Privacy Policy
Last Updated: February 2025
Interface Works is committed to protecting your privacy and personal data. This policy explains how we collect, use, and safeguard your information when you interact with our educational services.
Our Commitment to Privacy
Interface Works respects your privacy and is committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable privacy laws. This privacy policy explains how we process your personal information when you visit our website, enroll in our courses, or interact with our educational services.
As a leading front-end development education provider in Cyprus, we understand the importance of maintaining the confidentiality and security of student information. This policy outlines our data handling practices and your rights regarding your personal information.
Information We Collect
1. Contact Information
- • Full name and preferred name
- • Email address for communication
- • Phone number for course coordination
- • Mailing address for certification delivery
- • Emergency contact information (for enrolled students)
2. Educational Information
- • Previous programming experience and education background
- • Course enrollment preferences and learning goals
- • Assessment results and academic progress
- • Project submissions and portfolio materials
- • Attendance records and participation metrics
3. Technical Information
- • IP address and device information
- • Browser type and operating system
- • Website usage patterns and page views
- • Learning platform interaction data
- • Cookies and similar tracking technologies
4. Financial Information
- • Course fees and payment history
- • Payment method preferences (processed by secure third parties)
- • Billing address and invoice information
- • Scholarship or financial aid applications
Legal Basis for Processing
We process your personal data based on the following legal grounds:
Consent
For marketing communications, newsletter subscriptions, and optional data processing activities.
Contract Performance
To provide educational services, process enrollments, and deliver course materials.
Legitimate Interest
For business operations, website analytics, and improving educational offerings.
Legal Obligation
For tax reporting, regulatory compliance, and record keeping requirements.
How We Use Your Information
Educational Service Delivery
- • Processing course enrollments and managing student accounts
- • Providing access to learning materials and development environments
- • Tracking academic progress and providing feedback
- • Issuing certificates and credentials upon course completion
- • Facilitating instructor-student communication
Communication and Support
- • Responding to inquiries and providing customer support
- • Sending course updates and important announcements
- • Notifying about new course offerings and educational opportunities
- • Collecting feedback to improve our educational programs
Business Operations
- • Analyzing website usage to improve user experience
- • Conducting research to enhance course curriculum
- • Ensuring security and preventing fraudulent activities
- • Complying with legal and regulatory requirements
Data Sharing and Disclosure
Interface Works does not sell, rent, or trade your personal information. We may share your data in the following limited circumstances:
Service Providers
Third-party providers who assist with payment processing, email delivery, learning management systems, and technical infrastructure.
Educational Partners
Accredited institutions or certification bodies for credential verification, with your explicit consent.
Legal Requirements
When required by law, court order, or to protect our rights, property, or safety of our students and staff.
Business Transfers
In the event of a merger, acquisition, or sale of assets, with appropriate data protection measures.
Data Protection and Security
Security Measures
- • SSL encryption for all data transmission
- • Secure server infrastructure with regular security updates
- • Access controls limiting data access to authorized personnel only
- • Regular security audits and vulnerability assessments
- • Data backup and disaster recovery procedures
Data Breach Procedures
In the unlikely event of a data breach:
- • We will notify relevant authorities within 72 hours as required by GDPR
- • Affected individuals will be informed promptly if high risk is involved
- • Immediate steps will be taken to contain and mitigate the breach
- • A thorough investigation will be conducted to prevent future incidents
Important: No method of transmission over the internet is 100% secure. While we implement robust security measures, we cannot guarantee absolute security. Students are encouraged to use strong passwords and keep their account information confidential.
Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected:
Student Records
Academic transcripts and certification records: 7 years after graduation
Contact Information
Course inquiries and communication: 3 years after last contact
Financial Records
Payment and billing information: 7 years as required by tax law
Marketing Data
Newsletter and promotional communications: Until consent is withdrawn
Your Privacy Rights
Under GDPR and other applicable privacy laws, you have the following rights regarding your personal data:
Right to Access
Request a copy of the personal data we hold about you
Right to Rectification
Correct inaccurate or incomplete personal data
Right to Erasure
Request deletion of your personal data in certain circumstances
Right to Restrict Processing
Limit how we use your personal data
Right to Data Portability
Receive your data in a structured, machine-readable format
Right to Object
Object to processing for marketing or legitimate interest purposes
How to Exercise Your Rights
To exercise any of these rights, please contact our privacy team:
Email: privacy@domain.com
Phone: +357 25 936472
Address: 64 Ayias Zonis, 3027 Limassol, Cyprus
We will respond to your request within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the Cyprus Data Protection Commissioner.
International Data Transfers
Some of our service providers may be located outside the European Economic Area (EEA). When we transfer your personal data to countries without adequate data protection laws, we ensure appropriate safeguards are in place:
- • Standard Contractual Clauses (SCCs) approved by the European Commission
- • Adequacy decisions recognizing equivalent data protection standards
- • Certification schemes and codes of conduct
- • Explicit consent for specific transfers where legally permissible
We regularly review our international transfer arrangements to ensure continued compliance with data protection requirements.
Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. We will notify you of material changes by:
- • Posting the updated policy on our website with a new "Last Updated" date
- • Sending email notifications to enrolled students and newsletter subscribers
- • Displaying prominent notices on our website for significant changes
- • Requiring re-consent for material changes affecting how we use your data
We encourage you to review this policy regularly to stay informed about how we protect your privacy. Your continued use of our services after any changes indicates acceptance of the updated policy.
Contact Our Privacy Team
If you have questions about this Privacy Policy, need to exercise your privacy rights, or want to report a privacy concern, please contact us:
Data Protection Officer
Interface Works
64 Ayias Zonis, 3027 Limassol, Cyprus
Email: privacy@domain.com
Phone: +357 25 936472
Supervisory Authority
Cyprus Data Protection Commissioner
Website: dataprotection.gov.cy
Email: commissioner@dataprotection.gov.cy
Phone: +357 22 818 456