Skip to main content

Privacy Policy

Last Updated: March 17, 2026

This Privacy Policy explains how moryvexis ("we") collects, uses, and protects your personal data when you visit this website and when you request information about Home Improvement Academy. It also explains your rights and how to manage cookie preferences.

1. Introduction & Controller Identity

moryvexis is the data controller for the personal data described in this Privacy Policy. This means we decide why and how your personal data is processed.

Controller contact details:

Effective Date: March 17, 2026.

2. Personal Data We Collect

We collect personal data that you provide directly and data that is collected automatically when you use the website. The categories below may apply depending on how you interact with us.

  • Identity and contact data: first name, last name, email address. (We do not require phone numbers for registration.)
  • Form content: information you include in your learning goals or messages, such as role context (showroom, retail, in-home consultation) and topics you want to improve.
  • Technical data: IP address, browser type and version, device type, operating system, language settings, and approximate location derived from IP (city/region level).
  • Usage data: pages viewed, time spent, referring page, click paths, and interactions that help us understand how the site is used.
  • Cookies and identifiers: cookie identifiers and consent settings described in Section 4.
  • Conversion events: events like a registration request submission, used to measure whether people find the site content useful.

We do not intentionally collect special-category data (such as health information, religious beliefs, political opinions), financial account details, or government-issued identification numbers through this website.

3. Why We Process Personal Data & Legal Basis

We process personal data only when we have a lawful basis under the GDPR and applicable local laws. The lawful basis depends on the purpose:

  • Responding to your registration request: to send the syllabus, course details, scheduling information, and to answer questions. Legal basis: GDPR Art. 6(1)(b) (steps prior to entering a contract) and Art. 6(1)(a) (consent when you submit the form with consent checkbox).
  • Analytics and site improvement: to understand which pages and topics are useful and to fix usability issues. Legal basis: GDPR Art. 6(1)(a) (consent), where required.
  • Marketing measurement and remarketing: to measure advertising performance and, where enabled, show relevant ads to people who previously visited the site. Legal basis: GDPR Art. 6(1)(a) (consent), where required.
  • Security and fraud prevention: to protect the website and users, prevent abuse, and maintain service integrity. Legal basis: GDPR Art. 6(1)(f) (legitimate interests).
  • Legal obligations: to comply with legal requirements and enforce rights. Legal basis: GDPR Art. 6(1)(c) (legal obligation).

Automated Decision-Making (GDPR Art. 22): We do not engage in automated decision-making or profiling that produces legal or similarly significant effects.

4. Cookies & Tracking

Cookies are small text files stored on your device. We also use similar technologies such as pixel tags and server-side event forwarding in cases where you have provided consent for analytics and/or marketing. You can manage your preferences at any time via the “Manage cookie preferences” link in the footer.

Essential cookies (always active)

These cookies are required for the site to function and cannot be turned off in our cookie panel. They help with basic features such as keeping a session active and storing your consent choice.

  • _site_session (first-party): supports session continuity.
  • cookie_consent (first-party): stores your consent settings.

Retention: from session-only to up to 12 months, depending on the cookie.

Analytics cookies (consent-based)

If you enable analytics, we may use Google Analytics 4 (GA4) to understand aggregated usage. We configure analytics to reduce data collection where possible, such as using IP anonymization features supported by the platform.

  • _ga (third-party): GA4 user identifier. Typical retention: 2 years.
  • _ga_XXXXXXXXXX (third-party): GA4 session state. Typical retention: 2 years.

Data retention for analytics reports is typically 14 months, depending on configuration.

Marketing cookies (consent-based)

If you enable marketing cookies, we may use identifiers to measure advertising performance, attribute conversions, and support remarketing or audience creation (such as custom audiences or lookalike audiences). This helps avoid showing irrelevant ads and helps measure whether course information requests are being answered clearly.

  • _gcl_au (third-party): Google Ads conversion linker. Typical retention: 90 days.
  • _fbp (third-party): Meta Pixel browser identifier. Typical retention: 90 days.
  • _fbc (third-party): Meta Pixel click identifier. Typical retention: 90 days (when click ID is present).

Beyond cookies, marketing measurement may use pixel tags (for example, Google tag scripts or Meta Pixel scripts) and may use server-to-server event forwarding (for example, via Meta Conversion API or server-side tag management) where configured after you consent. Where used, identifiers may include cookie IDs, IP address, and User-Agent. In some implementations, hashed identifiers may be used for matching.

5. Consent and How to Withdraw

Users in the EEA and UK receive a consent notice under GDPR/UK GDPR. Analytics and marketing cookies activate only after explicit, informed, freely given consent (GDPR Art. 6(1)(a)).

Your choice is stored in the cookie_consent browser cookie for up to 12 months. You can withdraw consent at any time by using the “Manage cookie preferences” link in the footer or by clearing cookies in your browser settings. Withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.

6. Sharing With Advertising and Service Partners

We share personal data only when needed to operate the website, respond to requests, and (where you consent) measure and improve advertising performance. We do not sell personal data.

  • Google LLC (Google Analytics 4, Google Ads, Google Tag Manager, remarketing): may receive cookie IDs, usage data, and conversion events where consent is provided. https://policies.google.com/privacy
  • Meta Platforms (Pixel, custom/lookalike audiences, Conversion API where enabled): may receive page views, conversion events, and audience membership signals where consent is provided. https://www.facebook.com/privacy/policy
  • Cloudflare (CDN and security): may process IP addresses and request metadata to protect the site from abuse and improve performance. https://www.cloudflare.com/privacypolicy/

We do not permit these providers to use site data for their own independent commercial purposes outside the services they provide to us, subject to their platform terms and configurations.

7. International Transfers

Some service partners may process data outside the EEA/UK, including in the United States. When transfers occur, we rely on appropriate safeguards such as the EU–US Data Privacy Framework (and the UK Extension, where applicable) and Standard Contractual Clauses (EU 2021/914) as a fallback where needed.

Where required, we take steps designed to ensure an appropriate level of protection for your personal data, including contractual and technical measures.

8. Data Retention

We keep personal data only for as long as needed for the purposes described in this Privacy Policy:

  • Contact and registration requests: up to 2 years from the last interaction, unless a longer period is required to resolve a dispute or comply with law.
  • Email correspondence: for the duration of the relationship plus up to 1 year.
  • Server and security logs: typically up to 90 days.
  • Analytics data: report retention typically 14 months (subject to configuration) and cookie retention per cookie lifetime.
  • Marketing cookies: retained per cookie lifetime (for example 90 days), unless deleted earlier.
  • Cookie consent record: up to 3 years for audit and compliance.
  • Legal and tax records: as required by applicable law (often 6 to 10 years for invoicing records if applicable).

9. Your Rights (GDPR and UK GDPR)

Depending on your location, you may have the following rights: access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), portability (Art. 20), objection (Art. 21), and the right to withdraw consent at any time (Art. 7(3)).

To exercise your rights, email [email protected]. We respond within 30 days. For complex requests, we may extend this by up to 60 additional days, as permitted by law.

You also have the right to lodge a complaint with a supervisory authority. Helpful directories include:

10. Children

This site is not directed at individuals under 16. We do not knowingly collect personal data from minors. If you believe a child under 16 has provided personal data without verifiable parental consent, contact us and we will delete it promptly.

11. Do Not Track Signals

This website does not respond to Do Not Track (DNT) browser signals. Third-party providers may have their own approaches to DNT and similar signals.

12. Data Deletion Requests

You may request deletion of your personal data by emailing [email protected] with the subject line “Data Deletion Request”. We may ask for information to verify your identity before completing the request. We aim to complete requests within 30 days. In some cases, we may keep limited information when required by law or to establish, exercise, or defend legal claims.

13. Business Transfers

If moryvexis is involved in a merger, acquisition, asset sale, financing, or insolvency, personal data may be transferred to a successor entity. If such a transfer materially changes how personal data is used, we will provide notice on the website.

14. California Privacy Notice (CCPA / CPRA)

If you are a California resident, you may have rights to know, delete, and correct certain personal information, and to opt out of the sale or sharing of personal information for cross-context behavioral advertising.

Categories of personal information that may be collected or disclosed in the prior 12 months include: identifiers (such as name, email, IP address, cookie IDs), internet/network activity (such as page views and interactions), and inferences (such as general preferences derived from site usage). We disclose these categories to service providers and, where you consent, advertising partners for analytics and advertising measurement.

We do not sell personal information as defined by the CCPA. We may share personal information for cross-context behavioral advertising where you enable marketing cookies. You can opt out by using our cookie preferences panel.

To submit a request, email [email protected] with the subject line “California Privacy Request”. We will verify your request as required by law. Authorized agents may submit requests with proof of authorization.

We will not discriminate against you for exercising your rights.

15. Virginia Privacy Notice (VCDPA)

If you are a Virginia resident, you may have rights to access, correct, delete, and obtain a copy of your personal data, and to opt out of targeted advertising. We do not sell personal data or engage in profiling that produces legal or similarly significant effects.

To exercise these rights, email [email protected] with the subject line “Virginia Privacy Request”.

If we deny your request, you may appeal by emailing with the subject line “Appeal of Refusal — Privacy Request”. We will respond within 60 days. If the appeal is denied, you may contact the Virginia Attorney General.

16. Nevada Privacy Notice

Nevada residents may submit a verified opt-out request by emailing [email protected] with the subject line “Nevada Do Not Sell Request”. We do not currently sell personal information under Nevada Revised Statutes Chapter 603A.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If changes are material, we will post a notice on the website at least 14 days before the changes take effect. The “Last Updated” date at the top of this page reflects the current version.

18. Contact

If you have questions about this Privacy Policy or want to exercise your rights, contact: