Skip to content

Legal

Privacy Policy

Effective: 1 September 2025 Last updated: 1 September 2025 Controller: Bradley Ojera, Studicent

Art. 13 GDPR

Overview

Studicent is operated by Bradley Ojera, an Einzelunternehmer registered in Germany. This Privacy Policy explains what personal data we collect when you visit this website or submit a form, how we use it, who we share it with, and what rights you have under the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

We take data protection seriously. We collect only what is necessary, store it for as long as required, and do not sell your data to third parties under any circumstances.

Art. 4(7) GDPR

Controller

The controller responsible for data processing on this website is:

Name Bradley Ojera
Trading as Studicent
Address Glück-Auf-Str. 45, 41812 Erkelenz, Germany
Email staff@studicent.com
Phone +49 152 24947190

Art. 13(1) GDPR

Data We Collect

When you visit this website

Our hosting provider automatically logs standard server access data including your IP address, browser type, operating system, referring URL, and the pages you visit. This data is processed on the basis of Art. 6(1)(f) GDPR (legitimate interest in operating a secure website) and is deleted within 30 days.

When you submit a contact or application form

When you submit any form on this website (booking request, calculator, or application), we collect the information you provide, which may include:

  • First name and email address
  • Phone number (if provided voluntarily)
  • Monthly course revenue range and platform
  • Completion rate, refund rate, and course metrics you choose to share
  • Free-text descriptions of your situation or goals

This data is processed on the basis of Art. 6(1)(b) GDPR (processing necessary to take steps prior to entering a contract) and Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries). We use this data to respond to your enquiry, assess fit for our services, and contact you about your application.

When you accept optional cookies

If you consent to analytics or marketing cookies, we collect additional behavioural data through Google Analytics and Meta Pixel as described in the Third-Party Tools and Cookies sections below. This data is processed on the basis of Art. 6(1)(a) GDPR (your explicit consent), which you can withdraw at any time.

Art. 28 GDPR

Third-Party Tools

We use the following third-party services in the operation of this website and our business. Where these services process personal data on our behalf, we have entered into Data Processing Agreements (DPAs) as required by Art. 28 GDPR.

Service Purpose Legal Basis / Location
Google Analytics 4 Website analytics — page views, session data, traffic sources. Only active with your consent. Art. 6(1)(a) — Consent. Google LLC, USA. Standard Contractual Clauses.
Meta Pixel Conversion tracking and ad audience building on Facebook/Instagram. Only active with your consent. Art. 6(1)(a) — Consent. Meta Platforms, USA. Standard Contractual Clauses.
TidyCal Online scheduling. Processes name, email, and call time when you book a call. Art. 6(1)(b) — Contract. TidyCal Inc., USA. Standard Contractual Clauses.
Zoho Mail / CRM Email communication and contact management. Stores lead and client data. Art. 6(1)(b) — Contract. Zoho Corporation, USA/EU. Standard Contractual Clauses.
n8n (self-hosted) Workflow automation — routes form submissions internally. Runs on our own server in the EU. Art. 6(1)(f) — Legitimate interest. EU-hosted. No third-party data transfer.
SuiteDash CRM and client portal. Stores contact records and project data for active clients. Art. 6(1)(b) — Contract. SuiteDash Inc., USA. Standard Contractual Clauses.
Google Sheets Lead tracking spreadsheet. Stores form submission data for internal review. Art. 6(1)(f) — Legitimate interest. Google LLC, USA. Standard Contractual Clauses.

You can find the privacy policies and DPA documentation of each provider on their respective websites. We do not share your data with any third party beyond the services listed above.

§ 25 TTDSG

Cookies

Necessary cookies

These are set without your consent as they are strictly necessary for the website to function. They do not track you or collect personal data. They include your cookie preference record (so we remember your choice) and basic session management.

Analytics cookies (optional)

If you consent, Google Analytics 4 sets cookies to measure how visitors use this website. The data collected includes pages visited, time on site, traffic source, and general location (city level). Your IP address is anonymised before storage. This data is processed by Google LLC in the United States under Standard Contractual Clauses. You can withdraw consent at any time via the cookie settings banner.

Marketing cookies (optional)

If you consent, Meta Pixel sets cookies to track conversions from Meta advertising platforms and to build custom audiences for advertising. This data is processed by Meta Platforms Inc. in the United States under Standard Contractual Clauses. You can withdraw consent at any time via the cookie settings banner.

Managing your preferences

You can review and change your cookie preferences at any time by clicking "Manage Preferences" in the cookie banner. You can also clear cookies through your browser settings at any time. Note that withdrawing consent for analytics or marketing cookies does not affect the lawfulness of processing that occurred prior to withdrawal.

Art. 44–49 GDPR

International Transfers

Several of the third-party tools we use are operated by companies based in the United States, including Google, Meta, TidyCal, Zoho, and SuiteDash. When data is transferred to these providers, the transfer is governed by Standard Contractual Clauses (SCCs) approved by the European Commission under Art. 46(2)(c) GDPR, which provide appropriate safeguards for your data.

Our automation infrastructure (n8n) is self-hosted on a server located within the European Union and does not transfer data outside the EU.

We do not transfer data to third countries without an appropriate legal basis and safeguard mechanism in place.

Art. 5(1)(e) GDPR

Data Retention

We retain personal data only for as long as necessary for the purpose it was collected, or as required by law.

  • Form submissions from visitors who do not become clients — 12 months from submission, then deleted
  • Active client data — retained for the duration of the engagement plus 6 years (German commercial law retention requirement)
  • Email communications — 6 years from the last communication
  • Analytics data — 14 months (Google Analytics default, then automatically deleted)
  • Server access logs — 30 days
  • Cookie consent records — 12 months from consent date

After the applicable retention period, data is securely deleted or anonymised.

Art. 15–22 GDPR

Your Rights

Under the GDPR you have the following rights regarding your personal data. To exercise any of these rights, contact us at staff@studicent.com. We will respond within one month.

Access (Art. 15)

You can request a copy of all personal data we hold about you.

Rectification (Art. 16)

You can request correction of inaccurate or incomplete data.

Erasure (Art. 17)

You can request deletion of your personal data where there is no legitimate reason for us to continue holding it.

Restriction (Art. 18)

You can request that we restrict processing of your data in certain circumstances.

Portability (Art. 20)

Where processing is based on consent or contract, you can request your data in a structured, machine-readable format.

Objection (Art. 21)

You can object to processing based on legitimate interest at any time. We will stop unless we can demonstrate compelling grounds.

Withdraw Consent (Art. 7)

Where processing is based on consent, you can withdraw it at any time without affecting prior lawful processing.

Complaint (Art. 77)

You have the right to lodge a complaint with a supervisory authority at any time (see below).

Art. 77 GDPR

Contact & Complaints

Data protection enquiries

For any questions about this Privacy Policy or to exercise your rights, contact us directly:

Email staff@studicent.com
Post Bradley Ojera, Studicent, Glück-Auf-Str. 45, 41812 Erkelenz, Germany
Response time Within one calendar month of receipt

Supervisory authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the competent supervisory authority. The authority responsible for North Rhine-Westphalia is:

Authority Landesbeauftragte für Datenschutz und Informationsfreiheit NRW (LDI NRW)
Address Kavalleriestr. 2–4, 40213 Düsseldorf, Germany
Website www.ldi.nrw.de

Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of the page. For material changes, we will take reasonable steps to notify you directly where we hold your contact information.