Privacy Policy

Your privacy is important to us. Learn how we protect your personal information.

Last Updated: November 19, 2025 Version 2.1

Introduction

At EduConsult Hub ("we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://www.educonsulthub.com and use our education consulting services.

We understand that your educational journey is personal and confidential. This policy outlines our practices regarding the collection and use of information from students, parents, educators, and other users of our services.

Our Commitment: We will never sell your personal information to third parties. We use industry-standard security measures to protect your data and comply with applicable privacy laws including FERPA, COPPA, and GDPR where applicable.

Information We Collect

Personal Information You Provide

We collect information you voluntarily provide to us, including:

  • Contact Information: Name, email address, phone number, mailing address
  • Educational Information: Grade level, academic performance, test scores, educational goals
  • Consultation Details: Information shared during consulting sessions, assessment results
  • Account Information: Username, password, profile preferences
  • Payment Information: Credit card details, billing address (processed securely through third-party providers)
  • Communication Preferences: Newsletter subscriptions, marketing preferences

Information Collected Automatically

When you access our website, we automatically collect:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Information: Pages visited, time spent on pages, click-through data
  • Location Information: General geographic location based on IP address
  • Cookies and Tracking Technologies: See our Cookies Section for details
Data Minimization: We only collect information that is necessary for providing our educational consulting services. We do not collect sensitive personal information such as Social Security numbers or financial information beyond what is required for payment processing.

How We Use Your Information

We use the information we collect for the following purposes:

Educational Consulting Services

To provide personalized academic guidance, college admissions assistance, test preparation, and career counseling services tailored to your specific needs and goals.

Communication

To respond to your inquiries, send appointment reminders, provide service updates, and deliver educational content and resources.

Service Improvement

To analyze usage patterns, improve our services, develop new educational resources, and enhance user experience based on feedback and analytics.

Security and Compliance

To protect against fraud, unauthorized access, and other security risks, and to comply with legal obligations and educational regulations.

Marketing and Promotions

To send you relevant educational content, service updates, and promotional offers (with your consent where required by law).

Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process personal information based on the following legal grounds:

  • Contract: Processing is necessary to provide our consulting services
  • Legitimate Interests: Processing for service improvement and security purposes
  • Consent: For marketing communications and optional data collection
  • Legal Obligation: To comply with educational regulations and legal requirements

Information Sharing and Disclosure

We do not sell your personal information to third parties. We only share your information in the following circumstances:

Service Providers

We may share your information with trusted third-party service providers who assist us in operating our business, including:

  • Payment processing companies (Stripe, PayPal)
  • Video conferencing platforms (Zoom, Google Meet)
  • Email service providers (Mailchimp, SendGrid)
  • Analytics and website hosting services
  • Customer relationship management systems

Educational Partners

With your explicit consent, we may share relevant information with:

  • Partner universities and colleges for application purposes
  • Test preparation organizations (College Board, ACT)
  • Scholarship organizations and foundations
  • Educational institutions for enrollment verification

Legal and Safety

We may disclose your information when required by law or to protect our rights and safety:

  • Compliance with court orders, legal processes, or government requests
  • Protection against fraud, security threats, or legal liability
  • Enforcement of our terms of service and policies
  • Protection of the rights, property, or safety of our users and employees

Data Security

We implement industry-standard security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction:

Encryption

All data transmission is encrypted using SSL/TLS protocols. Sensitive information is encrypted at rest using AES-256 encryption standards.

Access Controls

Strict access controls ensure that only authorized personnel can access your information. All staff undergo background checks and sign confidentiality agreements.

Secure Infrastructure

Our servers are hosted in secure data centers with 24/7 monitoring, redundant systems, and regular security audits.

Data Backup

Regular encrypted backups ensure your information is protected against data loss. Backup systems are tested regularly.

Monitoring

Continuous security monitoring and intrusion detection systems help identify and respond to potential threats.

Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

  • Active Accounts: Information is retained while your account is active
  • Service Records: Educational consulting records are retained for 7 years to comply with professional standards
  • Marketing Communications: Preferences are retained until you unsubscribe
  • Legal Requirements: Some information may be retained longer to comply with legal obligations
Data Deletion: You can request deletion of your personal information at any time by contacting us. We will comply with your request unless we are required to retain the information for legal or legitimate business purposes.

Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

Access and Review

You have the right to request access to the personal information we hold about you and receive a copy of this information.

Correction

You can request correction of inaccurate or incomplete personal information we hold about you.

Deletion

You can request deletion of your personal information, subject to certain exceptions as required by law.

Restriction

You can request restriction of processing of your personal information under certain circumstances.

Portability

You have the right to receive your personal information in a structured, commonly used format and transfer it to another service provider.

Objection

You can object to processing of your personal information for direct marketing purposes or when processing is based on legitimate interests.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided in the Contact Us section. We will respond to your request within 30 days as required by applicable law.

Verification Process

For your protection, we may need to verify your identity before processing your request. This may include:

  • Providing information to confirm your identity
  • Responding to security questions
  • Providing proof of legal authority if making a request on behalf of someone else

Marketing Preferences

You can opt out of receiving marketing communications from us at any time:

  • Click the "unsubscribe" link in any marketing email
  • Contact us directly to update your preferences
  • Adjust your account settings if you have an online account
Important: Even if you opt out of marketing communications, we may still send you important service-related messages regarding your account, appointments, or educational services.

Cookies and Tracking Technologies

What Are Cookies?

Cookies are small text files that are placed on your device when you visit our website. They help us provide you with a better experience by remembering your preferences and understanding how you use our services.

Types of Cookies We Use

Essential Cookies

These cookies are necessary for the website to function properly. They enable basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

Examples: Session management, authentication, security tokens

Analytics Cookies

These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. This helps us improve our services and user experience.

Examples: Google Analytics, user behavior tracking, page performance metrics

Functional Cookies

These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third-party providers whose services we have added to our pages.

Examples: Language preferences, form auto-fill, video player settings

Marketing Cookies

These cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third-party advertisers.

Examples: Facebook Pixel, Google Ads, remarketing tags

Cookie Management

You can control and manage cookies in various ways:

  • Browser Settings: Most web browsers allow you to control cookies through their settings
  • Cookie Consent Tool: Use our cookie consent banner to manage your preferences
  • Opt-out Tools: Use industry opt-out tools like the Network Advertising Initiative
Important: Disabling certain cookies may affect the functionality of our website and limit your ability to use some features of our services.

Other Tracking Technologies

In addition to cookies, we may use:

  • Web Beacons: Small graphic images that track user behavior
  • Local Storage: Browser-based storage for user preferences
  • Session Storage: Temporary storage for session management
  • Pixel Tags: Tracking pixels for analytics and marketing

Third-Party Services

Our website and services may contain links to or integrate with third-party websites, services, and applications. These third parties have their own privacy policies and practices:

Google Services

We use Google Analytics for website analytics and Google Ads for advertising. Google's privacy policy can be found at policies.google.com/privacy

Social Media Platforms

We integrate with Facebook, LinkedIn, Twitter, and Instagram for social media features. Each platform has its own privacy policy governing the use of your information.

Payment Processors

We use Stripe and PayPal for payment processing. These services handle your payment information according to their own privacy policies and security standards.

Video Conferencing

We use Zoom and Google Meet for virtual consultations. These platforms have their own privacy policies regarding the collection and use of your information during sessions.

Third-Party Privacy Practices

We are not responsible for the privacy practices of third-party services. We encourage you to review the privacy policies of any third-party services you interact with through our platform.

External Links: Our website may contain links to external websites that are not operated by us. We are not responsible for the content or privacy practices of these external sites.

Children's Privacy

We are committed to protecting the privacy of children and comply with the Children's Online Privacy Protection Act (COPPA) and other applicable child protection laws.

Age Requirements

Our services are intended for users who are:

  • 13 years or older in the United States
  • 16 years or older in the European Economic Area (or younger if permitted by local law)
  • 18 years or older for certain services that require adult consent

Parental Consent

For users under the age of 18:

  • We require parental consent before collecting personal information
  • Parents can review, modify, or delete their child's information
  • Parents can refuse further collection or use of their child's information
  • We provide notice to parents about our information practices
Parental Controls: Parents can contact us at [email protected] to review their child's information, request deletion, or refuse further collection. We will respond to all parental requests within a reasonable timeframe.

Educational Exception

In certain educational contexts, we may collect information from students under 13 with appropriate school consent and for educational purposes only. In these cases, we follow strict COPPA compliance procedures.

International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States, where our servers and service providers are located.

Cross-Border Data Transfers

When we transfer your information internationally, we implement appropriate safeguards:

  • Standard Contractual Clauses: Approved by the European Commission for data transfers
  • Privacy Shield Framework: Where applicable, we comply with Privacy Shield principles
  • Adequacy Decisions: We transfer data to countries with adequate privacy protection as determined by relevant authorities
  • Binding Corporate Rules: Where applicable, we implement binding corporate rules for data protection

Regional Privacy Rights

European Union (GDPR)

Users in the EU have specific rights under the General Data Protection Regulation, including the right to access, rectify, erase, restrict processing, data portability, and object to processing.

California (CCPA/CPRA)

California residents have rights under the California Consumer Privacy Act, including the right to know, delete, and opt out of the sale of personal information.

Canada (PIPEDA)

Canadian users have rights under the Personal Information Protection and Electronic Documents Act, including the right to access and challenge the accuracy of their personal information.

International Users: If you have questions about international data transfers or your rights under local privacy laws, please contact our Data Protection Officer at [email protected]

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. We will notify you of any material changes through:

  • Email notification to registered users
  • Prominent notice on our website
  • In-app notifications for mobile users
  • Updates to the "Last Updated" date at the top of this policy

Policy Version History

Version 2.1 - November 19, 2025
  • Updated international data transfer procedures
  • Added new cookie categories
  • Enhanced children's privacy protections
Version 2.0 - June 15, 2025
  • Comprehensive policy rewrite for GDPR compliance
  • Added data portability rights
  • Enhanced security measures description
Version 1.0 - January 1, 2025
  • Initial privacy policy implementation
  • Basic data protection framework
Continued Use: Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of the updated policy. If you do not agree with the changes, you should stop using our services and contact us to delete your account.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email

Privacy Officer: [email protected]

Data Protection Officer: [email protected]

General Inquiries: [email protected]

Phone

Toll-Free: +1-800-EDU-HUB1

Direct: +1-212-555-0123

Business Hours: Mon-Fri 9AM-6PM EST

Mail

Privacy Compliance Department
EduConsult Hub
123 Education Boulevard
New York, NY 10001
United States

Response Time

We are committed to responding to all privacy-related inquiries within:

  • 24 hours: For urgent privacy concerns
  • 3 business days: For general privacy questions
  • 30 days: For formal data subject requests under GDPR or other privacy laws

Escalation Process

If you are not satisfied with our response to your privacy concern, you may:

  • Request escalation to our Chief Privacy Officer
  • File a complaint with your local data protection authority
  • Contact your state attorney general or consumer protection office
Data Breach Notification: In the event of a data breach that may affect your personal information, we will notify you and relevant authorities as required by law. For urgent breach notifications, please contact our Security Team at [email protected]