Privacy Policy
Last updated: 2026-01-01
Who we are
DirectCore BloomLab (“we”, “us”, “our”) provides online courses for paper floristry at directcore.bond. We are committed to safeguarding your information and being transparent about our practices.
Data we collect
- Account data: name, email, and password hash when you create an account.
- Transaction data: course purchases, billing email, and timestamps.
- Learning data: module progress, completion timestamps, assessment attempts.
- Support data: messages you send through our contact form or email.
- Device data: browser type, approximate region, pages visited (aggregated analytics).
How we use data
- To provide access to purchased courses and maintain your learning records.
- To process payments through our payment partners.
- To send essential service messages (receipts, access instructions, policy changes).
- To improve our courses and support, using aggregated analytics.
Legal bases
- Contract: providing course access you purchase.
- Legitimate interests: maintaining platform security and improving content.
- Consent: optional communications and cookie preferences.
Cookies and localStorage
We use necessary cookies and localStorage to remember theme preferences, cookie consent, cart content, and saved courses (“Fallows”). You can clear these in your browser settings. Our cookie banner lets you acknowledge this usage.
Data sharing
We do not sell personal data. We share minimal data with vendors strictly to deliver our service (e.g., payment and email providers) under data protection agreements.
Retention
Account and learning records are retained while your account is active. Transaction records are stored for the period required by applicable law. Support messages are retained for up to 24 months.
Your rights
Depending on your region, you may have rights to access, correct, export, restrict, object to processing, or delete your data. Contact [email protected] to exercise rights. We may verify your identity before fulfilling a request.
Security
We employ encryption in transit, access controls, and internal policies. No method is 100% secure; we continuously improve our safeguards.
International transfers
If data is processed outside your region, we implement appropriate safeguards such as standard contractual clauses.
Children
Our services are not directed to children under 13. We do not knowingly collect data from children. If you believe a child has provided data, contact us to remove it.
Changes
We may update this policy to reflect changes to our practices. Material updates will be announced on directcore.bond.
Contact
Email: [email protected] • Phone: +1 (415) 915-2047