Privacy Policy
Learn how we collect, use, and protect your data on our platform.
Information Security Commitment
At Pathways LMS, information security is a priority. That is why we are committed to protecting the confidentiality, integrity and availability of the information we manage, ensuring that the data of our clients, collaborators and partners are always safe and protected. Furthermore, we are committed to compliance with all applicable regulations and to the continuous improvement of our security controls, adapting to environmental changes and new threats, and regularly reviewing and updating our policies and procedures to ensure maximum data protection. To support this commitment, we have decided to implement an Information Security Management System (ISMS) based on the ISO/IEC 27001:2022 standard to effectively manage security risks and ensure that all roles within the company contribute to the success and confidence in our operations.
28/11/2025
Versión 1.0
CEO, MYPATHWAYS S.A.
Who We Are
This Privacy Policy applies to the Pathways LMS platform, operated by MYPATHWAYS S.A.
Our Commitment
At Pathways, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our platform.
Information We Collect
We collect user information (name, email, username, roles), course interactions (enrollments, progress), authentication data (passwords or API keys), organizational data, and usage data to provide analytics and support the platform's operation.
How We Use Your Data
Your data is used to provide and maintain the platform, manage courses, track student progress, and improve the user experience. We do not share your data with third parties except when necessary for the services we use.
Legal Basis for Data Processing
We process your personal data based on the need to provide our service (contractual obligation), legitimate interest (such as improving our platform), and, when required, your consent.
Data Access and Roles
Access to your data is limited to authorized personnel and regulated by role-based permissions within your organization. Administrators, teachers, and students can only access the data necessary for their role.
Third-Party Services
We use trusted third-party services to operate and improve our platform. Cloudflare serves as our content delivery network (CDN) and is used to store and deliver images and videos. Amazon Web Services (AWS) hosts our servers and databases and is used to store files such as images and documents. For payment processing, we use MercadoPago and Stripe, with whom we only share the necessary information, such as an internal user ID and the details of the purchased course. All providers must comply with industry-standard security practices.
Cookies
We use cookies exclusively for authentication and session management. They are necessary for secure login and do not track your activity.
Data Retention
We retain user data unless deletion is requested. We reserve the right to delete inactive data at our discretion in the future.
Security
We use encryption and access controls to protect your data. All communications are secure, and the infrastructure is managed following best security practices.
International Data Transfers
Your data may be stored or processed on servers located outside your country of residence, including in countries that may not offer the same level of data protection. We take steps to ensure that appropriate safeguards are in place.
Your Rights
You have the right to access, correct, or request the deletion of your personal data. You may also object to or restrict certain types of processing. To exercise any of these rights, please contact us.
Changes to This Policy
We may update this Privacy Policy. We will notify users of any significant changes through the application or by email.
Contact Us
If you have questions or requests related to privacy, contact us at any time by email at [email protected].