Skilluminance Studio LLC (“Skilluminance,” “we,” “us,” or “our”) is committed to protecting the privacy and security of individuals who visit our website at www.skilluminance.com (the “Site”), purchase our digital products, enroll in our online courses, access our resources, read our blog content, or otherwise interact with our services (collectively, the “Services”). This Privacy Policy (“Policy”) describes how we collect, use, store, share, and protect personal information about you in accordance with applicable United States and international data protection laws, including the General Data Protection Regulation (“GDPR”), the California Consumer Privacy Act as amended by the California Privacy Rights Act (“CCPA/CPRA”), Michigan’s proposed Personal Data Privacy Act (Senate Bill 359), and other relevant privacy regulations.

This Policy applies to all information we collect through our Site, through email, text messages, and other electronic communications between you and Skilluminance, through our customer service interactions, through payment gateway services including but not limited to Apple Pay, Google Pay, Klarna, credit card processors, and debit card processors, and when you interact with our advertising and applications on third-party websites and services that link to this Policy. This Policy does not apply to information collected offline or through any other websites operated by third parties, including our affiliates and subsidiaries, unless those sites explicitly link to this Policy.

By accessing or using our Site or Services, you acknowledge that you have read, understood, and agree to be bound by this Policy and consent to our collection, use, and disclosure of your information as described herein. If you do not agree with the terms of this Policy, please do not access or use our Site or Services. Your continued use of our Site or Services following the posting of changes to this Policy means you accept those changes.

2. DATA CONTROLLER AND CONTACT INFORMATION

Skilluminance Studio LLC is the data controller of the personal information you provide through our Site and Services. We are a United States-based Michigan limited liability company with its principal place of business in the State of Michigan, selling digital products, online courses, resources, and blog content to customers globally. At this time, Skilluminance has elected not to appoint a Data Protection Officer or a representative in the European Union, as we are not currently required to do so under applicable law. For all privacy-related inquiries, complaints, or requests regarding your personal information, please contact us using the information provided in Section 20 of this Policy.

3. INFORMATION WE COLLECT

We collect several categories of information about our Site visitors and Services users to provide you with a superior online experience, process your transactions securely, and fulfill our contractual and legal obligations.

3.1 Personally Identifiable Information

“Personally Identifiable Information” or “Personal Information” refers to information that identifies, relates to, describes, or can be used to identify, contact, or locate a specific individual. We collect the following categories of Personal Information:

Identifiers: Name, email address, mailing address, telephone number, IP address, username, account credentials, device identifiers, and other similar identifiers
Commercial Information: Records of digital products purchased, courses enrolled in, payment information, transaction history, purchasing or consumption patterns, and shopping behavior
Financial Information: Payment card details (credit card, debit card), billing address, payment gateway identifiers (Apple Pay Device Account Number, Google Pay Virtual Account Number, Klarna account information), bank account information, and other financial information necessary to process transactions
Internet or Network Activity: Browsing history, search history, information regarding your interaction with our Site, emails, advertisements, or applications, log data, device information, browser type, operating system, referring/exit pages, date and time stamps, clickstream data, and cookies
Geolocation Data: General location information derived from your IP address (country, state, and city level), precise geolocation data if you grant permission through payment gateway applications
Professional or Employment Information: Job title, company name, business email address, department, and industry (if applicable) where provided
User-Generated Content: Information you provide when you correspond with us, post comments on our blog, submit reviews, respond to surveys or questionnaires, participate in promotions, or otherwise voluntarily submit information through our Site or Services
Biometric Information: When using Apple Pay or Google Pay, facial recognition data (Face ID), fingerprint data (Touch ID), or other biometric authentication data may be processed by your device and the payment gateway provider to authenticate transactions, but such biometric data is Not transmitted to or stored by Skilluminance
Inferences: Profiles reflecting your preferences, characteristics, behavior, attitudes, creditworthiness, and other inferences drawn from the categories listed above

We generally do not request or process categories of Personal Information considered “sensitive” under applicable EU regulations and laws, such as race, ethnicity, criminal record, sexual orientation, religious beliefs, genetic data, or health information. However, payment processing through certain gateways may involve the processing of financial account information and precise geolocation data, which may be considered sensitive under some state privacy laws. If we ever need to collect EU sensitive Personal Information beyond what is necessary for payment processing, we will obtain your explicit opt-in consent before collection or use, including if we disclose such information to third parties or use it for a purpose different than originally collected.

3.2 Non-Personally Identifiable Information

“Non-Personally Identifiable Information” refers to information that does not identify a specific individual by itself or in combination with other information. This may include aggregated data, anonymous usage statistics, general demographic information, and other data that has been de-identified or anonymized in accordance with applicable legal standards.

3.3 Technical Information

“Technical Information” includes information about your internet connection, the equipment and devices you use to access our Site, payment gateway application information, device operating system and version, mobile network information, and usage details.

4. HOW WE COLLECT INFORMATION

We collect information in the following ways:

4.1 Information You Provide Directly

We collect information that you provide directly to us when you:

Create an account or register for our Services
Purchase digital products or enroll in online courses
Fill in forms on our Site, including contact forms, newsletter subscription forms, checkout forms, and payment forms
Select and authenticate payment methods including Apple Pay, Google Pay, Klarna, credit cards, or debit cards
Request customer support or contact us by telephone, email, or web form
Participate in surveys, questionnaires, promotions, or contests
Post comments, reviews, or other user-generated content on our Site
Apply for a position with Skilluminance (including your resume/CV and cover letter)

The Personal Information we collect from you may be required to enter into a contract with Skilluminance, for us to perform our obligations under the contract, or to provide you with our products and services. If you refuse to provide such Personal Information or withdraw your consent to our processing, we may not be able to enter into the contract, process your payment, or fulfill our obligations to you.

4.2 Automatic Collection

As you navigate through and interact with our Site, we automatically collect certain information about your equipment, browsing actions, and patterns using cookies, web beacons, pixels, and other tracking technologies. This automatic data collection helps us improve our Site, deliver personalized content, estimate our audience size and usage patterns, store your preferences, speed up your searches, recognize you when you return, and detect fraudulent transactions. For more details about our use of cookies and tracking technologies, please see Section 7 of this Policy.

4.3 Information from Payment Gateway Providers

When you make a purchase using payment gateway services such as Apple Pay, Google Pay, Klarna, or traditional credit/debit card processors, we receive limited information from these providers necessary to complete your transaction. The specific information we receive depends on the payment method used:

Apple Pay: We receive a tokenized Device Account Number (not your actual card number), transaction authorization data, approximate location data for fraud prevention, and confirmation of successful biometric authentication (we do not receive your actual biometric data).

Google Pay: We receive a tokenized Virtual Account Number (not your actual card number), encrypted transaction data, transaction authorization data, and general device information for fraud prevention purposes.

Klarna: We receive transaction confirmation, payment status updates, limited purchaser identification data (name and email as provided by you), and fraud prevention data as necessary to complete installment or pay-later transactions.

Credit/Debit Card Processors: We receive payment authorization data, the last four digits of your card number, card type (Visa, Mastercard, etc.), expiration date, billing address, and transaction status information.

We do not store your full credit card number, debit card number, or complete payment credentials on our servers. Payment data is processed and stored by our PCI-DSS compliant payment gateway providers in encrypted form.

4.4 Information from Third Parties

We may receive information about you from third parties, including:

Your employer or educational institution (if you access our Services through a corporate or institutional relationship)
Payment processors, financial institutions, and payment gateway providers (Apple Inc., Google LLC, Klarna Bank AB, and card network providers)
Analytics providers and advertising partners
Social media platforms (if you interact with our social media presence or use social login features)
Data brokers and marketing partners
Credit reporting agencies and fraud prevention services (when processing payments through Klarna or assessing transaction risk)
Other users or third parties who send us correspondence about your activities on our Site

5. LEGAL BASIS FOR PROCESSING PERSONAL INFORMATION

We have a lawful basis for our processing of your Personal Information as required under the GDPR, Michigan’s proposed Personal Data Privacy Act, and other applicable data protection laws. If you are located in the European Economic Area, United Kingdom, Switzerland, or Michigan (when Michigan’s privacy law becomes effective), the processing of your Personal Information is lawful only if permitted under applicable data protection laws. Our lawful bases for processing include:

5.1 Consent

By using our Site and Services, you consent to our collection, use, and sharing of your Personal Information as described in this Policy. You may withdraw your consent at any time by contacting us as described in Section 20 of this Policy. Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal and will not affect processing that is based on any other lawful basis.

5.2 Legitimate Interests

We process your Personal Information as necessary for our legitimate interests, which are balanced against your rights and freedoms. Our legitimate interests include:

Facilitating communication between Skilluminance and you
Providing, maintaining, and improving our Site and Services
Processing payments and preventing fraudulent transactions
Detecting and correcting bugs and technical issues
Safeguarding our IT infrastructure and intellectual property
Detecting and preventing fraud, security threats, chargebacks, and other criminal activity
Promoting and marketing our business to interested customers
Developing new products and services
Conducting data analytics and research
Performing creditworthiness and risk assessments in connection with payment processing
Complying with payment network rules and payment gateway provider requirements

We do not process your Personal Information if your rights and freedoms outweigh our legitimate interests.

5.3 Contractual Necessity

We process your Personal Information to fulfill our obligations to you pursuant to our contract with you, your employer, or your educational institution to deliver our goods and services, process your payments, and provide customer support.

5.4 Legal Obligation

We process your Personal Information when required or permitted by law, including to:

Comply with payment card industry data security standards (PCI-DSS)
Comply with government inspections, audits, and other valid requests from government or public authorities
Respond to legal process such as subpoenas, court orders, and search warrants
Comply with tax, accounting, and financial reporting obligations
Prevent or detect fraud, attacks against our network, or other criminal and tortious activities
Protect our interests or pursue our legal rights and remedies
Defend litigation and manage complaints or claims
Comply with payment gateway provider terms and applicable payment network rules (Visa, Mastercard, American Express operating regulations)

6. HOW WE USE YOUR INFORMATION

Our primary goal in collecting Personal Information is to provide our visitors and customers with a superior online experience, process transactions securely, and deliver the products and services you request. We use the information we collect for the following purposes:

Service Delivery: To provide, operate, maintain, and deliver our Site, Services, digital products, and online courses to you
Transaction Processing: To process your purchases, payments, and enrollments through our payment gateway providers (Apple Pay, Google Pay, Klarna, credit/debit card processors), to fulfill your orders, to verify payment method eligibility, and to authenticate transactions
Account Management: To create and manage your account, verify your identity, authenticate your access, and maintain your payment method preferences
Fraud Prevention: To detect, investigate, prevent, and respond to fraudulent transactions, unauthorized access, chargebacks, payment disputes, money laundering, and other illegal activities in connection with payment processing
Customer Support: To respond to your inquiries, comments, questions, and requests, to provide customer service, and to resolve payment issues or disputes
Communication: To send you confirmations, payment receipts, invoices, technical notices, updates, security alerts, payment method expiration notices, and administrative messages
Marketing: To send you newsletters, promotional emails, and information about products, services, events, and special offers that may interest you (with your consent where required by law)
Personalization: To customize your experience, tailor content and recommendations to your interests, remember your preferences, and streamline your checkout experience by storing preferred payment methods
Analytics: To perform statistical analyses of customer behavior, measure relative customer interest in various areas of our Site, understand usage patterns for product development purposes, and analyze payment method preferences
Improvement: To improve the content, functionality, navigation, layout, and payment processing capabilities of our Site and Services, and to enhance users’ experiences
Research and Development: To develop new products, services, features, functionality, and payment options
Security: To monitor and protect the security and integrity of our Site, Services, payment systems, and business operations
Risk Assessment: To perform creditworthiness assessments, transaction risk analysis, and payment eligibility determinations (particularly for Klarna pay-later services)
Compliance: To comply with legal obligations, payment card industry standards (PCI-DSS), payment network rules, payment gateway provider requirements, tax regulations, accounting standards, and to respond to legal process
Business Operations: To conduct risk assessments, audits, payment reconciliation, and other internal business purposes
Dispute Resolution: To resolve disputes, manage complaints and claims, defend litigation, and respond to chargebacks or payment disputes

We may also use aggregated, de-identified, or anonymized information for any purpose, including sharing such information with third parties for analytics, research, and business intelligence purposes.

7. COOKIES AND TRACKING TECHNOLOGIES

Like many commercial websites, our Site utilizes standard technologies called “cookies,” “web beacons,” “pixels,” “clear GIFs,” and similar tracking technologies to collect information about how our Site is used and to facilitate payment processing.

7.1 What Are Cookies?

A “cookie” is a small data text file that a website stores on your computer’s hard drive or mobile device (if your web browser permits) that can later be retrieved to identify you. Cookies are designed to help a website recognize a user’s browser as a previous visitor and thus save and remember any preferences that may have been set while the user was browsing the site, including payment method preferences. A cookie cannot be read by a website other than the one that set the cookie, cannot retrieve any other data from your hard drive, cannot pass on a computer virus, and cannot capture your email address or full payment credentials.

7.2 How We Use Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

Recognize you when you return to our Site
Remember your preferences, settings, and saved payment methods
Authenticate your login and maintain your session
Facilitate secure payment processing and payment method authentication
Track which parts of our Site you have visited
Personalize your experience and tailor content to your interests
Analyze Site traffic and usage patterns
Measure the effectiveness of our marketing campaigns
Deliver targeted advertising based on your interests
Detect and prevent fraudulent transactions
Comply with payment gateway provider requirements for session management and security

We make limited use of cookies and tracking technologies in conjunction with our third-party service partners, including when you visit our Site, when you click through from a targeted email or newsletter, and when processing payments through payment gateway providers.

7.3 Types of Cookies We Use

Essential Cookies: Necessary for the operation of our Site, Services, and payment processing functionality (these cannot be disabled without affecting site functionality)
Functional Cookies: Enable enhanced functionality, personalization, and saved payment method preferences
Analytics Cookies: Help us understand how visitors use our Site and which payment methods are most popular
Advertising Cookies: Used to deliver relevant advertisements and track campaign effectiveness
Payment Security Cookies: Used by payment gateway providers to authenticate transactions, prevent fraud, and maintain secure sessions

7.4 Payment Gateway Cookies and Tokens

When you use Apple Pay, Google Pay, Klarna, or credit/debit card payment services through our Site, these payment gateway providers may place cookies and use tokenization technologies on your device to:

Store encrypted payment credentials securely on your device (never transmitted to or stored by Skilluminance in unencrypted form)
Generate unique transaction tokens for each purchase
Authenticate your identity through biometric data processed locally on your device
Prevent fraudulent transactions through device fingerprinting
Maintain payment session security
Remember your payment method preferences for faster checkout

Please review the privacy policies of Apple Pay, Google Pay, and Klarna for more information about their use of cookies and data collection practices.

7.5 Your Cookie Choices

Most web browsers are set to accept cookies by default. If you prefer, you can usually set your browser to remove or reject cookies; however, please note that if you disable or refuse cookies, some parts of our Site may become inaccessible or not function properly, and you may not be able to use certain payment methods such as Apple Pay or Google Pay that rely on cookies for security and authentication.

8. PAYMENT GATEWAY PROCESSING AND THIRD-PARTY PAYMENT SERVICES

We partner with third-party payment gateway providers to process payments securely and efficiently. This section describes how your payment information is collected, processed, and protected by these payment services.

8.1 Payment Methods We Accept

We accept the following payment methods through our Site:

Apple Pay: Mobile payment and digital wallet service by Apple Inc.
Google Pay: Mobile payment and digital wallet service by Google LLC
Klarna: Buy now, pay later service and payment solutions provided by Klarna Bank AB
Credit Cards: Visa, Mastercard, American Express, Discover, and other major credit cards
Debit Cards: Visa Debit, Mastercard Debit, and other major debit cards

Each payment method is processed by specialized payment gateway providers who maintain PCI-DSS compliance and implement industry-leading security measures.

8.2 Apple Pay Data Processing

When you use Apple Pay to make a purchase on our Site:

Information Apple Collects and Shares with Skilluminance:

Your first and last name (as registered with your Apple ID or payment card)
A tokenized Device Account Number (not your actual card number)
Transaction authorization and confirmation data
Approximate location data (city level) for fraud prevention
Confirmation that biometric authentication (Face ID or Touch ID) was successful (we do not receive your actual biometric data)

Information Apple Does Not Share with Skilluminance:

Your actual credit or debit card number
Your Face ID or Touch ID biometric data (processed locally on your device only)
Detailed transaction history from other merchants
Your Apple ID password or account credentials

Your Responsibilities:
To maintain the security of Apple Pay, you must keep your device secure, use a strong passcode, not share your device with others during payment sessions, and immediately report any lost or stolen devices to Apple.

8.3 Google Pay Data Processing

When you use Google Pay to make a purchase on our Site:

Information Google May Collect and Share with Skilluminance:

A redacted version of your phone number and email address for verification purposes (full information not shared)
A tokenized Virtual Account Number (not your actual card number)
Transaction authorization and confirmation data
General device information for fraud prevention
The last four digits of your payment card

Information Google Does Not Share with Skilluminance:

Your full phone number or email address
Your first and last name (unless you separately provide it during checkout)
Your physical address
Your complete transaction history from other merchants
Any other personal information you have provided to Google

8.4 Klarna Payment Processing

When you use Klarna to make a purchase on our Site (including “buy now, pay later,” installment payments, or direct payments):

Information Klarna Collects and Shares with Skilluminance:

Transaction confirmation and payment status
Payment method selected (pay now, pay in installments, pay later)
Your name and email address (as provided by you during checkout)
Payment completion status and any payment failures

Information You Provide Directly to Klarna:
When you create a Klarna account or select Klarna as your payment method, you provide information directly to Klarna, including:

Full name, email address, phone number, and billing address
Date of birth and government-issued identification (for identity verification and fraud prevention)
Bank account information or payment card details (if linking a payment source)
Purchase and payment history
Device information and IP address

Klarna’s Processing and Credit Assessment:
Klarna may perform creditworthiness assessments and identity verification by accessing credit reference agencies and fraud prevention databases. Klarna processes personal data to assess your eligibility for pay-later and installment services, to prevent fraud and money laundering, and to comply with applicable financial regulations.

Klarna’s Privacy Policy:
For complete information about how Klarna collects, uses, and protects your personal data, please review Klarna’s Privacy Policy at www.klarna.com/us/privacy or the applicable regional privacy policy for your jurisdiction.

8.5 Credit and Debit Card Processing

When you use a credit card or debit card to make a purchase on our Site:

Information We Collect:

Cardholder name
Card number (tokenized and encrypted during transmission)
Card expiration date
Card verification value (CVV) or card security code
Billing address
Card type (Visa, Mastercard, American Express, etc.)

Information Stored:
We do not store your complete card number or CVV on our servers. We retain only:

The last four digits of your card number (for your reference and customer service purposes)
Card type and expiration date (to notify you of upcoming expiration)
Billing address (for order fulfillment and fraud prevention)
Tokenized card identifier provided by our payment processor (for recurring transactions if authorized)

Payment Processor Security:
All credit and debit card transactions are processed by PCI-DSS Level 1 compliant payment processors. Your card information is encrypted using SSL/TLS protocols during transmission and tokenized for secure storage. Our payment processors employ fraud detection systems, 3D Secure authentication (Verified by Visa, Mastercard SecureCode), address verification service (AVS), and CVV verification.

Payment Network Rules:
We comply with the operating regulations of Visa, Mastercard, American Express, Discover, and other payment networks. These rules govern how we collect, store, and process cardholder data, how we handle chargebacks and disputes, and how we maintain security standards.

8.6 Payment Information We Do Not Collect or Store

To protect your security and privacy, Skilluminance does not collect, store, or have access to:

Your complete credit or debit card number (we receive only tokenized identifiers)
Your card CVV or security code (processed by payment gateway providers only)
Your biometric authentication data from Apple Pay or Google Pay (processed locally on your device)
Your Apple ID password or Google account password
Your Klarna account password or login credentials
Your bank account login credentials
Your PIN numbers for any payment method
Unencrypted payment credentials of any kind

8.7 Payment Gateway Provider Responsibilities

Our payment gateway providers (Apple Inc., Google LLC, Klarna Bank AB, and card processor partners) are independent data controllers or processors with their own privacy obligations. These providers are responsible for:

Securely storing payment credentials in encrypted form
Implementing tokenization and encryption technologies
Maintaining PCI-DSS compliance for card payments
Detecting and preventing fraudulent transactions
Complying with payment network rules and regulations
Providing transparent privacy notices to users
Responding to user requests regarding payment data
Complying with GDPR, CCPA, and other applicable data protection laws

We require our payment gateway providers to maintain appropriate security measures and to use your payment information only for the purposes of processing your transactions. Where required by law, we enter into written data processing agreements with payment service providers.

8.8 Your Payment Privacy Rights

You have the following rights regarding your payment information:

Right to Access: Request information about payment data we have collected
Right to Correct: Request correction of inaccurate payment or billing information
Right to Delete: Request deletion of stored payment information (subject to legal retention requirements for completed transactions)
Right to Manage: Add, update, or remove saved payment methods from your account
Right to Object: Object to certain uses of your payment data (such as for marketing purposes)
Right to Complain: Lodge a complaint with payment gateway providers or supervisory authorities regarding payment data processing

To exercise these rights with respect to data held by our payment gateway providers, you may need to contact those providers directly using their respective privacy contact information.

8.9 Payment Disputes and Chargebacks

If you dispute a transaction or initiate a chargeback through your payment method provider (bank, credit card company, Apple Pay, Google Pay, or Klarna), we may be required to share transaction information, order details, delivery confirmation, and communications with you to respond to the dispute. This information may be shared with your payment provider, your bank, the payment card networks, and dispute resolution services.

8.10 International Payment Processing

Payment gateway providers may process and store your payment information in multiple countries, including the United States and other jurisdictions where they maintain data centers. By using our payment services, you consent to the transfer of your payment information to these jurisdictions subject to the safeguards described in Section 10 of this Policy.

9. THIRD-PARTY DATA SHARING AND DISCLOSURE

Except as otherwise stated in this Policy, we do not sell, trade, or rent your Personal Information to others. We do not sell your Personal Information to third parties as defined by the CCPA. We may disclose or share your Personal Information with third parties in the following circumstances:

9.1 Service Providers and Contractors

We share Personal Information with third-party contractors, service providers, and agents who perform services on our behalf, including:

Payment processors and financial institutions (including Apple Inc., Google LLC, Klarna Bank AB, credit card processors, debit card networks, payment gateways, and merchant services providers)
Hosting and cloud storage providers
Email and communication service providers
Analytics and data analysis providers
Marketing and advertising partners
Customer relationship management (CRM) platforms
Security and fraud prevention services
Customer support and helpdesk platforms
Tax and accounting service providers
Legal and compliance consultants

These third parties are contractually obligated to use your Personal Information only to provide the services requested by you, your employer, your educational institution, or us, and are prohibited from using your Personal Information for their own purposes. Where required by applicable law, including the GDPR, Michigan’s Personal Data Privacy Act, and Privacy Shield principles, we enter into written agreements with these service providers requiring them to provide the same level of protection as required by law and limiting their use of data to the specified services.

9.2 Payment Gateway Providers (Apple Pay, Google Pay, Klarna, Card Processors)

When you select a payment method, we share the minimum necessary information with the applicable payment gateway provider to process your transaction:

Information Shared with Apple Pay:

Your name (as provided during checkout)
Order total and itemized purchase information
Shipping address (for physical goods)
Transaction identifier
Merchant identifier

Information Shared with Google Pay:

Your name (as provided during checkout)
Order total and itemized purchase information
Shipping address (for physical goods)
Transaction identifier

Information Shared with Klarna:

Your full name, email address, phone number, and billing address
Order details, including items purchased, prices, and total amount
Shipping address and delivery preferences
Transaction date and time
Order number and transaction identifier
IP address and device information (for fraud prevention)

Information Shared with Credit/Debit Card Processors:

Cardholder name
Card number (encrypted during transmission, tokenized by processor)
Card expiration date and CVV (transmitted securely, not stored by us)
Billing address
Order total and description
Transaction date and time
IP address and device information (for fraud prevention)

Payment gateway providers may use this information to process your payment, prevent fraud, comply with payment network rules, assess creditworthiness (for Klarna), and provide customer support. Payment gateway providers are independent data controllers with their own privacy policies and obligations.

9.4 Marketing Partners (With Your Consent)

From time to time and with your explicit consent where required by law, we may disclose limited information (such as names and postal addresses) to direct marketing companies for trade or rental purposes. We do not share your payment information with marketing partners. You may opt out of this type of disclosure at any time using the methods described in Section 13 of this Policy.

9.5 Legal Requirements and Protection of Rights

We may disclose Personal Information when required by law or legal process, including:

To comply with court orders, subpoenas, search warrants, or other valid legal requests
To cooperate with law enforcement investigations, national security requests, and government audits
To respond to requests from government or public authorities (including requests from the Michigan Attorney General, Federal Trade Commission, or other regulatory authorities)
To enforce or apply our Terms of Service, payment terms, and other agreements
To protect the rights, property, or safety of Skilluminance, our customers, or others
To detect, prevent, or investigate fraud, security threats, payment fraud, money laundering, identity theft, or illegal activities
To defend against legal claims and manage disputes, including payment disputes and chargebacks
To comply with payment card industry requirements, payment network rules, and payment gateway provider obligations

We fully cooperate with law enforcement agencies in identifying those who use our Services for illegal activities and reserve the right to report to law enforcement any activities that we in good faith believe to be unlawful.

9.6 Business Transfers

In the event of a merger, consolidation, acquisition, sale or transfer of all or substantially all of the assets or business of Skilluminance, reorganization, bankruptcy, or other business transaction, one of the assets that would generally be transferred is the information we collect from our customers (excluding full payment credentials, which are held by payment gateway providers). However, the use of this information by any successor entity would still be governed by the terms of this Policy as amended from time to time, and you will continue to have the right to opt out of sharing your information with third parties and to exercise your privacy rights under applicable law.

9.7 Aggregated and De-identified Data

We may provide aggregated statistics and de-identified information about our customers, sales, traffic patterns, payment method preferences, and related Site information to third parties. This information does not include Personal Information and cannot be used to identify you individually.

9.8 Third-Party Accountability

We take reasonable and appropriate steps to ensure that third-party agents and service providers process Personal Information in accordance with our data protection obligations and applicable law, and to stop and remediate any unauthorized processing. Under certain circumstances, particularly with respect to EU Personal Information transferred to third parties and payment data shared with payment processors, we may remain liable for the acts of our third-party service providers who perform services on our behalf if they process information in a manner inconsistent with applicable privacy laws.

10. INTERNATIONAL DATA TRANSFERS AND CROSS-BORDER PROCESSING

Skilluminance is based in Michigan, United States, and our Site and Services are accessible to users worldwide. Your Personal Information may be transferred to, stored, and processed in the United States and other countries where we, our affiliates, or our service providers (including payment gateway providers) maintain facilities.

10.1 Transfers from the EEA, UK, and Switzerland

If you are located in the European Economic Area (“EEA”), United Kingdom, or Switzerland, we may transfer your Personal Information outside of your country, including to the United States, which may not provide an equivalent level of data protection as your home jurisdiction. 10.2 Payment Gateway International Transfers

Payment gateway providers (Apple Inc., Google LLC, Klarna Bank AB, and card processors) may transfer payment data internationally in accordance with their own privacy policies and applicable law:inplp+3

Apple Pay: Apple Inc. processes payment data in the United States and other countries where Apple maintains data centers, subject to Apple’s global privacy commitments and applicable transfer mechanismsapple
Google Pay: Google LLC processes payment data globally, including in the United States, subject to Google’s Privacy Policy and applicable transfer mechanismsprivacy
Klarna: Klarna Bank AB, a Swedish bank regulated under EU law, may transfer payment data to service providers outside the EEA subject to appropriate safeguards including Standard Contractual Clausesklarna+1
Card Processors: Credit and debit card processors may transfer data internationally as necessary to process transactions through global payment networks, subject to PCI-DSS requirements and applicable data protection lawsstripe

10.3 Accountability and Liability

Skilluminance is not liable under applicable Data Privacy Framework principles if third-party service providers process EU citizens’ Personal Information in a manner inconsistent with the Framework Principles, except where we are not responsible for the event giving rise to the damage.

11. DATA SECURITY MEASURES

The importance of security for all Personal Information associated with our customers is of utmost concern to us. We employ industry-recognized security technologies and procedures to protect the security of the information you submit to us, including specialized security measures for payment information.

11.1 General Security Practices

Our security practices include:

Access Controls: Limiting access to Personal Information to authorized personnel only on a need-to-know basis
Network Security: Implementing network, application, database, and platform security measures including firewalls, intrusion detection systems, and network segmentation
Encryption: Encrypting sensitive Personal Information stored on any media and transmitted over public or wireless networks using Secure Sockets Layer (SSL)/Transport Layer Security (TLS) technology with minimum 256-bit encryption
Secure Transmission: Securing information transmission, storage, and disposal through encrypted channels and secure destruction protocols
Authentication: Implementing multi-factor authentication and access controls within media, applications, operating systems, and equipment
Data Segregation: Segregating Personal Information so that it is not commingled with other types of information, and segregating payment data in accordance with PCI-DSS requirements

All customer data we collect is protected against unauthorized access by physical and technological security means.

11.2 Payment Data Security

We implement enhanced security measures specifically for payment information in accordance with industry standards and payment network requirements:

PCI-DSS Compliance:
We comply with the Payment Card Industry Data Security Standard (PCI-DSS), which requires:

Maintaining a secure network and systems
Protecting cardholder data through encryption and tokenization
Maintaining a vulnerability management program
Implementing strong access control measures
Regularly monitoring and testing networks
Maintaining an information security policy

Tokenization:
Credit card numbers, debit card numbers, and payment credentials are tokenized (replaced with non-sensitive equivalent values) by our payment gateway providers immediately upon receipt. We store only tokenized values, never complete payment credentials.

Encryption:
All payment data transmitted to or from our Site is encrypted using SSL protocols with minimum 256-bit encryption. Payment gateway providers use AES-256 encryption (the strongest commercial encryption standard) for data at rest.

Secure Element Technology:
Apple Pay uses a dedicated hardware chip called the Secure Element on your device to store encrypted payment credentials, isolated from the device operating system and inaccessible to other apps. Google Pay uses similar hardware-backed security on compatible Android devices.

Payment Gateway Provider Security:
Our payment gateway providers implement:

PCI-DSS Level 1 certification (the highest security level)
Advanced fraud detection and prevention systems
Machine learning algorithms to identify suspicious transactions
Real-time transaction monitoring
Two-factor authentication for account access
Regular security audits by independent qualified security assessors
Incident response and breach notification procedures

No Storage of Sensitive Authentication Data:
We do not store and are prohibited from storing card verification values (CVV/CVC), full magnetic stripe data, PIN numbers, or biometric authentication data.

11.3 Your Responsibility

The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Site, you are responsible for keeping this password confidential. We urge you to:

Use a strong, unique password (at least 12 characters with mixed case, numbers, and symbols)
Not share your password with anyone
Not reuse passwords across multiple sites
Log out of your account when using shared or public devices
Be careful about providing information in public areas of the Site
Keep your device secure with a passcode, biometric lock, or other security feature
Not share your device with others during active payment or account sessions
Immediately report any unauthorized transactions or suspicious activity
Keep your payment method applications (Apple Pay, Google Pay) updated with the latest security patches
Review your transaction history and payment method statements regularly

11.5 Limitations

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your Personal Information using the measures described above, we cannot guarantee the absolute security of your Personal Information transmitted to our Site. Any transmission of Personal Information is at your own risk, and we are not responsible for circumvention of any privacy settings or security measures contained on the Site. No system is 100% secure, and determined attackers may find vulnerabilities despite our best efforts.

12. DATA RETENTION AND DELETION

We retain Personal Information for as long as necessary to fulfill the purposes for which it was collected, to provide our Services, to process payments and resolve payment disputes, to comply with our legal and regulatory obligations, to resolve disputes, to enforce our agreements, and for other legitimate business purposes.

12.1 Retention Periods

Our retention periods are based on business needs, legal requirements, and payment network rules:

Account Information: Retained for the duration of your account and for a reasonable period thereafter (typically 7 years for tax purposes)
Transaction Records: Retained for as long as required for tax, accounting, audit, payment processing, chargeback resolution, and legal purposes (minimum 7 years for tax records under federal and Michigan law; up to 10 years for payment disputes and chargebacks under payment network rules)
Payment Information: Tokenized payment credentials retained while you maintain an active account and have authorized storage for future purchases; deleted upon account closure or at your request (subject to retention of transaction history for legal and accounting purposes)
Payment Dispute Records: Retained for the duration of the dispute resolution process plus applicable statute of limitations period (typically 4-6 years under Michigan law)
Marketing Communications: Retained until you opt out or withdraw consent, plus a suppression period to honor your opt-out request
Analytics Data: Typically retained in aggregated or anonymized form indefinitely for business intelligence purposes
Security and Fraud Prevention Data: Retained for the period necessary to prevent fraud, protect against security threats, and comply with law enforcement investigations (typically 5-7 years)
Legal Requirements: Retained as required by applicable laws, regulations, court orders, and payment network operating rules

12.2 Deletion

Upon your request, regulatory requirement, or when Personal Information is no longer necessary for the purposes for which it was collected, we will delete or anonymize your Personal Information in accordance with applicable law. However, we may retain certain information as permitted or required by law, including:

Information necessary to comply with legal obligations (including tax laws, payment processing regulations, and anti-money laundering requirements)
Information necessary to resolve disputes and enforce agreements (including payment disputes, chargebacks, refund claims, and contractual obligations)
Information necessary to comply with payment network rules and chargeback procedures
Information stored in backup systems, which will be retained for the periods set forth in our disaster recovery policies (typically 30-90 days) and then permanently deleted
De-identified or anonymized information that cannot be used to identify you
Aggregated analytics and statistical data

We cannot completely delete your Personal Information as some data may rest in previous backups, which are retained for the periods set forth in our disaster recovery policies. Backup data is overwritten and permanently deleted in accordance with our backup retention schedule.

12.3 Payment Gateway Provider Retention

Payment gateway providers (Apple Pay, Google Pay, Klarna, and card processors) maintain their own data retention policies. To request deletion of payment information held by these providers, you may need to contact them directly:

Apple Pay: Manage through your Apple ID account settings or contact Apple Support
Google Pay: Manage through your Google Account settings or contact Google Support
Klarna: Contact Klarna customer service or exercise your rights through Klarna’s privacy portal
Card Processors: Contact your card issuer (bank or credit card company) directly

We will delete tokenized payment credentials and payment method references from our systems upon your request, but payment gateway providers and card issuers maintain independent records of your payment history in accordance with their own policies and legal obligations.

13. YOUR PRIVACY RIGHTS

Applicable data protection laws provide you with certain rights regarding our processing of your Personal Information. The specific rights available to you depend on your location and the applicable laws, as detailed in Sections 21, 22, and 23 for EEA/UK/Swiss, California, and Michigan residents, respectively.

13.1 General Rights

Subject to applicable law, you may have the following rights:

Right to Access: You can review and obtain a copy of the Personal Information we hold about you. Please note that if you request access to your Personal Information other than through our Site, you may be charged a reasonable fee subject to a maximum set by applicable law (currently $10 under Michigan law for paper copies).

Right to Correct: You can request that we correct inaccurate or incomplete Personal Information. You may also update your account information directly through your account settings on our Site.

Right to Delete/Erasure: You can request that we delete your Personal Information. We cannot delete your Personal Information except by also deleting your user account, and we will only delete your account when we no longer have a lawful basis for retaining the information or after a final determination that your Personal Information was unlawfully processed. We may not accommodate a deletion request if we believe it would violate any law or legal requirement (including payment processing, tax, and accounting regulations), if we have another lawful basis for retaining the information, or if it would cause the information to be incorrect. Transaction history and payment records may be retained even after account deletion as required by law.

Right to Restrict Processing: You have the right to restrict our processing of your Personal Information under certain circumstances, particularly if you contest its accuracy, if the processing is determined to be unlawful, or if we no longer need your Personal Information for processing but have retained it as permitted by law.

Right to Data Portability: To the extent your Personal Information is processed based on your consent or through automated means, you have the right to request that we provide you a copy of, or access to, all or part of such Personal Information in a structured, commonly used, and machine-readable format (such as CSV or JSON). You also have the right to request that we transmit this Personal Information to another controller when technically feasible.

Right to Withdraw Consent: Where our processing is based on your consent, you may withdraw your consent at any time. Withdrawing consent will not affect the lawfulness of processing based on consent before withdrawal and will not affect processing based on any other lawful basis (such as contractual necessity or legal obligation).

Right to Object: You have the right to object to our processing of your Personal Information for certain purposes, including direct marketing, profiling for marketing purposes, and processing based on legitimate interests. If you object to processing for direct marketing purposes, we will stop such processing within 30 days of receipt of your request.

Right to Complain: You have the right to lodge a complaint with the applicable supervisory authority in your country or state. However, before doing so, we request that you contact us directly to give us an opportunity to resolve your concerns at grow@skilluminance.com.

13.2 Marketing and Newsletter Opt-Out

We may offer free electronic newsletters and promotional emails about our Services, products, and special offers. You may opt out of receiving newsletters and promotional emails at any time by:

Clicking the “unsubscribe” link included in each marketing email
Updating your communication preferences in your account settings
Contacting us using the information in Section 20 of this Policy
For text message marketing, replying “STOP” to any promotional text message

Once we have processed your opt-out request (typically within 10 business days), we will not send you promotional emails or text messages, but we may still send you transactional and administrative communications related to your account, purchases, payments, security alerts, and other service-related matters.

13.3 Cookie Opt-Out

You may manage cookie preferences through your browser settings or through cookie consent management tools on our Site. Please see Section 7.5 for detailed instructions on managing cookies.

13.4 Payment Information Rights

You may manage your saved payment methods, update payment information, or remove payment methods from your account at any time through your account settings. For payment information held by Apple Pay, Google Pay, or Klarna, you may need to manage your settings directly with those providers.

13.5 How to Exercise Your Rights

You may exercise any of the rights described above by:

Logging into your account and managing your settings directly
Contacting us through any of the methods detailed in Section 20 of this Policy
For payment-specific rights, contacting the applicable payment gateway provider directly

If you contact us to exercise any rights, we may ask you for additional information to verify your identity, including government-issued identification, account credentials, recent transaction details, or answers to security questions. We reserve the right to limit or deny your request if you have failed to provide sufficient information to verify your identity or to satisfy our legal and business requirements. We will respond to your request within the timeframes required by applicable law (typically 30-45 days, with possible extensions as permitted).

14. CHILDREN’S PRIVACY AND AGE RESTRICTIONS

Our Site and Services are not intended for children under the age of 16, and we do not knowingly collect Personal Information from children under 16. The Children’s Online Privacy Protection Act (“COPPA”) imposes certain requirements on websites directed toward children under 13 that collect information on those children.

It is our policy not to collect Personal Information from any person under the age of 16, and individuals under 16 are not permitted to use our Site or Services or submit any Personal Information to us, including name, address, telephone number, email address, or any screen name or username. If we learn that we have inadvertently collected Personal Information from a child under 16, we will attempt to notify the child’s parent or guardian and delete such information from our records, unless the child’s parent or guardian consents to our maintaining such information.

If you believe we might have any information from or about a child under 16, please contact us immediately using the information in Section 20 of this Policy.

15. THIRD-PARTY WEBSITES AND SERVICES

Our Site may contain links to other websites, applications, and services operated by third parties that are not owned or controlled by Skilluminance. This Policy does not apply to the privacy practices of those third-party sites. Other sites accessible through our Site have their own privacy policies and data collection, use, and disclosure practices.

Please be aware that third-party websites may send their own cookies or tracking technologies to users, collect data, or solicit Personal Information. We are not responsible for the policies, practices, content, or actions of third parties, including business partners, affiliates, advertisers, and social media platforms. We cannot control the collection and use of information by these third parties.

We also may have co-branded websites maintained by us in connection with one or more third-party business partners. When you submit information to one of these co-branded sites, you may be submitting it to both Skilluminance and our third-party business partners. These co-branded sites may contain privacy policies that differ from this Policy.

We encourage you to carefully review the privacy policies of any third-party sites accessible from our Site and any co-branded websites not covered by this Policy before providing any Personal Information. You should contact third-party sites and advertisers directly if you have any questions about their use of information they collect.

16. AUTOMATED DECISION-MAKING

Our processing of your Personal Information may include automated decision-making. Personal Information that you provide may be used by Skilluminance in establishing your eligibility for discounts, personalized content recommendations, and customized services using algorithms and other automatic decision-making processes. These automated processes help us provide you with a more tailored and efficient experience. If you have concerns about automated decision-making, you may contact us using the information in Section 20 to request review of decisions that significantly affect you.

17. CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify, update, or change this Policy at any time to reflect changes in our practices, technologies, legal requirements, and other factors. If we make changes to this Policy, the revised Policy will be posted on this page with an updated “Effective Date” and “Last Updated” date at the top.

If we make material changes to how we treat our users’ Personal Information, we will notify you through a prominent notice on our Site’s homepage, by email (if you have provided your email address), or through other appropriate communication channels as required by law. The date this Policy was last revised is identified at the top of the page.

You are responsible for ensuring we have an up-to-date, active, and deliverable email address for you, and for periodically visiting our Site and reviewing this Policy to check for any changes. Your continued use of our Site or Services after we post changes to this Policy constitutes your acceptance of those changes. If you do not agree to the modified Policy, you should discontinue your use of our Site and Services.

18. LIMITATION OF LIABILITY AND INDEMNIFICATION

18.1 Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL SKILLUMINANCE STUDIO LLC, ITS OWNERS, OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, AFFILIATES, SUBSIDIARIES, SUCCESSORS, OR ASSIGNS (COLLECTIVELY, THE “SKILLUMINANCE PARTIES”) BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, PUNITIVE, OR EXEMPLARY DAMAGES, INCLUDING BUT NOT LIMITED TO DAMAGES FOR LOSS OF PROFITS, GOODWILL, USE, DATA, OR OTHER INTANGIBLE LOSSES, ARISING OUT OF OR RELATING TO YOUR ACCESS TO OR USE OF, OR INABILITY TO ACCESS OR USE, OUR SITE OR SERVICES, OR ANY CONDUCT OR CONTENT OF ANY USER OR THIRD PARTY ON THE SITE, INCLUDING WITHOUT LIMITATION ANY DEFAMATORY, OFFENSIVE, OR ILLEGAL CONDUCT OF OTHER USERS OR THIRD PARTIES, WHETHER BASED ON WARRANTY, CONTRACT, TORT (INCLUDING NEGLIGENCE), STATUTE, OR ANY OTHER LEGAL THEORY, AND WHETHER OR NOT THE SKILLUMINANCE PARTIES HAVE BEEN INFORMED OF THE POSSIBILITY OF SUCH DAMAGE.

THE AGGREGATE LIABILITY OF THE SKILLUMINANCE PARTIES TO YOU FOR ALL CLAIMS ARISING OUT OF OR RELATING TO THE USE OF OR INABILITY TO USE ANY PORTION OF THE SITE OR SERVICES OR OTHERWISE UNDER THIS POLICY, WHETHER IN CONTRACT, TORT, OR OTHERWISE, IS LIMITED TO THE GREATER OF: (A) THE AMOUNT YOU HAVE PAID TO SKILLUMINANCE FOR ACCESS TO AND USE OF THE SITE AND SERVICES IN THE 12 MONTHS PRIOR TO THE EVENT OR CIRCUMSTANCE GIVING RISE TO THE CLAIM, OR (B) $100.

EACH PROVISION OF THIS POLICY THAT PROVIDES FOR A LIMITATION OF LIABILITY, DISCLAIMER OF WARRANTIES, OR EXCLUSION OF DAMAGES IS INTENDED TO AND DOES ALLOCATE THE RISKS BETWEEN THE PARTIES UNDER THIS POLICY. THIS ALLOCATION IS AN ESSENTIAL ELEMENT OF THE BASIS OF THE BARGAIN BETWEEN THE PARTIES. EACH OF THESE PROVISIONS IS SEVERABLE AND INDEPENDENT OF ALL OTHER PROVISIONS OF THIS POLICY. THE LIMITATIONS IN THIS SECTION WILL APPLY EVEN IF ANY LIMITED REMEDY FAILS OF ITS ESSENTIAL PURPOSE.

18.2 User Indemnification

You agree to indemnify, defend, and hold harmless the Skilluminance Parties from and against any and all claims, liabilities, damages, losses, costs, expenses, fees (including reasonable attorneys’ fees and court costs) that arise from or relate to: (a) your use of or access to the Site or Services; (b) your violation of this Policy or any other Skilluminance terms, policies, or agreements; (c) your violation of any third-party right, including without limitation any intellectual property right, publicity, confidentiality, property, or privacy right; (d) any claim that your use of the Site or Services caused damage to a third party; (e) your provision of inaccurate, incomplete, or misleading information to Skilluminance; (f) your failure to comply with applicable laws, regulations, or legal obligations; or (g) any other party’s access and use of the Site or Services with your account credentials or as a result of your failure to maintain the confidentiality of your account information.

18.3 Data Protection Indemnification

You agree to indemnify and hold harmless the Skilluminance Parties from and against all claims, costs, damages, losses, liabilities, and expenses (including reasonable attorneys’ fees and costs) arising out of or in connection with: (a) your failure to obtain necessary consents from third parties (including customers, employees, agents, or subcontractors) before providing their Personal Information to Skilluminance; (b) your failure to comply with applicable data protection laws and regulations; (c) any third-party claim alleging loss of data or damages resulting from your provision of inaccurate or unlawful information to Skilluminance; or (d) your breach of any data protection obligations under this Policy or applicable law.

18.4 Process

Skilluminance reserves the right to assume the exclusive defense and control of any matter otherwise subject to indemnification by you, in which event you will cooperate with Skilluminance in asserting any available defenses. You will not settle any claim that affects Skilluminance without Skilluminance’s prior written approval.

18.5 No Waiver

The failure of Skilluminance to enforce any right or provision of this Policy will not be deemed a waiver of such right or provision. These limitations of liability and indemnification provisions shall survive the termination or expiration of this Policy and your use of the Site and Services.

19. GOVERNING LAW AND JURISDICTION

This Policy and any disputes arising out of or related to this Policy or your use of the Site or Services shall be governed by and construed in accordance with the laws of the United States and the State of Michigan, without regard to its conflict of law principles. Any legal action or proceeding arising under this Policy will be brought exclusively in the federal or state courts located in Oakland County, Michigan, US, and the parties hereby irrevocably consent to the personal jurisdiction and venue therein.

Notwithstanding the foregoing, with respect to individuals located in the European Economic Area, United Kingdom, or Switzerland, nothing in this section shall deprive you of the protections afforded to you under the GDPR or other applicable data protection laws, including your right to lodge a complaint with your local supervisory authority.

20. CONTACT INFORMATION FOR PRIVACY CONCERNS

If you have any questions, comments, concerns, or requests regarding this Policy, our privacy practices, your Personal Information, or your dealings with our Site or Services, please contact us at:

Skilluminance Studio LLC
Email: grow@skilluminance.com
Website Contact Form: www.skilluminance.com/contact

We will respond to your inquiry within a reasonable timeframe as required by applicable law.

21. ADDITIONAL DISCLOSURES FOR EEA, UK, AND SWISS RESIDENTS

If you are a resident of the European Economic Area (“EEA”), United Kingdom (“UK”), or Switzerland, the following additional provisions apply to you.

21.1 Data Transfers

In order to provide our Site, products, and services to you, we may transfer your Personal Information outside of your country of residence, including to the United States and other countries that may not provide an equivalent level of data protection. By using our Site and Services, you acknowledge and consent to the storage and processing of Personal Information outside the EEA, UK, or Switzerland, subject to the appropriate safeguards described in Section 9 of this Policy.

21.2 GDPR Rights

Under the GDPR, you have the following rights:

Right to be informed about the collection and use of your personal data
Right to access your personal data
Right to correct errors in your personal data
Right to erasure of your personal data (the “right to be forgotten”)
Right to restrict processing of your personal data
Right to object to processing of your personal data, including for direct marketing purposes
Right to data portability (to export your personal data)
Right not to be subject to automated decision-making, including profiling

To exercise these rights, please contact us using the information in Section 20.

21.3 Dispute Resolution

In compliance with the EU-US Privacy Shield Principles (and successor frameworks), Skilluminance does not commit to resolve complaints about your privacy and our collection or use of your Personal Information. Individuals in the EEA, UK, or Switzerland with questions or concerns about the use of their Personal Information should first contact us as set forth in Section 20.

21.4 Supervisory Authority

You waive the right to lodge a complaint with your local data protection supervisory authority if you believe your rights under the GDPR have been violated.

21. ADDITIONAL DISCLOSURES FOR CALIFORNIA RESIDENTS

If you are a California resident, the California Consumer Privacy Act of 2018 (as amended by the California Privacy Rights Act of 2020) (“CCPA/CPRA”) provides you with additional rights regarding your Personal Information.

21.1 Categories of Personal Information Collected

We may collect the following categories of personal information as defined by the CCPA:

Identifiers: Name, email address, mailing address, telephone number, IP address, username, and other similar identifiers
California Customer Records (Cal. Civ. Code § 1798.80(e)): Name, contact information, financial information, and payment card details
Commercial Information: Records of products purchased, courses enrolled in, and purchasing patterns
Internet or Network Information: Browsing history, search history, log and analytics data, device information, and interaction with our Site
Geolocation Data: General location information derived from IP address
Professional or Employment Information: Job title, company name, business email address, and department
Sensory Information: Audio and video recordings of customer service interactions (where permitted)
Inferences: Profiles reflecting preferences, characteristics, behavior, and attitudes

We do not collect sensitive personal information as defined by the CPRA except as necessary for legitimate business purposes with appropriate safeguards.

21.2 Sources of Personal Information

We collect personal information directly from you, from your browser or device, from third parties you permit to share your information, and from third parties that share public information about you, as described in Section 4 of this Policy.

21.3 Purposes for Collecting and Using Personal Information

We use the personal information we collect for the business and commercial purposes described in Section 6 of this Policy.

21.4 Categories of Third Parties with Whom We Share Personal Information

We share personal information with the following categories of third parties for business purposes:

Service providers and contractors
Payment processors and financial institutions
Analytics providers
Marketing and advertising partners
Business partners and affiliates
Government authorities and law enforcement (as required by law)
Successors in the event of a business transfer

21.5 We Do Not Sell Your Personal Information

We do not sell your personal information to third parties as defined by the CCPA/CPRA. We do not sell the personal information of minor consumers under the age of 16.

21.6 California Privacy Rights

As a California resident, you have the following rights under the CCPA/CPRA:

Right to Know/Access: You have the right to request that we disclose to you:

The categories of personal information we have collected about you
The categories of sources from which the personal information was collected
Our business or commercial purpose for collecting or selling personal information
The categories of third parties with whom we share personal information
The specific pieces of personal information we have collected about you

Right to Delete: You have the right to request deletion of your personal information that we have collected from you, subject to certain exceptions.

Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.

Right to Opt-Out: You have the right to opt out of the sale or sharing of your personal information. However, we do not sell or share your personal information.

Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of sensitive personal information to that which is necessary to perform services or provide goods reasonably expected by an average consumer.

Right to Non-Discrimination: You have the right to be free from discrimination for exercising your CCPA/CPRA rights.

21.7 How to Exercise Your California Rights

To exercise your CCPA/CPRA rights, please submit a request by contacting us using the information in Section 20 of this Policy. We will need to verify your identity before processing your request. We will respond to verifiable consumer requests within 45 days as required by law.

You may designate an authorized agent to make a request on your behalf. We will require written authorization from you confirming the authorized agent’s authority before processing the request.

21.8 Data Retention

If a business retains personal information for longer than 12 months, California law requires that we provide consumers with a method to request information collected prior to the 12-month period. You may request personal information we have collected about you going back to October, 25, 2025, by specifying a date range or requesting all personal information we have collected.

21.9 Financial Incentives

We do not offer financial incentives or price or service differences in exchange for the retention, sale, or sharing of your personal information.

END OF PRIVACY POLICY

IMPORTANT NOTICE: This Privacy Policy is designed to provide maximum legal protection for Skilluminance Studio LLC, its owners, affiliates, and business assets.