Slightly Technical Academy

Privacy Policy
Effective Date: 22 October 2025
Last Updated: 22 October 2025

We ("Slightly Technical Academy", "Slightly Technical", "we", "us") provide online education, digital products, and community access for musicians, guitar players, and home‑studio enthusiasts. We are committed to protecting your privacy and handling personal data transparently and lawfully.

1) Who we are & how to contact us

  • Controller: Marko Maletin, sole proprietor trading as Slightly Technical Academy.
  • Contact (privacy & support): marko@slightlytechnicalacademy.com
  • Postal address: Ćirila i Metodija 182, Novi Sad, Republic of Serbia
  • Data Protection Officer: Not required; contact the above email.

2) Scope

This Policy covers personal data processed when you browse our sites, enroll in courses, purchase digital products, download resources, join the Slightly Technical Backstage Discord, contact support, or interact with our emails, ads, or social media. It applies to visitors from the EEA/UK/Switzerland, United States (including California), and other regions where we operate.

3) What data we collect

3.1 Data you provide

  • Name, email, password
  • Billing details (processed by our payment processors—see §7)
  • Course selections, quiz results, completion records, certificates
  • Support messages and account preferences
  • User‑generated content (comments, posts, uploads) in our community platforms

3.2 Data collected automatically

  • IP address, device identifiers, browser & OS information
  • Pages viewed, session duration, referring/exit pages, clicks, scroll depth
  • Approximate location (derived from IP)
  • Cookies, pixels, SDKs, and similar technologies (see §6)

3.3 Data from third parties

  • Payment status from processors
  • Email engagement (opens, clicks) from email service providers
  • Single Sign‑On profile basics (if enabled)
  • Advertising and attribution data (campaign, channel, creative)

We do not intentionally collect sensitive data unless you provide it (e.g., accessibility needs). Please avoid sharing unrelated sensitive information.

4) Purposes & lawful bases (GDPR/UK GDPR)

We process personal data only when a lawful basis applies:

  • Provide services & fulfill contracts (Art. 6(1)(b)): account creation, course delivery, payment handling, certifications, support.
  • Our legitimate interests (Art. 6(1)(f)): site security, fraud prevention, product improvement, analytics (privacy‑respecting where possible), limited direct marketing to existing users. You can object at any time (see §10).
  • Consent (Art. 6(1)(a)): non‑essential cookies/analytics/ads, newsletters to non‑customers, testimonials with identity, optional surveys. You can withdraw consent at any time.
  • Legal obligations (Art. 6(1)(c)): tax, accounting, KYC/anti‑fraud recordkeeping, consumer law requests.

5) Retention

We retain personal data only as long as necessary for the purposes set out above, and to meet legal/financial obligations. Typical periods:

  • Account data: active + 24 months after last activity (unless you request deletion sooner)
  • Course records & certificates: for the life of the program + up to 6 years for audit/legal purposes
  • Payment records: 7–10 years (tax/audit requirements)
  • Support tickets: 24 months
  • Marketing data (consent‑based): until you withdraw consent or after 24 months of inactivityActual periods may vary by jurisdiction. We minimize & anonymize where feasible.

6) Cookies & tracking technologies

  • Essential cookies: authentication, security, load balancing, user preferences—always on.
  • Analytics cookies: help us measure usage and improve content.
  • Advertising & social cookies: used for remarketing and attribution where consented.

Consent management: We use a cookie banner for EEA/UK/Switzerland that enables granular opt‑in for non‑essential cookies. You can change preferences at any time via the Cookie Settings link in our site footer and through your browser settings.

7) Sharing & disclosures

We never sell your personal information. We may share data with:

  • Processors / service providers acting on our instructions (hosting, payments, LMS, email, analytics, support, community, cloud storage, fraud prevention).
  • Business transfers: during a merger, acquisition, or asset sale (with safeguards).
  • Legal & safety: to comply with law, enforce terms, or protect rights and safety.

Current core processors:

  • Payments: PayPal (payment processing; we do not store full card details)
  • Email/CRM: Zoho Mail (email communications)
  • Analytics: Microsoft Clarity (behavior analytics; cookie/consent applies)
  • Hosting/CDN: Webflow (website hosting and delivery)
  • Community: Discord (optional community participation)
  • Learning platform/LMS: None at this time (courses delivered via our site and downloadable materials)
  • Helpdesk: None (support via email only)We maintain contracts (DPAs) and conduct risk assessments for subprocessors.

8) International transfers

Where data is transferred outside your country (e.g., to the US), we rely on adequacy decisions (where available), EU Standard Contractual Clauses (and UK IDTA/Addendum), and additional safeguards where appropriate.

9) Security

We use technical and organizational measures such as encryption in transit (TLS), hardened infrastructure, access controls, least‑privilege, credential rotation, and regular backups. No system is perfectly secure; please protect your credentials and notify us immediately of any suspected compromise.

10) Your rights

Depending on your location, you may have the right to access, rectify, erase, restrict, object (including to profiling/direct marketing), and data portability. Where processing relies on consent, you may withdraw it at any time.

  • EEA/UK/Swiss users: rights under GDPR/UK GDPR.
  • California (CPRA): rights to know, correct, delete, and to opt‑out of “sale”/“sharing” of personal information and limit use of sensitive PI. We do not sell personal information; if we use cross‑context behavioral advertising, we will honor “Do Not Sell or Share” signals.
  • Other US states (VA/CO/CT/UT/etc.): equivalent rights will be honored.

To exercise rights, email marko@slightlytechnicalacademy.com. We will verify your request and respond within the time required by law. You may designate an authorized agent where permitted.com**. We will verify your request and respond within the time required by law. You may designate an authorized agent where permitted.

11) Children

Our services are not directed to children under 16. We do not knowingly collect data from children. If you believe a child has provided data, contact us to delete it.

12) Third‑party links

Our content may link to third‑party sites. Their privacy practices are governed by their own policies.

13) Changes to this Policy

We will post updates on this page and adjust the “Last Updated” date. Material changes will be notified via email or in‑app notice where appropriate.

14) Complaints

If you are in the EEA/UK, you may lodge a complaint with your local data protection authority. We encourage you to contact us first so we can resolve your concerns.

15) Contact

Slightly Technical
marko@slightlytechnicalacademy.com
Register now
Main pages
HomeCoursesStoreTech PagesAbout meContact
Other pages
Privacy PolicyTerms & ConditionsCookie Settings
All rights reserved @Slightly Technical
Powered by Code Red