Privacy Policy

Last updated: 25 April 2026

1. Who we are

This Privacy Policy explains how SEQ SIA, registration number 40203405498, registered at Lastadijas 12 k-3, Riga, Latvia, LV-1050 (“OffSeq Training”, “we”, “us”) processes personal data of visitors and customers of training.offseq.com.

We act as a data controller under the EU General Data Protection Regulation (Regulation 2016/679, “GDPR”). For privacy questions, write to training@offseq.com.

2. What information we collect

  • Course application data — first name, last name, email, phone (optional), company (optional), and the course you are applying for. Provided by you when you submit an application form.
  • Payment metadata — payment reference, amount, currency, paid-at timestamp, and the last four digits of the card if returned by our payment processor. We do not see or store your full card number, CVV, or expiry date.
  • Communication data — messages you send via the contact form or by email.
  • Technical data — IP address, browser user-agent and referrer, captured automatically for security and fraud prevention.
  • Privacy-friendly analytics — aggregated, cookie-less page-view counts via a self-hosted analytics service.

3. Why we use it

  • To process your course application and payment (legal basis: contract).
  • To send transactional emails: application confirmation, payment link, payment receipt (contract).
  • To respond to support requests (legitimate interest).
  • To prevent fraud and abuse (legitimate interest, legal obligation).
  • To meet accounting and tax obligations under Latvian and EU law (legal obligation).

4. Who we share it with

We share the minimum amount of data necessary with these processors:

  • EveryPay AS (Estonia) — payment processing via the EveryPay payment gateway.
  • PECB Group — certification body that receives your name and email to issue exam vouchers and certificates.
  • Email/SMTP provider — to deliver transactional and support emails to you.
  • Hosting and database provider — processes data within the European Economic Area.

We do not sell personal data and do not share it with advertising networks.

5. How long we keep it

  • Application + payment records: 7 years (Latvian accounting law).
  • In-flight payment sessions that never settle: automatically deleted after 7 days.
  • Admin access logs: 180 days, then automatically purged.
  • Support correspondence: up to 3 years from the last contact.

6. Your rights

Under the GDPR you have the right to:

  • Access your personal data and obtain a copy.
  • Correct inaccurate or incomplete data.
  • Erase your data, subject to legal retention obligations.
  • Restrict or object to certain processing.
  • Receive your data in a portable format.
  • Lodge a complaint with the Data State Inspectorate of Latvia (Datu valsts inspekcija) — www.dvi.gov.lv.

To exercise any of these rights, email training@offseq.com. We respond within 30 days.

7. Cookies

We use only strictly necessary cookies (e.g. session, banner dismissal). We do not use marketing or third-party tracking cookies. Our analytics is cookie-less by design.

8. Changes to this policy

When we update this policy we change the date at the top. Material changes will be communicated by email if they affect data we already hold for you.