Privacy Policy

1. Introduction & Controller Identity

This Privacy Policy explains how jaugentho (“we”, “us”) collects, uses, and protects personal data when you visit this website and when you register for or enquire about our online course focused on furniture sales and furniture retail management.

The data controller for the processing described in this Privacy Policy is Jaugentho Learning Ltd, registered address: Nebory 79, 739 61 Třinec, Czech Republic. You can contact us about privacy matters at [email protected].

We do not appoint a Data Protection Officer as a matter of course for this service. If you have a privacy question, please email us and we will route your request to the appropriate person.

2. Personal Data We Collect

We collect personal data that you provide directly, as well as limited technical data generated when you use the site. The types of data we may collect include:

• Identity and contact details: first name, last name, and email address.
• Registration information: the password you create for account access. Passwords should never be sent in plain text by email. We store passwords using appropriate hashing methods when accounts are supported by our systems.
• Form content: messages you submit via our contact form, including module questions and any details you choose to share.
• Technical data: IP address, browser type, device information, operating system, language preference, and approximate location derived from IP (city/region level).
• Usage data: pages viewed, time spent on pages, referrer URL, click paths, and interactions such as button clicks related to registration or course information.
• Cookies and identifiers: cookie consent state and other cookie-based identifiers as described in Section 4 and our Cookie Policy.
• Conversion events: signals that a form was submitted or that a key page was visited, used to measure site performance and to understand which information pages help visitors find the right learning resources.

We do not intentionally collect special-category data (such as health data, religious or political views), financial account details, or government identification numbers through this website. Please do not include sensitive personal data in free-text message fields.

3. Why We Process Personal Data & Legal Basis (GDPR Art. 6)

We process personal data only when we have a lawful basis under applicable data protection law, including the GDPR and UK GDPR where relevant. The main purposes and legal bases are:

• Course registration and access: to create and administer an account, provide learning access, and send operational messages. Legal basis: performance of a contract (Art. 6(1)(b)) and, where required for specific communications, consent (Art. 6(1)(a)).
• Handling enquiries: to respond to messages and provide course or access support. Legal basis: contract steps at your request (Art. 6(1)(b)) and consent (Art. 6(1)(a)) where you request contact.
• Website analytics (optional): to understand how visitors use the site and improve navigation, clarity, and learning information pages. Legal basis: consent (Art. 6(1)(a)).
• Marketing and remarketing (optional): to measure advertising performance and show relevant course messages to people who have previously visited the site. Legal basis: consent (Art. 6(1)(a)).
• Security and fraud prevention: to protect the website, detect abuse, and maintain service integrity (for example, rate limiting and bot mitigation). Legal basis: legitimate interests (Art. 6(1)(f)).
• Compliance with legal obligations: where we must comply with legal requirements. Legal basis: legal obligation (Art. 6(1)(c)).

Automated decision-making (Art. 22): We do not engage in automated decision-making or profiling that produces legal or similarly significant effects.

4. Cookies & Tracking

We use cookies and similar technologies to run the website, remember your preferences, and (where you consent) measure usage and advertising performance. Cookies are small text files stored on your device. Some technologies are not cookies but serve similar purposes, such as pixel tags and server-side event signals.

Essential cookies (always active)

Essential cookies are required for the website to function and to remember your consent choice. These do not require consent in many jurisdictions because they are necessary for core operations. Examples include _site_session and cookie_consent. Retention varies from session to up to 12 months depending on the cookie.

Analytics cookies (optional, consent required)

If you opt in, we may use Google Analytics 4 (GA4) to understand which pages are useful and how visitors move through the site. GA4 is configured to use IP anonymization where available. Typical analytics cookies include _ga and _ga_XXXXXXXXXX. Analytics data retention is typically 14 months.

Marketing cookies (optional, consent required)

If you opt in, we may use marketing cookies to measure ad performance and to show relevant course messages to people who have interacted with the site. Typical marketing cookies include _gcl_au (Google Ads) and _fbp/_fbc (Meta). These are used for remarketing, conversion attribution, and audience measurement.

For a detailed explanation, including a cookie list and how to manage preferences, see our Cookie Policy.

5. Consent (EEA/UK)

Users in the EEA and UK receive a consent notice under GDPR/UK GDPR. Analytics and marketing cookies activate only after explicit, informed, freely given consent (Art. 6(1)(a)). Your choice is recorded in the cookie_consent cookie, which is typically stored for 12 months.

You can withdraw consent at any time by using the “Manage cookie preferences” link in the footer or by clearing cookies in your browser. Withdrawal does not affect the lawfulness of processing based on consent before it was withdrawn.

6. Sharing With Advertising & Service Partners

We use service providers to host and secure the website and (where you consent) to measure usage and advertising performance. Depending on your consent settings and how the site is configured, we may share limited data with:

• Google LLC (Google Analytics 4, Google Ads, Tag Manager, remarketing): cookie identifiers, usage data, and conversion signals. Privacy policy: https://policies.google.com/privacy.
• Meta Platforms (Pixel, Custom/Lookalike Audiences, Conversion API if implemented): page views, conversions, audience membership, and hashed identifiers where used. Privacy policy: https://www.facebook.com/privacy/policy.
• Cloudflare (CDN and security): IP-based security signals used to detect abuse and protect performance. Privacy policy: https://www.cloudflare.com/privacypolicy/.

We do not sell personal data. Where advertising and analytics providers process data, they do so as service providers or joint participants depending on the specific tool configuration. We do not permit these providers to use site data for their own independent commercial purposes beyond providing their services and maintaining security and integrity.

7. International Transfers

Some providers may process data outside the EEA/UK, including in the United States. Where international transfers occur, we use appropriate safeguards such as the EU–US Data Privacy Framework (where applicable), the UK Extension to the DPF, and Standard Contractual Clauses (EU 2021/914) or UK IDTA as fallback mechanisms.

8. Data Retention

We keep personal data only as long as necessary for the purposes described in this Privacy Policy:

• Contact submissions: typically up to 2 years from the last interaction.
• Email correspondence: for the duration of the support relationship and typically up to 1 additional year, unless we need to retain messages for dispute handling or legal reasons.
• Analytics data: typically 14 months, subject to configuration and provider settings.
• Marketing cookies: retained according to the cookie’s lifetime (often 90 days for common advertising cookies).
• Server and security logs: typically up to 90 days unless a longer period is required for investigating security incidents.
• Cookie consent record: we may retain evidence of consent choices for up to 3 years for audit and compliance purposes.
• Legal and regulatory obligations: if required, we retain data for the period mandated by applicable law.

9. Your Rights (GDPR & UK GDPR)

If you are in the EEA or UK (and in many other regions with similar laws), you may have the right to request: access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), data portability (Art. 20), and objection (Art. 21). Where processing is based on consent, you may withdraw consent at any time (Art. 7(3)).

To exercise your rights, email [email protected]. We will respond within 30 days, which may be extended by up to 60 days for complex requests. We may ask for reasonable information to verify identity before completing a request.

You also have the right to lodge a complaint with a supervisory authority. Helpful starting points include: https://edpb.europa.eu (EU), https://ico.org.uk (UK), https://www.cnil.fr (FR), https://uodo.gov.pl (PL), https://www.aepd.es (ES), https://www.bfdi.bund.de (DE).

10. Children

This site is not directed at individuals under 16. We do not knowingly collect personal data from minors. If we learn that we have collected personal data from a child under 16 without verifiable parental consent, we will delete it promptly.

11. Do Not Track

This website does not respond to “Do Not Track” (DNT) browser signals. Third-party providers may have their own approaches to DNT and similar signals.

12. Data Deletion Requests

You can request deletion of your personal data by emailing [email protected] with the subject line “Data Deletion Request”. We will complete verified requests within 30 days, subject to limited retention where the law requires us to keep certain records.

13. Business Transfers

If we are involved in a merger, acquisition, asset sale, financing, reorganization, or insolvency, personal data may be transferred to a successor entity. If such a transfer materially changes how personal data is used, we will provide notice on the website.

14. California (CCPA / CPRA)

This section applies to California residents where the California Consumer Privacy Act (as amended) is applicable. In the past 12 months, we may have disclosed the following categories of personal information:

• Identifiers: name, email, IP address, cookie identifiers. Disclosed to service providers and, where you consent, advertising partners.
• Internet or network activity: page views and interactions. Disclosed to analytics and, where you consent, advertising providers.
• Inferences: interests or preferences inferred from site interactions for advertising measurement (where you consent).

We do not sell personal information as defined by CCPA. We may share personal information for cross-context behavioral advertising when marketing cookies are enabled. You can opt out by using cookie preferences in the footer (Manage cookie preferences).

California residents may have the right to know, delete, correct, and opt out of sale/sharing, and the right to non-discrimination. To submit a request, email [email protected] with the subject “California Privacy Request”. We will verify your identity before completing a request. Authorized agents may submit requests with appropriate written authorization.

15. Virginia (VCDPA)

Virginia residents may have rights to access, correct, delete, and obtain a copy of personal data, and to opt out of targeted advertising. To submit a request, email [email protected] with the subject “Virginia Privacy Request”.

We do not sell personal data or engage in profiling that produces legal or similarly significant effects. If we deny a request, you may appeal by emailing with the subject “Appeal of Refusal — Privacy Request”. We will respond to appeals within 60 days. If an appeal is denied, you may contact the Virginia Attorney General.

16. Nevada

Nevada residents may submit a verified opt-out request by emailing [email protected] with the subject “Nevada Do Not Sell Request”. We do not currently sell personal information under Nevada Revised Statutes Chapter 603A.

17. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, services, or legal requirements. Material changes will be announced via a prominent website notice at least 14 days before taking effect, when appropriate. The “Last Updated” date at the top of this page indicates the most recent revision.

18. Contact

For questions or requests related to this Privacy Policy, contact:

• Legal entity: Jaugentho Learning Ltd
• Address: Nebory 79, 739 61 Třinec, Czech Republic
• Email: [email protected]
• Phone: +420 558 635 210