Privacy Policy
How ZenX Academy collects, processes, and protects information in connection with its intellectual platform.
Legal Entity Notice: ZenX Academy is operated by STE Cosmos Divin, a registered company in Tunisia under National Business Register (RNE) number 1870284B.
This Privacy Policy describes how ZenX Academy ("the Platform", "we", "us") collects, uses, stores, and protects personal data in connection with your access to and use of our digital platform and related services.
By accessing or using the Platform, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the practices described here, please discontinue use of the Platform.
Introduction
ZenX Academy is a digital intellectual platform providing access to structured content, methodologies, and archival materials through a membership and access-based model. The protection of personal data is a responsibility we take seriously.
This policy applies to all users of the Platform, whether browsing publicly accessible areas, registered members, or individuals who have made a purchase through our checkout system.
We process personal data only to the extent necessary to operate the Platform and deliver its services. We do not engage in data brokerage, advertising networks, or behavioral profiling for commercial resale.
Data Controller Identity
The data controller responsible for personal data processed through this Platform is:
Legal Entity
- Company: STE Cosmos Divin
- Brand: ZenX Academy
- Country of registration: Tunisia
- RNE Number: 1870284B
- Registered address: 7, Ribat Avenue, Office 101, Corniche, 4000 Sousse City, Sousse
- Contact email: [email protected]
- Website: https://zenx.academy
For any questions or requests relating to your personal data, you may contact us at the email address listed above.
What Data We Collect
Depending on how you interact with the Platform, we may collect the following categories of personal data:
Identity and Contact Data
- Name or display name provided during account creation or checkout.
- Email address, used as the primary identifier for account access and communications.
- Country or region, where required for legal, billing, or access-restriction purposes.
Account and Access Data
- Login credentials (stored in hashed, non-recoverable form).
- Membership tier, access rights, and subscription status.
- Records of content accessed through the Platform, where applicable.
Technical and Usage Data
- IP address and approximate geographic location derived from it.
- Browser type, operating system, and device identifiers.
- Pages visited, session duration, and navigation patterns.
- Referral sources and entry points to the Platform.
Communication Data
- Messages submitted through contact forms or direct email correspondence.
- Support or inquiry records where you have initiated contact.
How Data Is Collected
Data is collected through the following mechanisms:
Directly From You
- When you create an account or register for access to the Platform.
- When you complete a purchase or checkout process through our third-party payment processor.
- When you submit a contact form, send an email, or otherwise communicate with us.
- When you voluntarily provide information as part of using Platform features.
Automatically
- Through standard server logs maintained as part of Platform operation.
- Through cookies and similar browser technologies, as described in Section 8.
- Through analytics services, where enabled, as described in Section 9.
From Third Parties
- From payment processors in connection with completed transactions, limited to transaction confirmation and billing status.
- From authentication providers if third-party login options are offered and used by you.
Why Data Is Collected
We collect and process personal data for the following purposes, each resting on a legitimate basis:
Service Delivery
To operate your account, verify your access rights, and deliver the content and services you have subscribed to or purchased. This processing is necessary for the performance of the contract between you and ZenX Academy.
Platform Security and Integrity
To detect, investigate, and prevent fraudulent access, unauthorized sharing of credentials, abuse of the Platform, or technical attacks. This processing rests on our legitimate interest in protecting the integrity of the Platform and its members.
Communications
To respond to inquiries, send transactional notifications (account confirmation, purchase receipts, access updates), and — where you have given consent — to send informational communications about the Platform. You may withdraw consent to non-essential communications at any time.
Legal and Compliance Obligations
To comply with applicable law, including tax obligations, anti-fraud requirements, and any obligations arising from our jurisdiction of incorporation or those of our payment processors.
Platform Improvement
To analyse aggregated, anonymised usage patterns for the purpose of improving the Platform's structure, content, and technical performance. This processing does not involve individual profiling.
Account and Membership Data
Access to ZenX Academy's core content is governed by an account and membership structure. In connection with this, we maintain the following data:
- Account registration details, including email and authentication credentials.
- Membership status, tier, and activation date.
- Access logs relevant to enforcement of licensing terms and detection of unauthorised sharing.
- Records necessary to fulfil ongoing access entitlements for the duration of your membership.
Credential Security
Passwords and authentication credentials are stored using one-way hashing. ZenX Academy does not have access to your plaintext password. You are solely responsible for maintaining the confidentiality of your credentials and for all activity that occurs under your account.
Payment and Checkout Processing
ZenX Academy does not directly collect, process, or store payment card information or sensitive financial data. Transactions are handled by third-party payment processors acting as merchants-of-record.
Third-Party Processors
Where applicable, ZenX Academy utilises platforms such as Paddle or Polar to manage checkout, invoicing, tax collection, and payment execution. These processors operate under their own privacy policies and data processing agreements, which govern the handling of your financial and billing data.
By completing a purchase through the Platform, you acknowledge that your payment data is governed by the terms and privacy policies of the applicable third-party processor.
Data Received From Processors
ZenX Academy may receive from payment processors limited transaction-related information, such as: confirmation of successful payment, email address associated with the transaction, and the product or access tier purchased. This information is used solely to activate and maintain your account access.
Cookies and Similar Technologies
The Platform may use cookies and similar browser-based technologies to support its operation. These may include:
Essential Cookies
Cookies strictly necessary for the Platform to function, including session authentication cookies that allow you to remain logged in during a visit. These cannot be disabled without disrupting core Platform functionality.
Functional Cookies
Cookies that enable the Platform to remember your preferences or settings across visits, where applicable.
Analytics Cookies
Where analytics tools are in use, cookies may be set to track aggregated usage patterns. These are described further in Section 9. We aim to use analytics in a privacy-respecting configuration where possible.
Third-Party Cookies
Third-party services embedded in or connected to the Platform — including payment processors — may set their own cookies in accordance with their respective policies. ZenX Academy does not control the cookie practices of third parties.
You may manage or disable cookies through your browser settings. Please note that disabling essential cookies will impair your ability to use the Platform.
Analytics, Technical Logs, and Security Monitoring
ZenX Academy may make use of analytics and monitoring tools to understand Platform usage and maintain technical security.
Analytics
Where a web analytics service is in use, it may collect data such as page views, session duration, geographic region, and device type. This data is used in aggregated form to understand how the Platform is used and to guide improvements. ZenX Academy does not use analytics data to build individual profiles for commercial targeting.
Server and Access Logs
Standard server logs are maintained automatically as part of Platform operation. These may record IP addresses, request timestamps, and accessed resources. Logs are retained for a limited period for security and diagnostic purposes and are not used for commercial analysis.
Security Monitoring
Automated systems may monitor Platform access patterns to detect potential misuse, credential abuse, or security incidents. Activity flagged as suspicious may be reviewed and may result in account suspension or restriction in accordance with our Terms & Conditions.
Data Handling Practices
Email & Contact Forms
When you contact ZenX Academy via email or a contact form on the Platform, the information you provide — including your name, email address, and the content of your message — is used solely to respond to your inquiry and to maintain a record of the correspondence.
We do not use contact form data for marketing purposes without your explicit consent. Correspondence records may be retained for a reasonable period to maintain continuity of support.
Transactional emails — including account confirmation, access notifications, and purchase receipts — are sent as part of Platform operation and do not require separate consent.
Third-Party Data Sharing
ZenX Academy does not sell, rent, or commercially transfer your personal data to third parties.
Data may be shared with third parties only in the following circumstances:
- With payment processors to facilitate transactions, as described in Section 7.
- With service providers who assist in operating the Platform (such as hosting, email delivery, or analytics), under confidentiality obligations.
- Where required by applicable law, court order, or governmental authority.
- In the event of a merger, acquisition, or transfer of assets, where your data would remain subject to this Privacy Policy or an equivalent commitment.
Any third-party service providers engaged by ZenX Academy are selected with regard for data protection standards and are not permitted to use your data for their own independent purposes.
Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, or as required by applicable law.
- Active accounts: Data is retained for the duration of your account and for a reasonable period thereafter.
- Transaction records: Billing and purchase records may be retained for the period required under applicable tax and accounting law.
- Communication records: Support correspondence is retained for a limited period sufficient to maintain service continuity.
- Technical logs: Server and access logs are retained for a short defined period for security purposes and then deleted or anonymised.
When data is no longer required, it is deleted or irreversibly anonymised in accordance with our internal practices.
Data Security
ZenX Academy applies technical and organisational measures appropriate to the nature of the data we process, with the aim of protecting it against unauthorised access, disclosure, alteration, or destruction.
- Account passwords are stored using one-way cryptographic hashing.
- Connections to the Platform are served over encrypted HTTPS.
- Access to personal data within our systems is restricted to personnel with a legitimate operational need.
- Payment data is handled exclusively by third-party processors with their own security infrastructure; ZenX Academy does not store card numbers or payment credentials.
No system can guarantee absolute security. In the event of a data breach that poses a material risk to users, we will take prompt action and notify affected individuals as required by applicable law.
International Data Handling
ZenX Academy is operated from Tunisia. The Platform is accessible internationally, and users may be located in jurisdictions with their own data protection requirements, including the European Union and the United Kingdom.
Where data is processed by third-party service providers — including hosting providers, analytics services, or payment processors — such processing may occur in countries other than Tunisia. We take reasonable steps to ensure that any such transfers are subject to appropriate safeguards.
If you are accessing the Platform from within the European Economic Area, the United Kingdom, or another jurisdiction with specific data transfer requirements, please be aware that your data may be processed outside those jurisdictions. By using the Platform, you acknowledge this possibility.
Your Rights
Depending on your jurisdiction, you may have the following rights in relation to your personal data:
Access
You may request a copy of the personal data we hold about you.
Correction
You may request correction of inaccurate or incomplete personal data.
Deletion
You may request deletion of your personal data, subject to our legal obligations to retain certain records and our legitimate interest in maintaining the integrity of the Platform.
Objection and Restriction
You may object to certain processing activities or request that we restrict how we use your data in specific circumstances.
Portability
Where processing is based on your consent or on a contract, you may have the right to receive your data in a commonly used machine-readable format.
Withdrawal of Consent
Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing that occurred before withdrawal.
To exercise any of these rights, please contact us at [email protected]. We will respond within a reasonable timeframe. We may need to verify your identity before acting on a request.
Age Limitations
ZenX Academy is intended for individuals who are at least 18 years of age, or who have otherwise reached the age of majority in their jurisdiction. The Platform is not directed at minors, and we do not knowingly collect personal data from persons under the age of 18.
If you believe that a minor has provided personal data to the Platform without appropriate parental or guardian consent, please contact us at [email protected] and we will take reasonable steps to investigate and, where appropriate, delete the relevant information.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we do, we will revise the reference date shown at the top of this document.
If changes are material, we will make reasonable efforts to notify registered users, which may include an in-platform notice or an email to the address associated with your account. Your continued use of the Platform following notification of changes constitutes acceptance of the updated policy.
We encourage you to review this policy periodically to remain informed of how your data is handled.
Contact Information
For any questions, requests, or concerns relating to this Privacy Policy or the handling of your personal data, please contact us using the information provided below.
Address
ZenX Academy
7, Ribat Avenue, Office 101
Corniche, 4000 Sousse City
Sousse
Website
https://zenx.academy