Choose a readability mode. The detailed version keeps full legal clarity and SEO content; the concise view reduces cognitive load.
View:
Last updated: 2026-04-02
RESPONSE SLA
48h
Typical first reply on business days.
DATA MINIMIZATION
Minimal
Only what’s required for courses and support.
YOUR RIGHTS
GDPR/CCPA
Access, deletion, portability, and more.
Summary
We collect the minimum information needed to provide courses, process purchases, maintain account security, and offer support.
We may use cookies or similar storage for security, preferences (like theme), and essential analytics.
You can request access, correction, or deletion of your personal data.
You can control non-essential cookies via the cookie banner.
We keep data only as long as needed for service delivery and legal obligations.
Manage your privacy-related settings on this device.
1. Data Controller
Highpin Design School (“we”, “us”, “our”) provides online design education and related services worldwide.
You can contact us at [email protected]
or +1 415 555 0137.
If you contact us by email or phone, we will process your contact details and the content of your request to respond and to document our support obligations.
2. Data We Collect
We collect personal data in the following categories, depending on how you use the site and services:
Account data
Name (if provided), email address
Authentication data such as a hashed password (where applicable)
Support communications and preferences
Transactional data
Course purchases, invoices, and payment confirmations
Billing-related details required for tax and accounting
Payment processing is typically handled by payment providers; we do not aim to store full card numbers.
Usage and device data
Approximate location derived from IP address (country/city-level)
Session and interaction data (pages visited, timestamps, referrers)
Device and browser information (user agent, language)
Preference data (e.g., theme choice)
What we generally do not intentionally collect
We do not intentionally collect sensitive categories of personal data (e.g., health, biometric, or precise geolocation) as part of normal course delivery.
If you include such data in support messages, you provide it voluntarily, and we will handle it with care and minimize retention.
3. Purposes and Legal Bases
We process personal data for the purposes below. Where GDPR applies, our legal bases include:
Contract performance — to provide access to courses, manage accounts, and deliver purchased services.
Legitimate interests — to maintain security, prevent fraud, improve learning experience, and troubleshoot.
Consent — for optional features such as newsletters or non-essential cookies.
Legal obligations — for accounting, tax, and compliance obligations.
4. Cookies and Similar Technologies
We use cookies and similar storage technologies to operate the site, keep it secure, remember preferences (like light/dark theme),
and understand performance. Where required, we ask for consent for non-essential cookies.
Essential
Required for basic site functionality, security, and preference storage.
Non-essential
Optional cookies (e.g., analytics) that help us improve content and UX.
Local storage and preference keys
This site may store a small set of preference values on your device, such as theme selection and cookie consent state.
You can clear these values using your browser settings or the quick controls on this page (where available).
5. Retention
We retain personal data only as long as necessary to provide services and fulfill the purposes described in this policy, including legal and accounting requirements.
After that, we delete, anonymize, or de-identify the data where feasible.
Examples (illustrative)
Support tickets: retained for a limited period to ensure continuity and quality.
Invoices: retained as required by applicable accounting/tax laws.
Cookie consent: retained locally on your device until you clear it or reset it.
6. Your Rights (GDPR/CCPA)
Depending on your location, you may have rights regarding your personal data. These may include the right to request access, portability, correction,
deletion/erasure, restriction, or to object to certain processing. Where we rely on consent, you can withdraw it at any time.
How to make a request
Send your request to [email protected].
To protect users, we may ask for reasonable verification before fulfilling certain requests.
We aim to respond promptly and typically within 48 hours on business days.
Complex requests may take longer if legally permitted.
7. International Transfers
If we transfer personal data internationally, we apply appropriate safeguards (such as Standard Contractual Clauses) when required and use reputable service providers.
Transfer mechanisms depend on the jurisdictions involved and applicable laws.
8. Security
We implement administrative, technical, and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.
No system is 100% secure; please use strong passwords and avoid sending sensitive information via insecure channels.
9. Changes to this Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements.
The “Last updated” date indicates when the latest version became effective.
We do not sell personal information in the conventional sense. We may share data with service providers to operate the platform (e.g., hosting, payments) under appropriate safeguards.
How do I change cookie choices?
You can adjust cookies using the cookie banner (if present) or by clearing site data in your browser. You can also reset consent on this page in Concise view.
How does theme preference work?
Theme choice may be stored locally on your device (e.g., localStorage). This is used only to remember your preference for future visits on the same device/browser.