Draft for legal review (OQ-10)
Privacy policy.
How the Syrian Diving Academy collects, stores, and uses your information. Last reviewed: July 2026.
What we store.
Account details — your name, email address, and a securely hashed password. We never store passwords in plain text.
Learning records — course enrollments, lesson progress, quiz scores, practical sign-offs, certificates and Diver IDs, and your dive log.
Payment records — orders, invoices, and payment status. For bank transfers we store the proof of payment you upload. Card payments are processed by the payment provider; we never see or store full card numbers.
Consent choices — the cookie and pixel categories you accept or decline, so we can honour them.
Contact and interest submissions — messages you send us and the email address you leave when registering interest.
What we never do.
We do not sell your personal data to anyone.
Marketing and analytics pixels load only after you consent — decline them and they stay off.
We collect what the academy needs to teach, certify, and stay in touch — nothing more.
Your choices.
Ask for a copy of your data, or ask us to erase it, by writing to hello@sda-sy.com from your account email. Records that back an issued credential are retained for registry integrity; everything else is erased.
Change your cookie choices at any time via Cookie preferences in the footer.
Security and retention.
Your data lives in the academy's own database, with access restricted by role and privileged actions audit-logged. We keep records only as long as their purpose requires or the law demands.
Questions — hello@sda-sy.com · Ocean Crest Collective, Antakia St, Lawyers' Building, Latakia.
