Last updated: October 16, 2025

This Privacy Policy explains how Class Once ("Class Once,” "we,” "our,” or "us”) collects, uses, discloses, and protects personal information when you visit https://www.classonce.com, use our web or mobile services, or otherwise interact with us (collectively, the "Services").

If you do not agree with this Policy, please do not use the Services. By using the Services, you consent to the practices described here.

​

1) Who we are & how to contact us

• Data controller: Class Once, [LEGAL ENTITY NAME], [REGISTERED ADDRESS].

• Contact email: info@classonce.com

​

2) The information we collect

We collect personal information directly from you, automatically when you use the Services, and from third parties.

​

A. Information you provide

• Account & identity: name, email, phone, password, country, time zone.

• Profile & preferences: test targets (SAT/GMAT/GRE/IELTS), language, learning goals, availability.

• Transactions: billing name, address, VAT/TIN (where applicable). We do not store full payment card numbers—payments are processed by our payment providers.

• Class content: assignments, messages, uploaded files, quiz responses, whiteboard notes.

• Communications: support requests, feedback, survey responses.

​

B. Information we collect automatically

• Usage & device data: IP address, browser type, settings, device identifiers, pages viewed, referring URLs, session duration.

• Cookies & similar technologies: pixels, local storage, and SDKs for authentication, preferences, analytics, and (if enabled) marketing. See Cookies below.

• Session media (if enabled): live class recordings (audio/video/screen), chat logs, and attendance.

​

C. Information from third parties

• Payment processors: transaction status and limited payment metadata.

• Login providers (if used): your name and email from SSO/social login.

• Analytics & ads partners (if enabled): aggregated insights and attribution.

​

3) How we use personal information

We use information to:

1. Provide, operate, and secure the Services (class scheduling, live sessions, assignments, grading, customer support).

2. Personalize content (recommended classes, reminders, learning paths).

3. Process payments, invoices, and detect/prevent fraud or abuse.

4. Communicate with you (service updates, security alerts, administrative messages).

5. Conduct analytics to improve performance, quality, and UX.

6. Send optional marketing communications (you can opt out at any time).

7. Comply with legal obligations and enforce our Terms.

GDPR/UK GDPR legal bases: performance of a contract, legitimate interests (e.g., security, product improvement), compliance with legal obligations, and consent where required (e.g., certain cookies/marketing, recordings in some jurisdictions).

​

4) Sharing & disclosure

We do not sell your personal information.
We may share information with:

• Service providers/Processors: cloud hosting, video conferencing, email/SMS, analytics, customer support, and payment processing—bound by contract to process data only on our instructions.

• Tutors/Instructors: limited profile and session activity necessary to deliver your class.

• Other participants: your display name, chat, and audio/video during live sessions (as you choose to share).

• Business transfers: in a merger, acquisition, or asset sale, subject to this Policy.

• Legal & safety: to comply with law, lawful requests, or to protect rights, safety, and the integrity of our Services.

​

5) International data transfers

We operate globally and may transfer, store, and process information in countries other than your own. Where required, we use appropriate safeguards (e.g., EU Standard Contractual Clauses) to protect your information. Details available on request.

​

6) Data retention

We keep personal information only as long as necessary for the purposes described above, including to comply with legal, tax, accounting, or reporting requirements, resolve disputes, and enforce agreements. Typical retention examples:

• Account data: for the life of the account and up to [1 year] after closure.

• Class recordings/logs: [1 year] (or as required by law/your settings).

• Transaction records: [1 year] for tax and compliance.

​

7) Your rights

Depending on your location (e.g., EU/UK, KSA, certain US states), you may have rights to:

• Access, correct, or delete your information.

• Object to or restrict certain processing.

• Data portability.

• Withdraw consent at any time (processing prior to withdrawal remains lawful).

• Lodge a complaint with your local data protection authority.

To exercise rights, contact us at [PRIVACY EMAIL]. We may need to verify your identity to process requests.

​

8) Children & teens

Our Services are intended for learners typically 13+. If you are under the age required by your country, you must use the Services only with a parent/guardian’s consent and supervision. If we learn we have collected personal information from a child without required consent, we will delete it. Parents/guardians can request access or deletion via [PRIVACY EMAIL].

​

9) Security

We employ administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, access controls, secure development practices, and vendor due diligence. However, no method is 100% secure; you use the Services at your own risk.

​

10) Cookies & tracking

We use:

• Strictly necessary cookies: authentication, security, fraud prevention.

• Preferences: remember settings (language, time zone).

• Analytics: usage metrics to improve the Services.

• Marketing/ads (optional): if enabled, to measure campaigns.

You can manage cookies via your browser settings and, where available, our cookie banner/preferences center. Some features may not function without certain cookies.

Do Not Track: We do not respond to DNT signals at this time.

​

11) Third‑party services

The Services may link to third‑party sites or integrate with tools (e.g., payment processors, video platforms). Their privacy practices are governed by their own policies. We encourage you to review them.

​

12) Communications

You may opt out of marketing emails at any time by using the unsubscribe link in the message or contacting us at [PRIVACY EMAIL]. We may still send transactional or service messages.

​

13) Instructor/Tutor privacy

If you teach through Class Once, we process your profile, qualifications, payout details (through our payment provider), scheduling, and session activity to operate the marketplace/classroom environment and comply with legal obligations (e.g., tax, AML/KYC where applicable).

​

14) Region‑specific disclosures

• European Economic Area/UK: Class Once is the controller of EEA/UK personal data. Where required, we rely on consent for certain cookies/recordings and on SCCs for transfers. You may contact your local DPA or the UK ICO.

• Kingdom of Saudi Arabia (PDPL): Where PDPL applies, we process your data per lawful bases under PDPL, and we will not transfer your data outside KSA except in compliance with PDPL’s transfer rules and safeguards.

• United States (e.g., California): We do not sell or share personal information as defined under the CCPA/CPRA. You may request access/deletion/correction as described above.

​

15) Changes to this Policy

We may update this Policy from time to time. The "Last updated" date indicates the latest revision. Material changes will be notified via email or in‑app notice. Your continued use of the Services after changes means you accept the updated Policy.

​

16) Contact

Questions about this Policy or our privacy practices? Contact us:

Class Once – Privacy
Email: info@classonce.com

​