The legal entity behind CodeBerry is a Hungarian Ltd. Full name, address and contact details:CodeBerry School Kft.
We may collect personal information from you when you register on our website, sign up to receive our newsletter, submit an assignment, pay for a subscription, fill out a survey, use our live chat, provide us with feedback on our service, or write an email to our Customer Support team. In accordance with our transparency principle, we have provided a complete list of data we may collect and store that’s related to you:
We have an even more complete description of how your data is collected, stored and used.
It is called a Data Protection Impact Assessment (or just DPIA) document, and is required by GDPR.
But actually, we found it a very useful tool to keep track of our usage of your data. In it we list:
Please find our Data Protection Impact Assessment (DPIA) document here.
We do not sell or trade your data with third parties. There are some companies, however, who assist us in operating our service. We trust that all these third parties keep your information confidential. But in case you want to review their own data handling policies, we compiled a complete list for you of the third parties we are affiliated with and linked their data handling policies. We also described what information we are sharing with them and our reasons for it. Here is the complete list:
A note about links:We, or even other students, may link to third-party websites other than the ones listed above. These third-party sites have their own independent privacy policies, and we take no responsibility for their data handling policies. Nonetheless, we seek to protect the integrity of our service, so if you find a link on CodeBerry that points to a website that you have doubts about, please report it at firstname.lastname@example.org.
We may use the information we collect from you in the following ways:
We’ve also appointed a "Data Protection Officer" to ensure that this policy, the Data Protection Impact Assessment document, data-handling policies, processes, and documentation are all kept up-to-date.
If you are just a visitor} on our website, we won’t retain any of your personal information.
If you are a registered CodeBerry user and you have never begun a paid subscription, we will retain your data for 26 months.
If you are or were a paying CodeBerry student, we will retain your invoicing data for 10 years (due to legal obligations) and all other data for 26 months.
In accordance with GDPR, you may request that we (in email) "delete your personal information", and we will comply in 30 days or less. In such cases, we will also delete data stored by our affiliated third-parties. Note: Please understand that if you are or were a paying student, we are not legally allowed to delete your invoicing data for 10 years.
Also in accordance with GDPR, you may request that (in email) all the data we store about you be sent to you in a raw format. We reply to these requests in 30 days or less.
Third parties: Intercom, the only third party we share non-anonymous data with, stores user data for 9 months. Our user-related Google Analytics data is retained for 26 months.
Yes. Cookies are small files that are sent to you through your web browser and are saved on your computer (if you allow it). Cookies enable us to recognize your browser and remember you later. For example, cookies allow us to know if you are logged in to our service and what language you prefer to use on our website.
You can choose to have your computer notify you each time a cookie is sent, or you can even turn off all cookies. You can do this in your browser settings. Each browser is a little different, so look at your browser’s help menu to find out how to modify your cookie-related preferences.
If you turn cookies off, you won’t be able to log in to CodeBerry and webpages will be displayed in the language of the country you’re visiting the website from.
Yes. We honor “Do Not Track“ signals. We don’t track, plant cookies, or use advertising when a “Do Not Track“ (DNT) browser mechanism is in place.
Our data breach handling policies comply with both the Fair Information Practices in the US and GDPR in the EU.
Should a data breach occur, we will notify you about it via email within 72 hours of finding out about the breach or make a public announcement. If the leaked data was unencrypted and is thought to pose a danger to your rights or freedoms, we will also report the breach to the relevant regulatory body within 72 hours.
We also comply with the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
If you believe there is a problem with the way we are handling your data, and if you are an EU citizen, you have the right to file a complaint to the data protection supervisory authority of your country. To help you find your local supervisory authority, here is a list of such authorities in the EU for each country, as well as a central one at the very bottom of the list.
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.