Privacy Policy
This policy explains what information Aabha AI Academy collects through this website, why we use it, who may process it for us, and the choices available to you.
1. Who we are
Aabha AI Academy provides AI learning resources, planned courses, and information about training for organisations. Aabha AI Academy is responsible for the personal information described in this policy.
The most reliable way to contact us about privacy is through the Contact form with the subject line Privacy request.
2. Information we collect
Information you provide
- Your email address and message when you submit the Contact form.
- Your name and subject line if you choose to provide them.
- Course interests, learning goals, team context, timing, or other details included in your message.
- Further correspondence if we reply and you continue the conversation.
Information recorded automatically
- Technical request data such as IP address, date and time, requested page, browser or device information, referrer, and security events.
- Contact-form metadata such as the source page, submission time, IP address, browser, device type, and submission status.
Do not submit passwords, payment-card details, government identifiers, health information, confidential employer data, or other sensitive information through the Contact form.
3. Why we use information
- To read, route, and respond to enquiries that you ask us to handle.
- To record interest in a course, resource, partnership, or corporate-training discussion.
- To operate, secure, troubleshoot, back up, and improve the website.
- To prevent abuse, investigate security events, and comply with applicable obligations.
- To establish, exercise, or defend legal claims where necessary.
Depending on the applicable law and context, these activities may be based on responding to your request before a possible service relationship, our legitimate interests in operating and protecting the website, compliance with law, or consent where consent is specifically requested. Submitting an enquiry does not subscribe you to marketing.
4. Cookies and analytics
At the effective date above, public pages do not load an advertising or audience-analytics service, and anonymous page requests do not set a non-essential cookie. WordPress and security tools may use strictly necessary cookies in limited circumstances, such as administrator sign-in, security checks, or saving an authenticated session.
If we introduce non-essential analytics, advertising, or similar cookies later, we will update this policy and add an appropriate consent mechanism before using them where required.
5. Who may receive information
We do not sell personal information or share it for third-party advertising. We may make information available to service providers only where needed to operate the website or respond to you, including:
- Website hosting, database, cache, and backup infrastructure providers.
- Cloudflare for content delivery, network security, and abuse prevention.
- WordPress form and security tools, including Fluent Forms and Wordfence.
- Email-delivery and mailbox providers when a message or reply is sent.
- Dropbox for encrypted or access-controlled operational recovery copies.
- Professional advisers, regulators, courts, or authorities where disclosure is necessary and lawful.
Some providers may process information in countries other than your own. Where applicable law requires it, we use appropriate contractual or organisational safeguards for those transfers.
6. How long we keep information
- Enquiries: normally up to 12 months after the last meaningful interaction, unless an ongoing relationship, dispute, or legal obligation requires longer retention.
- Server access and error logs: normally rotated after approximately 14 days.
- Security records: retained for as long as reasonably needed to detect patterns, investigate incidents, and protect the service.
- VPS backups: normally rotated after 14 days. Separately verified recovery copies are normally rotated within 30 days unless they must be preserved for an incident or legal reason.
When information is deleted from the live system, residual copies may remain until protected backups complete their normal rotation. If a backup is restored, applicable deletion requirements are reapplied.
7. Your choices and privacy requests
Subject to the law that applies to you, you may be able to ask us to confirm whether we hold your information, provide a copy, correct it, delete it, restrict or object to certain use, or withdraw consent where consent is the basis used.
Send a request through the Contact form using the subject Privacy request. We may ask for limited information to verify that the request relates to you. You may also have the right to complain to the data-protection authority available in your jurisdiction.
8. Children
The Contact form is not intended for children to submit personal information independently. If you are under 18, ask a parent or legal guardian to contact us on your behalf. If we learn that a child submitted personal information without appropriate involvement, we will take reasonable steps to delete it.
9. Security
We use technical and organisational safeguards designed to protect information, including encrypted transport, restricted origin access, access controls, security monitoring, backups, and software maintenance. No internet service can guarantee absolute security, so please avoid including sensitive or unnecessary information in an enquiry.
10. Changes and contact
We may update this policy when our services, providers, or legal obligations change. The effective date at the top identifies the current version. Material changes will be highlighted appropriately.
For questions, concerns, or requests, use the Contact form and enter Privacy request as the subject.
