipping and delivery notifications
Password reset and account verification emails
Security alerts and account notifications
Customer support responses
Service-related announcements
Terms or Privacy Policy updates

Marketing Emails (Can Opt-Out):

Promotional offers and discounts
New product or course announcements
Newsletters and educational content
Event invitations and webinar registrations
Surveys and feedback requests
Special campaigns and limited-time offers

8.2 Consent and Opt-In

How You Opt-In:

Checking opt-in boxes during account creation or checkout
Subscribing through newsletter signup forms
Requesting information or downloading resources
Attending webinars or events (with consent checkbox)
Purchasing products (implied consent for relevant communications)

Double Opt-In (Where Required):

For certain marketing lists, we use double opt-in confirmation
You receive a confirmation email with a link to verify subscription
Provides additional protection against spam and unauthorized signups

8.3 Email Marketing Platforms

We use professional email marketing platforms to manage communications:

Systeme.io: All-in-one marketing platform
Mailchimp: Email marketing and automation
Brevo (formerly Sendinblue): Marketing and transactional emails
Other platforms as needed for specific campaigns

These platforms are contractually bound to protect your information and comply with applicable privacy laws.

8.4 How to Opt-Out of Marketing Emails

Method 1: Unsubscribe Link

Click “Unsubscribe” or “Manage Preferences” link in any marketing email footer
Follow prompts to confirm unsubscribe
Processed immediately (may take up to 10 business days to fully remove)

Method 2: Email Request

Send email to: contact@greenlearnerstechnologies.com
Subject: “Unsubscribe from Marketing Emails”
Include: Email address to be unsubscribed

Method 3: Account Settings

Log into your account
Navigate to Email Preferences or Communication Settings
Uncheck marketing email options

Method 4: Contact Form

Visit: https://greenlearnerstechnologies.com/contact/
Submit unsubscribe request

Method 5: Reply to Email

Reply to any marketing email with “UNSUBSCRIBE” in the subject or body

Processing Time:

Immediate for automated unsubscribe links
Within 10 business days for manual requests
You may receive already-scheduled emails during processing

Selective Opt-Out:

Some platforms allow you to choose specific types of emails to receive
You can remain subscribed to some lists while unsubscribing from others

8.5 Suppression Lists

When you unsubscribe, we add your email to a suppression list to ensure you don’t receive future marketing emails, even if your email is submitted again through a signup form.

Suppression lists are retained indefinitely to honor your opt-out request.

9. Cookies, Tracking, and Analytics

9.1 What Are Cookies?

Cookies are small text files stored on your device when you visit websites. They help websites remember your preferences, maintain sessions, and improve user experience.

Types of Data Stored in Cookies:

Session identifiers
Login credentials (encrypted)
Shopping cart contents
User preferences and settings
Analytics and performance data

9.2 Categories of Cookies We Use

Essential/Strictly Necessary Cookies:

Required for Website functionality
Enable navigation, access secure areas, and use features
Examples: Session cookies, authentication cookies, security cookies
Cannot be disabled without affecting Website functionality

Performance/Analytics Cookies:

Track Website usage, performance, and visitor behavior
Help us understand how visitors interact with our Website
Examples: Google Analytics, page view tracking, bounce rate measurement
Used to improve Website performance and user experience

Functional Cookies:

Remember your preferences and choices
Provide enhanced functionality and personalization
Examples: Language preferences, region settings, accessibility options
Improve your user experience

Marketing/Advertising Cookies:

Enable targeted advertising and remarketing
Track advertising effectiveness and conversions
Deliver personalized ads based on browsing behavior
Examples: Google Ads cookies, Facebook Pixel, remarketing tags

9.3 Google Analytics

We use Google Analytics to collect and analyze information about Website usage.

Information Collected by Google Analytics:

Pages viewed and time spent
Traffic sources (organic search, social media, direct visits)
Device type, browser, operating system
Geographic location (city, country)
Bounce rate and exit pages
Conversion tracking

How Google Uses Your Data:

Google may use this information for its own purposes (subject to Google’s Privacy Policy)
Google may combine it with other data they have about you
Visit Google’s Privacy Policy: https://policies.google.com/privacy

How to Opt-Out of Google Analytics:

Install Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout
Enable “Do Not Track” in your browser
Use privacy-focused browsers or extensions that block tracking

9.4 Managing Cookies

Browser Settings: Most browsers allow you to:

Block all cookies
Block third-party cookies only
Delete existing cookies
Receive alerts when cookies are sent

How to Manage Cookies in Popular Browsers:

Google Chrome:

Settings > Privacy and Security > Cookies and other site data
Choose: Block third-party cookies or Block all cookies

Mozilla Firefox:

Preferences > Privacy & Security
Enhanced Tracking Protection: Standard, Strict, or Custom

Safari:

Preferences > Privacy
Enable “Prevent cross-site tracking” and “Block all cookies”

Microsoft Edge:

Settings > Privacy, search, and services
Tracking prevention: Basic, Balanced, or Strict

Disabling Cookies May:

Prevent you from logging in
Break shopping cart functionality
Remove personalization
Affect Website performance

9.5 Tracking Pixels and Web Beacons

We use invisible pixels (1×1 images) to:

Track email open rates
Measure Website visits from specific sources
Monitor ad impressions and clicks
Analyze user engagement

These pixels collect:

IP address
Browser and device information
Timestamp of access
Referring page

9.6 Third-Party Opt-Out Resources

Opt Out of Interest-Based Advertising:

Digital Advertising Alliance (DAA): http://optout.aboutads.info/
Network Advertising Initiative (NAI): http://optout.networkadvertising.org/
European Digital Advertising Alliance (EDAA): http://www.youronlinechoices.eu/
Google Ads Settings: https://adssettings.google.com
Facebook Ad Preferences: https://www.facebook.com/ads/preferences

Note: Opting out does not mean you’ll stop seeing ads; it means ads will be less relevant to your interests.

10. Advertising, Remarketing, and Targeted Ads

10.1 How We Use Advertising

We display advertisements through:

On-Site Ads: Banner ads, display ads, and promotional content on our Website
Third-Party Platforms: Google Ads, Facebook Ads, LinkedIn Ads, Twitter Ads
Remarketing Campaigns: Showing ads to users who previously visited our Website

Purposes of Advertising:

Promote our courses, services, and products
Drive traffic to our Website
Increase brand awareness
Convert visitors into customers

10.2 Remarketing and Retargeting

What is Remarketing? Remarketing displays ads to users who previously visited our Website but did not complete a desired action (e.g., purchase, signup).

How Remarketing Works:

You visit our Website
A cookie or pixel is placed on your device
The advertising platform tracks your browsing activity
You see our ads on other websites, social media, and apps
Clicking the ad brings you back to our Website

Remarketing Platforms We Use:

Google Ads Remarketing: Shows ads across Google Display Network
Facebook/Meta Pixel: Displays ads on Facebook and Instagram
LinkedIn Insight Tag: Shows ads to B2B audiences on LinkedIn
Twitter Pixel: Retargets Twitter users
Other Platforms: Pinterest, TikTok, Reddit, etc.

10.3 Targeted Advertising

We create targeted ad campaigns based on:

Demographics: Age, gender, location, language
Interests: Inferred from browsing behavior and search history
Behavior: Past purchases, Website interactions, email engagement
Lookalike Audiences: People similar to our existing customers
Custom Audiences: Uploaded email lists (hashed for privacy)

10.4 Opting Out of Targeted Advertising

Platform-Specific Opt-Outs:

Google Ads:

Visit: https://adssettings.google.com
Turn off “Ads Personalization”

Facebook/Meta:

Visit: https://www.facebook.com/ads/preferences
Adjust ad settings and interests

LinkedIn:

Visit: https://www.linkedin.com/psettings/advertising
Opt out of interest-based ads

Industry-Wide Opt-Outs:

Digital Advertising Alliance (DAA): http://optout.aboutads.info/
Network Advertising Initiative (NAI): http://optout.networkadvertising.org/

Browser and Device Settings:

Enable “Limit Ad Tracking” (iOS)
Disable “Personalized Ads” (Android)
Use privacy extensions (AdBlock, Privacy Badger, uBlock Origin)

10.5 California Residents – Opt-Out of “Sale” or “Sharing”

Under CCPA/CPRA, sharing data for targeted advertising may be considered a “sale” or “share.”

To Opt-Out:

Email: contact@greenlearnerstechnologies.com (subject: “Do Not Sell My Personal Information”)
Use “Do Not Sell or Share My Personal Information” link (if implemented on Website)
Enable Global Privacy Control (GPC) in your browser

We will process opt-out requests within 15 business days.

11. Third-Party Services and Links

11.1 Third-Party Websites and Services

Our Website may contain links to third-party websites, applications, and services, including:

Social media platforms (Facebook, Twitter, LinkedIn, Instagram)
Payment processors (PayPal, Stripe, etc.)
Video hosting (YouTube, Vimeo)
Cloud storage (Google Drive, Dropbox)
Educational platforms (Udemy, Teachable, Thinkific)
Affiliate partners

We Are Not Responsible For:

Privacy practices of third-party services
Security of third-party platforms
Content or functionality of external websites
Data breaches at third-party providers

We Recommend:

Reviewing privacy policies before using third-party services
Understanding what information third parties collect
Checking security measures of external platforms

11.2 Social Media Integration

Social Login (Facebook, Twitter, LinkedIn): When you connect via social media:

We request access to your profile information
You grant us permission to collect public profile data
We may receive email, name, profile picture, and other public information

Social Sharing Features: Our Website may include social sharing buttons:

Share content on Facebook, Twitter, LinkedIn
These buttons may track your interactions
Subject to social media platform’s privacy policies

Embedded Social Media Content: We may embed content from:

YouTube videos
Facebook posts
Twitter tweets
Instagram images

These embeds may set cookies and track viewing behavior.

11.3 Payment Processors

We use third-party payment processors to handle transactions securely:

Payment information is processed directly by the processor
We do not store full credit card numbers
Processors are PCI-DSS compliant

Payment Processor Privacy Policies:

Review the processor’s privacy policy for details on data handling
Examples: PayPal Privacy Statement, Stripe Privacy Policy

11.4 Email Marketing Platforms

We use third-party platforms for email marketing:

Systeme.io Privacy Policy: https://systeme.io/privacy
Mailchimp Privacy Policy: https://www.intuit.com/privacy/statement/
Brevo Privacy Policy: https://www.brevo.com/legal/privacypolicy/

These platforms process your email, name, and engagement data on our behalf.

11.5 Affiliate Links

Our Website may contain affiliate links to third-party products or services. If you click an affiliate link and make a purchase:

We may earn a commission at no extra cost to you
The third party may collect your information
Subject to the third party’s privacy policy

12. Data Security

12.1 Security Measures We Implement

We take data security seriously and implement comprehensive technical, organizational, and physical safeguards to protect your personal information.

Technical Security Measures:

Encryption:

SSL/TLS Encryption: All data transmitted between your device and our servers is encrypted using HTTPS (Secure Sockets Layer/Transport Layer Security)
Data at Rest Encryption: Sensitive data stored on our servers is encrypted
End-to-End Encryption: Where applicable for sensitive communications

Access Controls:

Role-based access control (RBAC) limiting who can access data
Multi-factor authentication (MFA) for administrative access
Least privilege principle – users only access data necessary for their role
Regular access reviews and removal of unnecessary permissions

Network Security:

Firewalls protecting our servers from unauthorized access
Intrusion detection and prevention systems (IDS/IPS)
Virtual Private Networks (VPNs) for remote access
Network segmentation isolating sensitive systems

Application Security:

Regular security patches and software updates
Secure coding practices following OWASP guidelines
Input validation and sanitization to prevent injection attacks
Protection against common vulnerabilities (SQL injection, XSS, CSRF)

Organizational Security Measures:

Staff Training and Awareness:

Regular privacy and security training for all employees
Data protection policies and procedures
Confidentiality agreements and NDAs
Background checks for employees with access to sensitive data

Data Minimization:

Collecting only necessary personal information
Limiting data retention to required periods
Regularly reviewing and deleting unnecessary data

Vendor Management:

Due diligence on third-party service providers
Data Processing Agreements (DPAs) with all vendors
Regular security assessments of vendors
Contractual security requirements

Physical Security Measures:

Data Center Security:

Physical access controls (biometric access, key cards)
24/7 video surveillance
Environmental controls (fire suppression, climate control)
Redundant power and network connectivity

Secure Data Destruction:

Secure wiping of decommissioned hardware
Shredding of physical documents
Certified data destruction services

12.2 Payment Security (PCI-DSS Compliance)

We Do Not Store Full Credit Card Numbers:

Payment information is processed by PCI-DSS compliant third-party processors
We only store last 4 digits and expiration dates (if necessary)
Tokenization replaces sensitive card data with non-sensitive tokens

Payment Processor Security:

All payment processors are PCI-DSS Level 1 certified
They maintain the highest security standards for card data
Subject to regular security audits and compliance assessments

12.3 Limitations of Security

Important Disclaimer:

While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your personal information.

Risks You Should Be Aware Of:

Data breaches can occur despite best security practices
Hackers and cybercriminals continuously develop new attack methods
Third-party service providers may experience security incidents
Human error can lead to unintentional data exposure
Phishing and social engineering attacks targeting users

Your Responsibility:

Use strong, unique passwords for your account
Enable multi-factor authentication when available
Keep your login credentials confidential
Do not share your account with others
Be cautious of phishing emails and suspicious links
Log out of your account when using shared devices
Keep your devices and software updated

12.4 Data Breach Response

If We Discover a Data Breach:

Immediate Actions:

Contain and investigate the breach
Assess the scope and impact
Identify affected individuals and data
Engage cybersecurity experts if necessary

Notification:

GDPR: Notify supervisory authority within 72 hours of discovery (if required)
GDPR: Notify affected individuals without undue delay if high risk
CCPA/CPRA: Notify California Attorney General and affected California residents
Other Laws: Comply with all applicable breach notification laws

What We Will Tell You:

Nature of the breach and data compromised
Approximate date of the breach
Types of personal information affected
Steps we are taking to address the breach
Steps you can take to protect yourself
Contact information for questions

Support We May Offer:

Complimentary credit monitoring services
Identity theft protection
Dedicated hotline for affected individuals
Guidance on protecting your accounts

How We Notify You:

Email to your registered email address
Prominent notice on our Website
Direct mail (if email is unavailable)
Public announcement (if widespread breach)

12.5 Reporting Security Concerns

If You Discover a Security Vulnerability:

Email: contact@greenlearnerstechnologies.com
Subject: “Security Vulnerability Report”
Provide details about the vulnerability
Do not exploit or publicly disclose the vulnerability
Allow us reasonable time to address the issue

Responsible Disclosure:

We appreciate responsible disclosure of security issues
We will investigate all reports promptly
We will acknowledge receipt within 48 hours
We will work to resolve confirmed vulnerabilities

13. International Data Transfers

13.1 Where We Process Data

Greenlearners Technologies is based in Nigeria. However, your personal information may be transferred to, stored in, and processed in countries other than your country of residence, including:

Nigeria (our primary operations)
United States (cloud hosting, email services, CRM systems)
European Union (GDPR-compliant service providers)
Other countries where our service providers operate

Why Data May Be Transferred:

Cloud hosting and storage infrastructure
Payment processing and fraud detection
Email marketing platforms
Analytics and advertising services
Customer support tools

13.2 GDPR International Transfer Safeguards

For transfers of personal data from the European Economic Area (EEA), United Kingdom, or Switzerland to countries outside these regions, we rely on the following safeguards:

Standard Contractual Clauses (SCCs):

We use European Commission-approved Standard Contractual Clauses (SCCs)
SCCs are legally binding contracts ensuring adequate data protection
Updated to comply with Schrems II (C-311/18) requirements
Include supplementary measures as needed

Adequacy Decisions:

We rely on European Commission adequacy decisions when available
Countries with adequacy decisions are deemed to provide adequate protection

Appropriate Safeguards:

Binding Corporate Rules (BCRs) where applicable
Codes of conduct and certification mechanisms
Technical and organizational measures to protect data

13.3 Your Rights Regarding International Transfers

EU, UK, and Swiss Residents:

You have the right to request information about safeguards in place for international transfers
You may request a copy of Standard Contractual Clauses
You can object to transfers if you believe adequate safeguards are not in place

Contact us for details on specific international transfers and safeguards.

13.4 Data Protection Standards

When transferring data internationally, we ensure:

Equivalent level of protection as in your home country
Compliance with applicable data protection laws
Contractual obligations on data recipients
Technical security measures during transmission

13.5 Consent to Transfer

By using our Website and Services, you understand and consent to:

Transfer of your personal information to countries outside your country of residence
Processing in countries with different data protection laws
Storage on servers located internationally
Access by service providers in various jurisdictions

If you do not consent to international transfers, please do not use our Website or Services.

14. Children’s Privacy

14.1 Age Restrictions

Our Website and Services are not intended for children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children under these ages.

Definitions:

Child (US – COPPA): Anyone under 13 years of age
Child (EU – GDPR): Anyone under 16 years of age (or lower age set by member state)
Minor (General): Anyone under 18 years of age

14.2 Parental Consent

If You Are Under 13 (or 16 in EEA):

Do not use our Website or Services
Do not create an account
Do not provide any personal information to us
Do not make purchases

If We Discover Collection from Children:

We will delete the information immediately
We will terminate the child’s account
We will take steps to prevent future access

14.3 Parental Rights and Responsibilities

Parents and Legal Guardians:

You are responsible for monitoring your child’s internet usage
Use parental control tools to restrict access to age-inappropriate content
Educate your child about online privacy and safety

If You Believe We Have Collected Information from Your Child:

We will verify your parental authority and delete the information

Subject: “Child Privacy Concern”

Provide: Child’s name, age, email, and any details