Privacy Policy

Introduction

At Cloud Course (operated by Not Just Software Inc.), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our service at cloudcourse.dev or interact with our CLI tool.

This policy applies to all services provided by Cloud Course, including our website, learning platform, CLI tool, and support services.

1. Information We Collect

1.1 Account Information

  • Full name
  • Email address
  • Payment information (processed securely through Stripe)
  • IP address and basic device information
  • Account creation date and purchase history
  • Country of residence

1.2 Course Progress Data

  • Completion status of course modules
  • Assessment results and quiz scores
  • Interactions with course content (e.g., video views, download history)
  • Time spent on each course section
  • CLI assessment attempts and results

1.3 AWS Infrastructure Data

When you use our CLI application, it accesses your AWS infrastructure using your local AWS credentials to verify your progress. We do not store your AWS credentials, but our application does process information about your AWS resources to provide feedback on your course exercises.

This includes:

  • AWS Account ID (for assessment tracking)
  • Resource identifiers related to course exercises (e.g., EC2 instance IDs, S3 bucket names)
  • Configuration details of AWS resources (e.g., security group settings, VPC configurations)
  • Assessment timestamps and completion status

1.4 Communication Data

  • Support tickets and email correspondence
  • Survey responses and feedback submissions
  • Discord community participation (if you choose to join)

1.5 Website Usage Data

  • Cookies and similar tracking technologies
  • Browser type and version
  • Operating system information
  • Referring website addresses
  • Pages visited and time spent on pages
  • Features and content accessed

2. How We Use Your Information

2.1 To Provide Our Service

  • Creating and managing your account
  • Processing payments and fulfilling purchases
  • Tracking your course progress and assessment completion
  • Providing feedback on practical exercises
  • Sending transactional emails related to your account and course updates
  • Authenticating your access to course content
  • Providing customer support and responding to inquiries

2.2 For Service Improvement

  • Analyzing usage patterns to improve our content
  • Identifying technical issues with our platform
  • Evaluating the effectiveness of our course materials
  • Developing new features and content

2.3 Marketing Communications

We may send marketing emails about new courses, features, or related content only if you explicitly opt-in to receive such communications. Each marketing email will include an unsubscribe link allowing you to opt-out at any time.

  • Preventing and addressing fraud or security issues
  • Complying with legal obligations
  • Enforcing our Terms of Service
  • Protecting our rights, property, or safety

3. Data Retention

We retain your personal information for as long as your account remains active or as needed to provide you services. Specifically:

  • Account information: Retained as long as your account is active, plus 3 years for legal and business purposes
  • Course progress data: Retained as long as your account is active
  • AWS assessment data: Retained for 1 year after collection
  • Payment information: Retained in accordance with financial regulations (typically 7 years)
  • Communication records: Retained for 2 years after the last interaction
  • Website usage data: Retained for 1 year

If you choose to delete your account, we will delete or anonymize your personal information within 30 days, except for information we may need to retain for legal, financial, or business purposes.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using TLS
  • Regular security assessments of our systems
  • Access controls and authentication procedures
  • Employee training on data protection
  • Regular backups and disaster recovery planning

While we implement strong security practices, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security, but we continuously work to improve our security practices.

5. Third-Party Services

5.1 Payment Processing

We use Stripe to process payments. When you make a purchase, you provide your payment information directly to Stripe. Please review Stripe's Privacy Policy for information on how they handle your data.

5.2 Database Services

We use Turso for database services to store your account information and course progress. Turso helps us provide a reliable and performant experience. For more information, please see Turso's Privacy Policy.

5.3 Analytics

We use DollarAnalytics to collect anonymous usage data about how our website and course materials are used. This helps us improve our content and user experience. For more information, please see DollarAnalytics' Privacy Policy.

5.4 Email Communications

We use Amazon SES (Simple Email Service) to send transactional and (if you've opted in) marketing emails. Email activity may be logged by Amazon SES according to their privacy policy. For more information, please see the AWS Privacy Notice.

5.5 Web Hosting and Content Delivery

Our website and content are hosted on AWS (Amazon Web Services) and Cloudflare. These services help us deliver content securely and efficiently. For more information, please see AWS's Privacy Notice and Cloudflare's Privacy Policy.

5.6 Discord Community

We offer an optional Discord community for course participants. Discord is a separate service with its own privacy policy. We do not share your data with Discord, and participation in the Discord community is entirely optional. For more information, please see Discord's Privacy Policy.

6. Your Rights

Depending on your location, you may have certain rights regarding your personal data. These rights may include:

6.1 Access and Information

  • Right to access the personal information we hold about you
  • Right to know how your data is being used and with whom it is shared

6.2 Correction and Deletion

  • Right to request correction of inaccurate data
  • Right to request deletion of your data (subject to any legal obligations we may have)

6.3 Data Portability

  • Right to receive a copy of your data in a structured, machine-readable format
  • Right to request transfer of your data to another service

6.4 Marketing Choices

  • Right to opt-out of marketing communications
  • Right to object to profiling or automated decision-making

6.5 Complaints

  • Right to lodge a complaint with a supervisory authority

To exercise any of these rights, please email support@cloudcourse.dev with "Privacy Request" in the subject line. We will respond to your request within 30 days.

7. Account Deletion

You may request deletion of your account by emailing support@cloudcourse.dev with "Account Deletion Request" in the subject line. Please note that account deletion will result in:

  • Loss of access to the course content
  • Removal of your personal information from our active systems
  • Deletion of your course progress data
  • Cancellation of any ongoing subscriptions without refund

We will process your account deletion request within 30 days. Some information may be retained in backup systems for a limited time or as required by law.

8. Children's Privacy

Our course is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us at support@cloudcourse.dev, and we will promptly remove the information.

9. International Data Transfers

As we offer our course globally, your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure that appropriate safeguards are in place when transferring personal data internationally, such as:

  • Using EU-approved Standard Contractual Clauses
  • Ensuring third-party service providers comply with privacy shield frameworks
  • Only working with service providers that provide adequate data protection

10. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and personalize content. We use the following types of cookies:

  • Essential cookies: Necessary for the website to function properly
  • Preference cookies: Remember your settings and preferences
  • Analytics cookies: Help us understand how you use our website
  • Marketing cookies: Used to deliver relevant advertisements (only with consent)

You can control cookies through your browser settings. However, disabling certain cookies may impact website functionality.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by:

  • Posting the new Privacy Policy on our website
  • Sending an email to registered users
  • Displaying a notice on our platform

The "Last Updated" date at the bottom of this Policy indicates when it was last revised. We encourage you to review this Policy periodically to stay informed about our data practices.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: support@cloudcourse.dev Subject: Privacy Policy Inquiry

Postal Address:
Not Just Software Inc.
[Your Physical Address]
British Columbia, Canada

Cloud Course CLI Tool - Privacy Policy

This policy addresses how the Cloud Course CLI tool ("cloud-course") processes your AWS account information.

AWS Account Access

The Cloud Course CLI tool requires access to your AWS account to assess your infrastructure setup as part of the course tutorials. Here's how we handle this access:

  1. Authentication Method: The CLI tool uses AWS SSO (Single Sign-On) for authentication. This means:

    • You authenticate directly with AWS using your existing AWS SSO credentials
    • We never receive, store, or have access to your AWS credentials
    • Authentication tokens are managed by the AWS SDK and stored according to AWS security practices

  2. AWS Services Accessed: The CLI tool performs read-only operations on various AWS services to verify your tutorial implementation, including:

    • EC2 (instances, security groups, etc.)
    • S3 (buckets, permissions, etc.)
    • Route 53 (DNS configurations)
    • CloudFront (distributions)
    • RDS (database instances)
    • CloudWatch (logs, metrics)
    • IAM (roles, policies)
    • VPC (network configurations)
    • And other services covered in course tutorials

  3. Principle of Least Privilege: The CLI tool only requires read access to these services - it does not modify your infrastructure.

Assessment Data Collection

When you run an assessment using the CLI tool, we collect and process the following data:

  1. AWS Account ID: We store your AWS account ID solely for the purpose of identifying your account for assessment tracking.

  2. Assessment Results: We collect and store the results of your assessments, including:

    • Which tutorials you've completed
    • What aspects of the tutorial implementation were correct or incorrect
    • Timestamps of assessment completions
    • Specific resource identifiers that were assessed (e.g., S3 bucket names, EC2 instance IDs)

  3. Data Transmission: Assessment data is transmitted securely to our servers using TLS encryption.

How We Use CLI Data

We use the collected assessment data solely for:

  1. Tracking your progress through the course
  2. Providing personalized feedback on your tutorial implementations
  3. Verifying completion of course exercises for certification purposes (if applicable)
  4. Improving course content based on common implementation challenges
  5. Identifying areas where additional help resources may be needed

Security Measures for CLI Data

To protect assessment data, we implement the following security measures:

  1. All data is encrypted in transit using TLS
  2. Assessment data is stored in secure databases with appropriate access controls
  3. AWS Account IDs are stored separately from other assessment data
  4. We follow secure development practices for the CLI tool
  5. Regular security audits of our systems and procedures

Data Retention for CLI Data

  1. AWS Account ID: We retain your AWS account ID for as long as you maintain an active account on our platform.

  2. Assessment Results: Assessment results are retained for the duration of your account, allowing you to track your progress over time.

  3. Logs and Debugging Data: CLI tool logs and debugging information are retained for 30 days to help troubleshoot technical issues.

Upon account deletion, we remove your AWS account ID and associated assessment data from our active systems within 30 days, subject to legal retention requirements.

Sharing CLI Data

We do not share your CLI assessment data with third parties except in the following limited circumstances:

  1. With service providers who assist in operating our platform
  2. When required by law or legal process
  3. To protect our rights, property, or safety

Your Control Over CLI Data

You can control the CLI data we collect by:

  1. Choosing when to run assessments
  2. Using a dedicated AWS account for course exercises
  3. Requesting deletion of your assessment data by contacting support

Last updated: April 15, 2025

© 2025 Cloud Course. All rights reserved.