Critikid Logo

Privacy Policy

Last updated: August 29, 2025

This Privacy Policy explains how Stephanie Simoes I/E (doing business as “Critikid”, “we”, “us”, or “our”) collects, uses, shares, and protects personal information when you use our websites, products, and services.

By using our Services, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use our Services.

1. Information We Collect

Information you provide directly

  • Contact details (name, email).

  • Login information: When you access course materials, you log in by email (via one-time passcode or Google login). We do not store passwords.

  • Purchases: We use Paddle, Inc. as our merchant of record. Paddle processes payments on our behalf using Stripe (credit card payments) and PayPal (PayPal payments). We do not see or store your full card details.

  • Communications: Messages you send us (support requests, testimonials, survey responses).

Information collected automatically

  • Device and usage data (IP address, browser type, device type, pages visited, time spent, referring URL, approximate location).

  • Cookies and similar technologies (see Section 3).

Information from service providers

  • Payment status and fraud-prevention signals from Paddle.

  • Analytics data from Umami, a privacy-focused analytics tool.

  • Advertising performance metrics from Meta (Facebook/Instagram) via the Meta pixel.

2. How We Use Information

We use personal information to:

  • operate and improve our website, courses, and store;

  • deliver purchased products and free resources;

  • provide customer support;

  • send administrative emails (e.g., receipts, service updates);

  • send newsletters and educational emails you subscribe to;

  • personalize and measure marketing and deliver targeted advertising (see Section 3);

  • detect, prevent, and address fraud or abuse;

  • comply with legal obligations.

Legal bases under GDPR/UK GDPR (if applicable):

  • Contract: to provide purchased services.

  • Consent: for marketing and non-essential cookies/pixels.

  • Legitimate interests: for analytics, site improvement, and limited marketing to existing customers.

  • Legal obligation: to comply with tax, accounting, or regulatory requirements.

3. Cookies, Pixels, and Analytics

We use cookies and similar technologies (e.g., web beacons, pixels, scripts) for functionality, analytics, and marketing.

Meta Pixel

We use the Meta (Facebook/Instagram) pixel to understand how visitors use our site and to show relevant ads on Meta platforms. The pixel may collect information about your device, pages visited, and actions like purchases. Meta may combine this with other data they hold.

You can opt out of Meta personalized ads via Meta’s Ad Preferences.

Analytics (Umami)

We use Umami, which collects anonymous information about website usage (e.g., which pages are visited, for how long). It does not use tracking cookies or identify individual visitors.

Your choices

  • Manage cookies in your browser settings.

  • Use our Cookie Notice (linked in the footer) to opt out of non-essential cookies/pixels.

  • Use advertising platform opt-outs (Meta, Google Ads, YourAdChoices).

4. When We Share Information

We do not sell personal information for money. We share only as necessary:

  • Service providers (hosting, email delivery, analytics, advertising, payments).

  • Business transfers (e.g., sale or merger of our business).

  • Legal/safety (to comply with law or protect rights/safety).

Note: Under some US state privacy laws, use of advertising pixels may be considered a “sale” or “sharing” for targeted advertising. See Section 8 for opt-out rights.

5. International Data Transfers

Our website is hosted in Germany. Some providers (Meta, Paddle, Stripe, PayPal) are outside the EU. When data is transferred, we use safeguards such as Standard Contractual Clauses or rely on providers’ compliance programs.

6. Security

We use technical and organizational measures (encryption in transit, access controls) to protect personal information. No method is 100% secure.

7. Data Retention

We keep personal information as long as needed to provide services, fulfill contracts, or meet legal requirements. When no longer needed, we delete or anonymize data.

8. Your Rights

Depending on your location, you may have rights including:

  • Access to your personal data.

  • Correction of inaccurate data.

  • Deletion of data.

  • Restriction or objection to processing.

  • Data portability.

  • Withdrawal of consent (where processing is based on consent).

EEA/UK/Switzerland: You may contact your local data protection authority to complain.
Canada: You may withdraw consent at any time.
United States (state privacy laws, e.g., California): You may have additional rights to opt out of sale/sharing for targeted advertising. To exercise this, email privacy@critikid.com with subject line “Do Not Sell/Share My Personal Information.”

9. Children’s Privacy

Our services are intended for parents, homeschoolers, and teachers. We do not knowingly collect personal data directly from children under 13 without parental consent. Parents may choose to register with a child’s email address to access learning content; by doing so, you consent to that use. If you believe we collected a child’s data without consent, contact us to delete it.

10. Marketing Choices

  • Emails: Unsubscribe anytime via the link in our emails or by contacting us.

  • Cookies & pixels: Manage in your browser, via our Cookie Notice, or through ad platform preferences.

11. Do Not Track

We do not currently respond to browser “Do Not Track” signals, but we honor Global Privacy Control (GPC) where legally required.

12. Changes to This Policy

We may update this policy from time to time. The “Last updated” date shows when it was last revised. Significant updates will be posted on this page or emailed to subscribers.

13. Contact Us

Controller: Stephanie Simoes I/E (dba Critikid)
Email: privacy@critikid.com
Postal: Tbilisi, Georgia