Privacy Statement by Endpoint Activity Log Academy

1. Your rights

Depending on your region, you may request access, correction, deletion, restriction, or portability of personal data we hold about you as a site visitor or registrant.

We respond within reasonable timelines mandated by Korean law and, where applicable, supplementary standards your employer contractually requires.

2. Contact

Privacy inquiries may be sent to academy@doc-hub.one with subject line "Privacy request" and enough detail to verify your identity without oversharing sensitive tokens.

If you prefer postal correspondence, use the address in the footer and mark the envelope to the attention of Privacy Operations.

3. Third parties

We use infrastructure providers to host static content and form submissions. They process data under agreements that limit use to delivering the service.

We do not sell personal data. Analytics cookies, if enabled after you opt in, may involve subprocessors listed in the Cookie Notice.

4. Retention

Contact form messages are retained long enough to respond and maintain operational records, typically under twenty-four months unless a longer period is required for disputes.

Class rosters and attendance may be kept for seven years where needed for tax and contractual evidence.

5. Use of data

We use registration data to deliver sessions, share logistical updates, and improve curriculum based on aggregated feedback.

We do not use health data or biometric data in standard programs. If a specialized workshop ever collects such data, we will provide a supplemental notice first.

6. Data collected

We collect names, emails, employer, job role, dietary or accessibility preferences when you supply them, and technical logs such as approximate region from CDN logs.

Payment references may appear on invoices handled offline; we do not store card numbers on this static site.

7. Scope

This statement covers data processed through doc-hub.one and related class operations run by Endpoint Activity Log Academy.

It does not govern your employer internal systems or third-party tools you choose to integrate during labs.

8. Security measures

We apply access controls, least-privilege administration, and encryption in transit for hosted services that support our programs.

No method is perfect; please report suspected vulnerabilities responsibly via the contact email.

9. International transfers

If data moves outside the Republic of Korea, we rely on appropriate safeguards such as standard contractual clauses or supplier certifications when required.

Enterprise customers may request transfer impact summaries before pilot classes.

10. Children's privacy

Programs are aimed at working professionals. We do not knowingly collect data from children below digital consent ages.

If you believe a minor enrolled improperly, contact us to remove associated records.

11. Breach notification

If a breach affects your personal data, we will notify regulators and affected individuals as required by law, describing likely impact and mitigation steps.

Notifications may be delayed only where law enforcement requests a short hold.

12. Policy changes

We update this statement when our processing changes materially. The last-updated date reflects the latest revision.

Continued use after updates means you acknowledge the revised statement where permitted by law.