Flunk Xurm Logo
Understanding Markets Through Education

Privacy Policy

Last Updated: January 15, 2025

At Flunk Xurm, we respect your privacy. This policy explains how we collect, use, and protect your personal information when you interact with our educational services focused on market volatility understanding.

We operate in Canada and comply with applicable privacy legislation, including the Personal Information Protection and Electronic Documents Act (PIPEDA). This document outlines your rights and our responsibilities regarding your data.

Questions about your privacy? Contact us at [email protected] or call +17094896619. Our team responds within two business days.

Information We Collect

We collect different types of information depending on how you engage with our educational platform. Here's what we gather and why it matters for your learning experience.

Information You Provide Directly

  • Your name, email address, and phone number when you register for our programs
  • Educational background and professional experience when you apply to courses
  • Payment information processed through secure third-party payment processors
  • Communication preferences and feedback you share with us
  • Assignment submissions and course participation data
  • Messages sent through our contact forms or support channels

Information Collected Automatically

When you visit our website, certain technical information gets logged automatically. This helps us improve site performance and understand how people use our resources.

  • IP address and general location information (city level, not precise coordinates)
  • Browser type, device information, and operating system
  • Pages visited, time spent on each page, and navigation patterns
  • Referral sources that brought you to our site
  • Session data and cookies that remember your preferences

How We Use Your Information

We're not in the business of selling your data. Everything we collect serves a specific purpose related to delivering quality financial education and improving our services.

Purpose Data Used Legal Basis
Delivering educational content Contact info, course enrollment data Contract performance
Processing payments Billing information, transaction records Contract performance
Sending course updates Email address, course history Legitimate interest
Improving user experience Usage patterns, feedback Legitimate interest
Responding to inquiries Contact details, message content Legitimate interest
Legal compliance All applicable data Legal obligation

Marketing Communications: We'll only send you promotional emails if you've opted in. You can unsubscribe anytime through the link in every message. Course-related emails (like enrollment confirmations or schedule changes) will still come through because they're essential to the service.

Data Sharing and Third Parties

We work with select partners to deliver our educational services. Here's who might see your information and under what circumstances.

Service Providers We Work With

  • Payment processors that handle credit card transactions securely (they never share full card details with us)
  • Email service providers that help us send course updates and newsletters
  • Cloud storage providers where course materials and student records are kept
  • Analytics tools that show us how people use our website (all data is anonymized)
  • Customer support platforms that help us respond to your questions efficiently

All these partners sign agreements promising to protect your data and use it only for the specific services they provide to us. We don't give them permission to use your information for their own marketing.

When We Must Share Information

Sometimes the law requires us to disclose information. This happens rarely, but it's important you know when it might occur:

  • In response to valid legal requests from law enforcement or government agencies
  • To protect the safety of our students, staff, or the general public
  • To prevent fraud or investigate potential security breaches
  • When required by court order or legal process
  • In connection with a business sale or merger (you'd be notified in advance)

24hrs

Data Request Response

256-bit

Encryption Standard

PIPEDA

Compliance Standard

7 Years

Max Data Retention

Your Privacy Rights

You have control over your personal information. Here's what you can do and how to exercise these rights.

Right
What It Means
How to Exercise
Access
Request a copy of all data we hold about you
Email [email protected] with "Data Access Request"
Correction
Fix inaccurate or incomplete information
Contact us with the correct details
Deletion
Have your data removed from our systems
Submit a deletion request via email
Portability
Receive your data in a common format
Request a data export from our team
Opt-Out
Stop receiving marketing messages
Click unsubscribe in any email
Complaint
File a complaint about data handling
Contact Privacy Commissioner of Canada

Response Timeline: We aim to respond to all privacy rights requests within 30 days. If we need more time, we'll let you know why and when you can expect a complete response. Some requests might require identity verification to protect your information.

Data Security Measures

Protecting your information is something we take seriously. While no system is 100% secure, we've implemented multiple layers of protection.

  • All data transmission uses industry-standard SSL/TLS encryption
  • Our databases are encrypted at rest and access is restricted to authorized personnel only
  • We conduct regular security audits and vulnerability assessments
  • Staff members receive ongoing training on data protection best practices
  • We use firewalls, intrusion detection systems, and secure backup procedures
  • Payment information never touches our servers directly (handled by PCI-compliant processors)
  • Regular software updates and security patches keep systems protected

If we discover a data breach that affects your personal information, we'll notify you within 72 hours and explain what happened, what information was involved, and what steps we're taking to prevent future incidents.

Data Retention and Deletion

We don't keep your information forever. Here's how long different types of data stick around and why.

Retention Periods

  • Active student records: Maintained throughout enrollment plus two years after course completion
  • Financial records: Kept for seven years to comply with tax and accounting regulations
  • Marketing communications data: Stored until you unsubscribe or three years of inactivity
  • Website analytics: Aggregated data retained indefinitely, individual session data for 26 months
  • Support correspondence: Maintained for three years for quality assurance purposes
  • Legal documentation: Retained as long as legally required or while disputes remain active

After these periods expire, we either delete the data or anonymize it so it can't be traced back to you. Some information might need to stay longer if there's an ongoing legal matter or investigation.

How We Delete Data

When it's time to remove your information, we don't just hit delete and call it done. Our deletion process includes removing data from active databases, backup systems, and any redundant copies. The process typically takes 60 days to complete across all systems.

Cookies and Tracking Technologies

Like most websites, we use cookies. These are small files stored on your device that help our site remember your preferences and understand how you use our platform.

Types of Cookies We Use

  • Essential cookies: Required for the site to function properly (like keeping you logged in)
  • Performance cookies: Help us understand which pages get the most traffic and where people encounter problems
  • Functionality cookies: Remember your preferences like language settings or text size
  • Analytics cookies: Give us insight into how visitors navigate the site and what content resonates

You can control cookies through your browser settings. Keep in mind that blocking certain cookies might affect how well the site works for you. Most browsers let you view and delete cookies individually, or block all cookies from specific sites.

Third-Party Cookies: Some pages might include content from other platforms (like embedded videos). These services might set their own cookies. We don't control these third-party cookies, so check their privacy policies for details on how they use them.

Children's Privacy

Our educational services focus on adult learners interested in financial markets. We don't knowingly collect information from anyone under 18 years old.

If a parent or guardian believes we've accidentally collected information from a minor, please contact us immediately at [email protected]. We'll delete the information promptly and take steps to prevent similar situations.

For younger students interested in financial education, we recommend parental involvement in any online learning activities and supervision of internet usage.

International Data Transfers

While we're based in Canada, some of our service providers operate servers in other countries. This means your data might be processed outside Canada, potentially in the United States or European Union.

When this happens, we make sure these providers offer adequate protection for your information. We use standard contractual clauses approved by privacy regulators and only work with companies that meet our security standards.

Your data remains subject to Canadian privacy laws regardless of where it's physically stored. If you have concerns about international transfers, contact us to discuss your specific situation.

Changes to This Privacy Policy

We review this policy periodically and update it when our practices change or when new regulations come into effect. The "Last Updated" date at the top shows when the most recent changes were made.

For minor updates (like clarifying existing practices), we'll simply post the revised policy here. If we make significant changes that affect how we use your information, we'll notify you by email at least 30 days before the changes take effect.

Continuing to use our services after we update this policy means you accept the changes. If you don't agree with the new terms, you can request data deletion and discontinue using our platform.

Additional Information for Canadian Residents

If you're in Canada, you have specific rights under PIPEDA and potentially provincial privacy laws like Quebec's Law 25 (which came into effect in 2023 and has ongoing implementation through 2025).

Your Rights Under Canadian Law

  • The right to know why your information is being collected before or at the time of collection
  • The right to access your personal information within a reasonable time frame
  • The right to challenge the accuracy and completeness of your information
  • The right to have incomplete or inaccurate information corrected
  • The right to withdraw consent for certain uses of your information
  • The right to file a complaint with the Privacy Commissioner of Canada

To file a complaint or get more information about your privacy rights, visit the Office of the Privacy Commissioner of Canada website or call 1-800-282-1376.

Contact Our Privacy Team

Flunk Xurm

Airport Rd, Kuujjuaq, Quebec J0M 1C0, Canada

Phone: +1 709-489-6619

Email: [email protected]

We typically respond to privacy inquiries within one business day. For urgent matters, please call us directly during business hours (Monday-Friday, 9:00 AM - 5:00 PM EST).