Legal

Privacy Policy

This page explains what personal data MoonTechLife collects, why it is collected, how it is used, and the choices available to users. This draft reflects the current platform features in the repository and should be reviewed with local counsel before production use.

Last updated: April 14, 2026

Who We Are

MoonTechLife Edu Portal is a cybersecurity learning platform that provides account registration, authentication, course access, student progress tracking, support communications, instructor workflows, exam delivery, and platform security monitoring.

For privacy questions or rights requests, contact support@moontechlife.com. If you are already signed in, you can also use the internal support desk.

Information We Collect

We may collect the following categories of data:

  • Identity and account data such as full name, email address, role, and student ID.
  • Authentication data such as password-related records, MFA status, and session identifiers.
  • Profile data such as biography, social links, avatar, and track assignment.
  • Learning data such as course enrollment, content progress, assignment submissions, grades, and certificates.
  • Support and communication data such as support requests, direct messages, notifications, and ticket history.
  • Exam data such as exam registration, exam session records, and practical or objective submissions.
  • Security data such as IP-derived records, device fingerprint hashes, login anomalies, blocked IP events, and audit logs.
  • Technical usage data such as browser type, operating system, page access patterns, and required security cookies.

Why We Use Your Data

We use personal data to:

  • Create and manage user accounts.
  • Authenticate users, secure sessions, and detect suspicious activity.
  • Provide course content, submissions, grading, and learning progress features.
  • Operate exams, access controls, and role-based dashboards.
  • Respond to support requests and communicate about account or platform issues.
  • Maintain audit trails, investigate abuse, and protect the platform.
  • Comply with legal obligations and resolve disputes.

Legal Bases

Depending on the processing activity, MoonTechLife may rely on contract, legal obligation, legitimate interests, and consent. Consent is especially relevant where optional communications or non-essential cookies are used.

If you rely on consent-based processing, you should be able to withdraw that consent without losing access to strictly necessary platform functions.

Sharing and Processors

Based on the current codebase, personal data may be processed by service providers such as:

  • Supabase for authentication, database, and file storage.
  • Brevo for transactional email delivery and public support email routing.
  • Your hosting and infrastructure providers used to deploy this application.

You should keep written vendor agreements in place and document any international transfers where providers host or access data outside Nigeria.

Retention

Data should be kept only for as long as needed for the original purpose, legal obligations, platform security, dispute handling, or academic record management.

MoonTechLife should maintain a formal retention schedule covering profiles, submissions, support tickets, exam records, security logs, backups, and inactive accounts.

Your Rights

Subject to applicable law, users may request to:

  • Access the personal data held about them.
  • Correct inaccurate or incomplete data.
  • Delete data that is no longer necessary or lawfully retained.
  • Receive a copy of relevant personal data.
  • Object to certain processing or withdraw consent where consent applies.

To make a request, contact support@moontechlife.com or use the support page. Signed-in students can use the student support desk and choose the privacy category once enabled in the product.

Children and Student Data

If the platform is used by minors, MoonTechLife should define the relevant age threshold, parental or guardian consent process where required, and the school or institutional basis for processing student records.

If the service targets adults only, that should be stated clearly in the registration and terms flow.

Security

The repository already shows controls such as secure session handling, security event logging, rate limiting, MFA setup, and protected routes. These controls reduce risk but do not remove the need for regular review, vendor hardening, backup controls, and documented incident response.