Privacy Policy – Racesleader.com

Last Updated: 2025

1. Introduction

Racesleader.com (“we”, “our”, “us”) is committed to protecting the privacy and security of visitors and customers (collectively, “Users”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit or make a purchase from Racesleader.com (the “Site”) and any related services, including our digital courses, support channels, and marketing communications (together, the “Services”).

2. Scope

This Policy applies to all personal data processed by Racesleader.com, regardless of the country from which the data originates or the territory in which the User resides. By accessing the Site or using our Services, you consent to the practices described herein.

3. Data Controller

The entity responsible for processing your personal data is:
Racesleader.com
United Arab Emirates
Email: info@racext.com

4. Information We Collect

We collect and process the following categories of personal data:

4.1 Identification Data

  • Full name, postal address, country of residence, telephone number, email address.

4.2 Account & Authentication Data

  • Username, encrypted password, login history, account preferences.

4.3 Payment & Transaction Data

  • Partial card number (last four digits), card type, expiry month/year, billing address, transaction ID, currency, purchase history.
  • Important: Full credit card details are handled exclusively by third‑party payment processors (e.g., Stripe, PayPal) and never stored on our servers.

4.4 Technical & Usage Data

  • IP address, browser type, operating system, device identifiers, referral URLs, time‑stamp of access, session duration, clickstream data, and crash logs.

4.5 Course Interaction Data

  • Video progress, quiz scores, certificates achieved, messages posted in community areas, support tickets.

4.6 Marketing & Communications Data

  • Opt‑in status for newsletters, marketing preferences, open/click rates, campaign engagement.

5. How We Collect Data

  • Directly from Users – Data provided in registration forms, checkout, email, WhatsApp, surveys, or community posts.
  • Automatically – Data collected via cookies, pixels, server logs, and similar technologies when you browse the Site or interact with emails.
  • From third parties – Payment processors, analytics providers, advertising networks, or social media platforms where you have granted permission.

6. Legal Bases for Processing

We rely on different legal grounds depending on the type of data and purpose, including:

  • Contractual necessity – Processing needed to provide the Services and fulfill purchase orders.
  • Legitimate interests – Analytics, security, anti‑fraud, and limited direct marketing.
  • Consent – Email marketing, non‑essential cookies, testimonials.
  • Legal obligations – Compliance with accounting, tax, and anti‑money‑laundering regulations.

7. Purposes of Processing

We use personal data to:

  1. Create and manage user accounts.
  2. Process orders, payments, and deliver digital content.
  3. Provide customer and technical support.
  4. Issue private certificates and track course progress.
  5. Improve and optimize the Site, Services, and user experience.
  6. Send transactional notifications (order confirmations, password resets, course updates).
  7. Conduct marketing communications consistent with user preferences (see Section 8).
  8. Detect, investigate, and prevent fraudulent activities or security incidents.
  9. Comply with legal requirements and enforce our Terms and Conditions.

8. Marketing Communications

  • Users who explicitly opt‑in will receive newsletters, promotions, and updates about new courses.
  • Each marketing email contains an unsubscribe link that immediately removes the User from future campaigns.
  • We may use third‑party email providers (e.g., MailerLite, HubSpot) to manage distribution and analytics.

9. Cookies and Similar Technologies

We use cookies, web beacons, pixels, and local storage to:

  • Authenticate sessions and maintain security.
  • Remember user preferences and settings.
  • Measure traffic and performance (e.g., Google Analytics, Hotjar).
  • Deliver personalized advertising via advertising networks (e.g., Facebook/Meta Pixel, Google Ads).
    Details on each cookie category and opt‑out mechanisms are provided in our separate Cookie Policy.

10. Data Sharing and Disclosure

We do not sell personal data. We share it only in the following circumstances:

  • Service Providers – Payment processors, email service providers, hosting, customer‑support software, analytics tools, who act under written data‑processing agreements.
  • Business Transfers – In connection with a merger, acquisition, or asset sale, provided the successor entity agrees to this Policy’s protections.
  • Legal Requirements – Where mandated by competent authorities, subpoenas, court orders, or to protect our rights or the safety of others.

11. International Data Transfers

Because we operate globally, data may be stored or processed in jurisdictions other than the User’s. Where local laws grant data‑protection rights (e.g., in the European Economic Area), we transfer data under safeguards such as:

  • Standard Contractual Clauses approved by the European Commission;
  • Data‑processing agreements with privacy‑shielded U.S. processors;
  • Equivalent measures permitted by applicable regulations.

12. Data Retention

We retain personal data only as long as necessary to fulfill the purposes described above:

  • Transaction data – 7 years (accounting requirements).
  • Course interaction data – 5 years after final login or until deletion request.
  • Marketing data – until opt‑out or 24 months of inactivity.
  • Server logs – up to 12 months for security audits.

13. Data Security

We implement administrative, technical, and physical safeguards, including:

  • SSL/TLS encryption of data in transit.
  • Hashing and peppering of passwords (bcrypt ≥ 12 rounds).
  • Firewalls, intrusion‑detection systems, and 24/7 monitoring.
  • Principle of least privilege for staff access.
  • Regular security assessments and patch management.

14. User Rights

Depending on local regulations, Users may have the right to:

  • Access their personal data.
  • Rectify inaccurate or incomplete data.
  • Delete (“erase”) data under certain conditions.
  • Restrict or object to processing.
  • Receive a copy in a portable format.
  • Withdraw consent at any time without affecting prior processing.
  • Lodge a complaint with a supervisory authority.

15. Exercising Your Rights

Requests should be sent to info@racext.com and include:

  1. Your full name and email used on the Site.
  2. The specific right you wish to exercise.
    We will respond within 30 days (or the shortest timeframe mandated by applicable law). Complex requests may require additional verification or time, which will be communicated to you.

16. Children’s Privacy

Our Services are not directed to individuals under 16 years of age. We do not knowingly collect data from children. If you believe a child has provided us data, please contact us so we can delete it promptly.

17. Third‑Party Links

The Site may contain links to external sites (e.g., payment gateways, social networks). We are not responsible for their privacy practices. Users should review the policies of any third‑party site they visit.

18. Changes to This Privacy Policy

We may update this Policy periodically. If changes are material, we will notify Users by:

  • Posting a prominent notice on the Site, and/or
  • Sending an email to registered Users.
    Updates become effective 7 days after posting. Continued use of the Site signifies acceptance of the revised Policy.

19. Contact Us

For questions, requests, or complaints regarding this Privacy Policy or our data practices, contact:
Email: info@racext.com
United Arab Emirates

© 2025 Racesleader.com – All rights reserved. Unauthorized reproduction or distribution is strictly prohibited.