Privacy Policy

We collect personal data across three major categories:

A. DATA WE COLLECT FROM STUDENTS & PARENTS/CLIENTS

• Full Name

• Email address

• Phone number

• Home address (if required for invoicing or verification).

• Student academic records (optional and only with consent).

• Learning preferences and performance insights.

• Payment information (processed securely via third-party gateways).

• Communication history with our support team

• Device and usage data when using our platforms.

• Emergency contact details (when required).

B. DATA WE COLLECT FROM TUTORS, TRAINERS & CONTRACTORS

• Full name and contact information

• Identity documents (e.g., NIN, international passport, driver’s license).

• Academic qualifications and certifications.

• Employment history.

• Bank details for payment processing.

• Attendance logs, performance metrics, teaching reports.

• Login, app usage, and work-related activity on our platforms.

• Video recordings of training or teaching sessions (where applicable).

• Background verification information.

• Login, app usage, and work-related activity on our platforms.

C. DATA WE COLLECT FROM EMPLOYEES & ADMIN STAFF

• Full personal information for HR and onboarding.

• Payroll and tax-related information.

• Employment documents and records.

• Login and access logs.

• Internal communication data.

• Work device information (where applicable).

D. DATA WE COLLECT FROM WEBSITE VISITORS

• IP address.

• Browser type and device information.

• Cookies and user behaviour data.

• Pages visited and time spent.

• Referrer URLs (where applicable).

We use data strictly for legitimate business purposes, including:

For Students & Parents:

• Delivering tutoring, tech training, and educational services.

• Personalizing learning experiences.

• Scheduling classes and monitoring progress.

• Processing payments and issuing invoices.

• Customer support and communication.

• Maintaining academic records (only with consent).

For Tutors & Staff:

• Recruitment, onboarding, and identity verification.

• Assigning classes and managing work schedules.

• Performance evaluation and quality control.

• Processing remuneration and incentives.

• Maintaining attendance and compliance records.

• Communicating organizational updates.

For Website Visitors:

• Analytics to improve website performance.

• Enhancing user experience.

• Ensuring security and preventing fraud.

• Consent: Users willingly provide information.

• Contractual necessity: To deliver academic tutoring, tech training, wellness program or employment services.

• Legal obligation: Tax, accounting, regulatory compliance.

• Legitimate interest: Improving services, preventing misuse.

We do not sell personal information.
However, we may share data with the following, strictly when necessary:

Third-Party Service Providers

• Payment processors.

• Learning management tools.

• Cloud storage platforms.

• Communication platforms (such as Email/SMS services).

Regulatory Bodies

• Nigeria Data Protection Commission (NDPC).

• Tax authorities.

Internal Departments

• Academic, HR, Tech, and Admin units.

• Tutors and staff directly involved in service delivery.

Partner Schools & Organizations

• Only with formal consent.

We ensure all third parties are in compliance with the requirement of NDPA 2023 data protection standards.

If any processing involves tools hosted outside Nigeria, we ensure:

• Compliance with approved data transfer mechanisms.

• Transfer to jurisdictions with adequate data protection.

• Secure encryption and confidentiality.

We retain data only for as long as necessary:

• Student and parent records: Five (5) years after last engagement.

• Tutor and staff records: Seven (7) years after exit.

• Financial records: Seven (7) years (legal requirement).

• Website analytics: Within 24 months.

Users may request earlier deletion where applicable (see “Your Rights Under NDPA”).

YoungAndCode Limited uses:

• End-to-end encryption.

• Secure cloud infrastructure.

• Anti-intrusion systems.

• Regular security audits.

• Strict role-based access for staff.

We train all staff on data privacy and confidentiality.

We handle minors’ data with extra safeguards:

• Parental or guardian consent is always required.

• Only necessary educational data is collected.

• Access to such data is restricted to authorized staff.

• We never use children's data for marketing.

All users including students, parents, tutors, staff, and partners retain the following rights:

• Right to access personal data.

• Right to rectify inaccurate information.

• Right to withdraw consent.

• Right to data portability.

• Right to restriction of processing.

• Right to object to certain processing.

• Right to request data deletion (This is subject to termination of service).

• Right to lodge a complaint with NDPC.

Requests will be fulfilled within 30 days.

Our website uses:

• Essential cookies (for login and security).

• Analytics cookies.

• Functional cookies.

Users may disable cookies via browser settings, though some features may not work correctly.

In the event of a security breach:

• Affected users will be notified within 72 hours.

• NDPC will be informed.

• Mitigation and recovery steps will be executed immediately.

For privacy-related inquiries, data requests, or concerns:

• Data Protection Officer (DPO).

• Email: privacy@youngandcodeltd.com

• Phone: +2349043213172