General Data Protection Regulation (GDPR) Compliance Policy

Last Updated: May 1, 2025

Varqine ("we," "our," or "us") is committed to protecting your personal data and respecting your privacy rights. This GDPR Compliance Policy explains how we collect, use, store, and protect your personal information in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

1. Data Controller Information

Varqine acts as the data controller for personal information collected through our webinar platform and services.

Contact Details:

2. Personal Data We Collect

We may collect and process the following categories of personal data:

2.1 Information You Provide

  • Registration information: name, email address, phone number, job title, organization
  • Account credentials: username, password (encrypted)
  • Profile information: professional background, areas of interest, profile picture
  • Communication data: messages, questions submitted during webinars, feedback forms
  • Payment information: billing address, transaction details (payment card information is processed by third-party payment processors)

2.2 Information Collected Automatically

  • Technical data: IP address, browser type, device information, operating system
  • Usage data: webinar attendance records, viewing duration, interaction patterns, click behavior
  • Cookies and tracking technologies: session data, preferences, analytics information

2.3 Information from Third Parties

  • Social media profile information when you register using social login
  • Professional information from publicly available sources

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you have given explicit consent for specific processing activities
  • Contract Performance: To provide webinar services you have registered for
  • Legal Obligation: To comply with applicable laws and regulations
  • Legitimate Interests: To improve our services, prevent fraud, and ensure platform security

4. How We Use Your Personal Data

We use your personal information for the following purposes:

  • Providing access to webinars and online educational content
  • Managing your account and authentication
  • Processing registrations and payments
  • Sending webinar reminders, updates, and important service communications
  • Facilitating interactive features such as Q&A sessions, polls, and chat
  • Analyzing platform usage to improve user experience
  • Personalizing content recommendations based on your interests
  • Marketing communications (only with your consent)
  • Customer support and responding to inquiries
  • Preventing fraud, ensuring security, and troubleshooting technical issues
  • Complying with legal obligations and enforcing our terms of service

5. Data Sharing and Disclosure

We may share your personal data with the following categories of recipients:

5.1 Service Providers

We work with trusted third-party service providers who process data on our behalf:

  • Cloud hosting and infrastructure providers
  • Payment processing services
  • Email and communication platforms
  • Analytics and performance monitoring services
  • Customer support tools

5.2 Webinar Presenters and Hosts

Your name, questions, and participation data may be shared with webinar presenters to facilitate interactive sessions and follow-up communications.

5.3 Legal Requirements

We may disclose personal data when required by law, legal process, or to protect our rights, property, or safety.

5.4 Business Transfers

In the event of a merger, acquisition, or asset sale, your personal data may be transferred to the acquiring entity.

Important: We do not sell your personal data to third parties for their marketing purposes.

6. International Data Transfers

Your personal data may be transferred to and processed in countries outside your country of residence. When we transfer data internationally, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses approved by relevant authorities
  • Adequacy decisions recognizing equivalent data protection standards
  • Privacy Shield frameworks where applicable
  • Binding corporate rules for intra-group transfers

7. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Active accounts: Data retained while your account remains active
  • Inactive accounts: Data may be retained for up to 24 months after last activity
  • Marketing data: Retained until you withdraw consent or object to processing
  • Legal compliance: Data retained as required by applicable laws (typically 6-7 years for financial records)
  • Backup systems: Data in backups deleted according to our retention schedule

After the retention period expires, personal data is securely deleted or anonymized.

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

8.1 Right to Access

You can request confirmation of whether we process your personal data and obtain a copy of your data.

8.2 Right to Rectification

You can request correction of inaccurate or incomplete personal data.

8.3 Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data in certain circumstances, including:

  • Data no longer necessary for original purposes
  • You withdraw consent and no other legal basis exists
  • You object to processing and no overriding legitimate grounds exist
  • Data processed unlawfully

8.4 Right to Restriction of Processing

You can request limitation of processing in specific situations, such as when you contest data accuracy.

8.5 Right to Data Portability

You can receive your personal data in a structured, machine-readable format and transmit it to another controller.

8.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

8.7 Right to Withdraw Consent

Where processing is based on consent, you can withdraw consent at any time without affecting the lawfulness of prior processing.

8.8 Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that produce legal effects or similarly significant impacts.

8.9 Right to Lodge a Complaint

You can lodge a complaint with your local supervisory authority if you believe your data protection rights have been violated.

9. How to Exercise Your Rights

To exercise any of your rights, please contact us using the details provided in Section 1. We will respond to your request within 30 days. You may be required to verify your identity before we process your request.

You can also manage certain preferences directly through your account settings, including:

  • Updating profile information
  • Managing communication preferences
  • Downloading your data
  • Deleting your account

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

  • Encryption of data in transit and at rest using industry-standard protocols
  • Secure authentication mechanisms and access controls
  • Regular security assessments and vulnerability testing
  • Employee training on data protection and security practices
  • Incident response procedures and breach notification protocols
  • Physical security measures for data centers and office premises

While we strive to protect your personal data, no method of transmission or storage is completely secure. We cannot guarantee absolute security.

11. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance user experience, analyze platform performance, and deliver personalized content. For detailed information about our cookie practices, please refer to our Cookie Policy.

You can manage cookie preferences through your browser settings or our cookie consent tool.

12. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete such information promptly.

13. Changes to This Policy

We may update this GDPR Compliance Policy periodically to reflect changes in our practices, technologies, legal requirements, or business operations. We will notify you of material changes through:

  • Email notification to your registered address
  • Prominent notice on our website
  • In-platform notifications

The "Last Updated" date at the top of this policy indicates when it was last revised. Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

14. Data Protection Officer

If you have questions about this policy or our data protection practices, you may contact our Data Protection Officer:

Email: [email protected]

Subject Line: GDPR Inquiry - Data Protection Officer

15. Additional Information

15.1 Third-Party Links

Our platform may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

15.2 Recording of Webinars

Webinars may be recorded for educational purposes and future access. By participating, you consent to such recording. You will be notified when recording is in progress.

15.3 Marketing Communications

We will only send marketing communications with your explicit consent. You can unsubscribe at any time using the link provided in each email or by updating your preferences in your account settings.

Contact Us

If you have questions, concerns, or requests regarding this GDPR Compliance Policy or our data protection practices, please contact us:

We are committed to protecting your privacy and ensuring compliance with GDPR and applicable data protection regulations. Thank you for trusting Varqine with your personal information.