Information We Collect

When you use our services or visit our website, we collect different types of information to provide you with quality educational resources and personalized support. Here's what we gather and why it matters:

Personal Information You Provide

This is information you give us directly when you sign up, contact us, or enrol in our programs:

• Full name and contact details (email address, phone number)
• Residential address for enrolment verification and course materials
• Payment information when you purchase courses or services
• Professional background and financial experience level
• Learning preferences and educational goals
• Communication preferences for updates and course information

Information Collected Automatically

When you browse our website, certain technical information gets collected automatically through cookies and similar technologies:

• IP address and general location data
• Browser type, device information, and operating system
• Pages visited, time spent on site, and navigation patterns
• Referral source (how you found our website)
• Course progress and completion data for enrolled students

Information from Third Parties

Sometimes we receive information from external sources to enhance our services or verify details:

• Payment processors who handle financial transactions
• Analytics providers who help us understand website usage
• Marketing platforms that manage our communications
• Educational partners or professional associations (with your consent)

How We Use Your Information

We don't collect data just for the sake of it. Every piece of information serves a purpose in delivering better educational experiences and supporting your learning journey.

We also use your information to personalize your learning experience—recommending relevant courses, sending timely reminders about upcoming sessions, and providing support when you need it. If you're preparing for budget audits, we might suggest additional resources based on your progress and interests.

Data Sharing and Disclosure

We don't sell your personal information to anyone. Period. But we do share data with trusted partners who help us run our services effectively. Here's the complete picture:

Service Providers We Work With

These companies process data on our behalf under strict confidentiality agreements:

• Payment processors (Stripe, PayPal) for secure financial transactions
• Email service providers for course communications and updates
• Cloud hosting services for data storage and platform infrastructure
• Analytics tools to understand how our website and courses perform
• Customer support platforms for managing student inquiries

Legal Requirements

We may disclose your information when legally required to do so—such as responding to court orders, complying with Australian Privacy Principles, or protecting our rights and property. This doesn't happen often, but we want you to know the possibilities.

Business Transfers

If criontavelis is acquired by another company or merges with another organization, your information would be transferred as part of that transaction. We'd notify you before this happens and explain any changes to how your data is handled.

Your Privacy Rights

Under Australian privacy law (specifically the Privacy Act 1988), you have several important rights regarding your personal information. We've made it straightforward to exercise these rights.

To exercise any of these rights, contact us at help@criontavelis.com with your request. We'll verify your identity and respond promptly. There's no charge for reasonable requests, though we may charge a fee for excessive or repetitive requests.

Data Security and Protection

Protecting your information is a top priority. We use industry-standard security measures to safeguard your data from unauthorized access, alteration, or destruction.

Technical Security Measures

• SSL/TLS encryption for all data transmitted between your browser and our servers
• Encrypted storage for sensitive personal and financial information
• Regular security audits and vulnerability assessments
• Firewalls and intrusion detection systems protecting our infrastructure
• Secure authentication protocols with password protection requirements
• Regular backups stored in secure, geographically distributed locations

Organizational Security Practices

Technology alone isn't enough. We've implemented strict internal policies:

• Access to personal data limited to staff who genuinely need it
• Employee training on privacy practices and data handling
• Confidentiality agreements with all team members and contractors
• Regular reviews of who has access to what information
• Incident response procedures for potential data breaches

Despite our best efforts, no security system is completely foolproof. If we experience a data breach affecting your information, we'll notify you and the relevant authorities as required by Australian law.

Data Retention and Deletion

We don't keep your information forever. How long we retain data depends on why we collected it and our legal obligations.

When data reaches the end of its retention period, we securely delete or anonymize it. Deletion methods include overwriting data multiple times and destroying physical storage media when decommissioned.

Cookies and Tracking Technologies

Like most websites, we use cookies and similar technologies. These small text files help us remember your preferences and understand how you use our site.

Types of Cookies We Use

• Essential cookies: Required for basic site functionality like login sessions and course access. You can't disable these without breaking the site.
• Performance cookies: Help us understand which pages are popular and how visitors navigate around the site. This is anonymous data.
• Functionality cookies: Remember your preferences like language settings or course bookmarks.
• Marketing cookies: Track your visits across websites to show relevant advertisements. These require your consent.

You can control cookie preferences through your browser settings. Keep in mind that blocking certain cookies might affect site functionality—you might need to log in more frequently or lose personalized settings.

Third-Party Tracking

We use Google Analytics to understand website traffic patterns. Google collects data about your visits across multiple sites. You can opt out using the Google Analytics Opt-out Browser Add-on if you prefer.

International Data Transfers

criontavelis primarily operates in Australia, and we store most data on Australian servers. However, some of our service providers operate internationally, which means your information might be transferred outside Australia.

When we transfer data internationally, we ensure appropriate safeguards are in place:

• Standard contractual clauses approved by privacy regulators
• Transfers only to countries with adequate privacy protections
• Additional security measures for sensitive information
• Compliance with Australian Privacy Principles for cross-border disclosure

For example, our email service provider has servers in the United States, but they comply with international data protection standards and maintain certifications demonstrating adequate security.

Children's Privacy

Our services are designed for adults, and we don't knowingly collect information from anyone under 18 without parental consent. Budget audit preparation requires professional context that isn't relevant to children.

If we discover we've accidentally collected information from someone under 18, we'll delete it promptly. Parents or guardians who believe we might have such information should contact us immediately at help@criontavelis.com.

Changes to This Privacy Policy

Privacy practices evolve, and laws change. We review this policy regularly and update it as needed to reflect new practices or legal requirements.

We encourage you to review this policy periodically, especially before providing new information or using new features. Continuing to use our services after changes take effect means you accept the updated terms.

Complaints and Disputes

If you have concerns about how we handle your personal information, we want to hear about it. Here's how the complaint process works:

• Step 1: Contact our privacy team at help@criontavelis.com with details of your concern. We'll acknowledge your complaint within 5 business days.
• Step 2: We'll investigate the matter thoroughly and respond within 30 days with our findings and any corrective actions taken.
• Step 3: If you're not satisfied with our response, you can escalate to the Office of the Australian Information Commissioner (OAIC).

The OAIC handles privacy complaints independently and can investigate our practices. You can reach them at oaic.gov.au or by phone at 1300 363 992. There's no cost to lodge a complaint with the OAIC.