Privacy policy
What we collect
Account data: name, email, role, language, and timezone.
Enrollment data: applications, enrollment states, deliverable uploads, mentor feedback, contribution logs, and certificates.
Payment references only: gateway transaction references, amounts, VAT lines, and bank transfer references. We never store card numbers or CVVs; cards are handled entirely by the payment gateway.
Files you upload: mentor CVs, stage deliverables, and transfer receipts, stored in private storage and served only through short-lived signed links.
How we use it
To run the service: matching you to projects, processing payments, logging contributions, issuing certificates, and sending transactional email about your account and enrollments. We do not sell personal data.
Processors
Supabase provides the database, authentication, and file storage. Stripe processes card payments. Resend delivers transactional email. Each processor receives only what it needs for its function.
Storage and security
User documents live in private storage buckets accessed through signed URLs, never public links. Database access is restricted row by row, so users can read only their own records. Admin actions are written to an audit log.
Your choices
You can update your profile, language, and timezone from your dashboard. For corrections or questions about your data, contact the team and we will respond.
Contact
A dedicated privacy contact email will be published here before launch. Until then, replies to any platform email reach the operator.
Plain-language version for the pilot; a legal review pass is scheduled before scale.
