Privacy Notice

Last updated: June 29, 2026

1. Who we are

Learn to Survive is operated by Salome Sakvarelidze, an individual sole trader based in Georgia (Caucasus). For the personal data processed through the Service, Salome Sakvarelidze is the data controller.

2. Data we collect

• Account data: name, email, password hash, sign-in provider (e.g. Google).
• Profile and progress: quiz answers, scores, completed levels, certificates issued, leaderboard entry.
• Support messages: messages you send via our in-app chat.
• B2B data: if you request a quote or redeem a company invite — company name, contact name, phone, employee count.
• Technical data: IP address, browser type, device identifiers, log timestamps, basic usage telemetry.
• Payment data: collected and processed by our reseller Paddle. We receive only the transaction outcome, subscription status, and last 4 digits / billing country for our records.

3. Why we use it (purposes & legal basis)

• To create and manage your account and deliver the training you purchased — performance of contract.
• To track your progress, issue certificates and show leaderboards — performance of contract.
• To respond to support requests — legitimate interests and contract.
• To prevent fraud and abuse and keep the Service secure — legitimate interests and legal obligation.
• To process B2B quote requests — steps prior to entering a contract.
• To send service emails (e.g. reminders, transactional notices) — legitimate interests; marketing emails only with your consent.

4. Who we share data with

• Paddle.com — our Merchant of Record. Paddle processes payments, manages subscriptions, handles taxes, invoicing and refunds. See Paddle's privacy policy.
• Hosting and infrastructure providers — used to host the application, database and authentication.
• Email and analytics subprocessors — for transactional email and basic product analytics.
• Professional advisers — legal and accounting, as needed.
• Authorities — where required by law.

We do not sell your personal data.

5. International transfers

Our hosting and subprocessors may be located outside Georgia, including in the EU/EEA, UK and US. Where data leaves your jurisdiction, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

6. Retention

We keep account and progress data for as long as your account is active and for a reasonable period afterwards to handle support, legal and accounting obligations. Support messages are retained for up to 2 years. Payment records are retained for the period required by tax law (typically 6–7 years). You may request earlier deletion at any time.

7. Your rights

Depending on your jurisdiction (including under GDPR if you are in the UK/EEA), you have the right to: access your data, rectify it, erase it, restrict or object to processing, port it to another service, withdraw consent at any time, and lodge a complaint with your local supervisory authority. We aim to respond within one month.

8. Security

We apply appropriate technical and organisational measures including encryption in transit (HTTPS), encrypted storage at rest, role-based access controls, row-level security on our database, and least-privilege secrets management.

9. Cookies

We use a small number of essential cookies (sign-in session, security) and basic analytics. You can manage cookies in your browser settings. We do not use third-party advertising cookies.

10. Children

The Service is not directed at children under 16. We do not knowingly collect personal data from children.

11. Contact

To exercise your rights or ask privacy questions, contact us via the in-app support chat or the contact details on learnandsurvive.co. Controller: Salome Sakvarelidze, Georgia.