Privacy Policy

Effective Date: May 1, 2020
Last updated: January 29, 2025

Introduction

At Open Education and Development Group, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect your data in compliance with U.S. laws such as the Family Educational Rights and Privacy Act (FERPA), the Children's Online Privacy Protection Act (COPPA), and the Children’s Internet Protection Act (CIPA), as well as EU regulations including the General Data Protection Regulation (GDPR).

Testing Policies for Edube™ and TestNow™

For detailed and specific privacy policies governing our educational and testing platforms, including Edube™ and TestNow™, please refer to Edube™ & TestNow™ Privacy Policy Page.

Compliance with U.S. and EU Privacy Laws

We ensure compliance with the following privacy frameworks:

• General Data Protection Regulation (GDPR) (EU & EEA) – governs data processing within the European Union (EU) and European Economic Area (EEA).
• Family Educational Rights and Privacy Act (FERPA) (U.S.) – protects student educational records.
• Children’s Online Privacy Protection Act (COPPA) (U.S.) – safeguards children under 13 online.
• California Consumer Privacy Act (CCPA) (U.S.) – grants California residents additional privacy rights.
• UK General Data Protection Regulation (UK GDPR) – governs data processing in the United Kingdom.
• Swiss and EU-U.S. Data Privacy Frameworks – regulates personal data transfer to the U.S.

We process candidate data lawfully, ensuring it is used only for education and certification purposes. We never sell your information to third parties, nor do we use it for commercial purposes.

Data Collected for OEDG, Python Institute, JS Institute, C++ Institute, and OLQ Exams

Information Collected at Registration

When you register for an exam, we collect the following data:

• Personal Information (PII) – name, email, date of birth, and country of residence.
• Candidate ID and Exam Details – certification type, exam level, testing location, and scheduling information.
• Payment Information – credit card details and transaction records (processed securely through third-party payment processors).

Proctoring and Exam Integrity Data

To verify identity and prevent fraud, we may collect:

• Facial and ID Verification – a face photo and a photo of a government-issued ID.
• Audio & Video Monitoring – during remote proctoring, your webcam and microphone may record the session.
• Screen Activity & Keystrokes – to ensure exam integrity, your screen may be recorded.

Credentialing and Certification Data

• Exam Results – your test performance, pass/fail status, and scores.
• Certification Issuance & Sharing – we may share successful exam results with Credly for digital credentialing.

We retain minimal personally identifiable information only as necessary for certification, verification, and legal compliance.

Remote & In-Person Exam Proctoring

OEDG, Python Institute, JS Institute, C++ Institute, and OLQ exams may be delivered:

• Remotely (online proctoring) – monitored via webcam, microphone, and screen sharing.
• At Pearson VUE Test Centers – administered in a secure, in-person setting with possible biometric verification.

Credentialing Services (Credly)

Successful candidates may receive a digital certificate or badge via Credly.

• Data shared with Credly: Name, email, certification details.
• Your control: You can accept or reject the badge when invited by Credly.

For Credly's privacy policy, visit Credly's Privacy Policy Page.

Third-Party Websites and Social Media

Our website may contain links to third-party services (e.g., LinkedIn, Facebook, Pearson VUE).

• Exam registrations through Pearson VUE are governed by Pearson VUE’s Privacy Policy.
• Social media interactions (e.g., LinkedIn badges) are subject to the respective platform’s privacy policy.

We do not control third-party data collection.

Data Sharing and Security Measures

We never sell personal data. However, we may share limited information with:

• Exam delivery partners (e.g., Pearson VUE, online proctors) for test administration.
• Credentialing partners (e.g., Credly) to issue digital certifications and badges.
• Cloud hosting and data storage (e.g., Amazon Web Services (AWS)) to store and process candidate data securely.
• Legal authorities when required by law, regulatory compliance, or court order.

Data Storage Location

All candidate data is securely stored in AWS data centers located in the United States. Data transfers comply with applicable U.S. and international data protection regulations, including GDPR (EU), UK GDPR, and the EU-U.S. Data Privacy Framework.

Security Measures and Compliance

We employ industry-leading security protocols to safeguard your data, including:

• TLS encryption – All data transmissions are encrypted using Transport Layer Security (TLS).
• Strict access controls – Only authorized personnel with a legitimate business need can access candidate data.
• Regular security audits – We conduct ongoing security reviews to prevent unauthorized access and data breaches.
• AWS Compliance – AWS infrastructure meets ISO 27001, SOC 2, GDPR, and other leading security standards.

ISO 27001 & ISO 9001 Certifications

Our Information Security Management System (ISMS) is ISO 27001 certified, ensuring data confidentiality, integrity, and availability. We follow ISO 9001 quality management standards, demonstrating our commitment to delivering high-quality, secure services.

Incident Response Plan

We have a proactive Incident Response Plan (IRP) in place to detect, assess, and mitigate security incidents.

• Continuous Monitoring – Our systems are actively monitored to detect potential security threats.
• Immediate Containment & Investigation – If a data breach is suspected, we promptly assess the incident and contain any risks.
• User & Regulatory Notification – In compliance with GDPR, CCPA, and other privacy laws, affected users and relevant authorities will be notified if required by law.
• Remediation & Preventive Measures – Security incidents are thoroughly analyzed, and corrective actions are taken to prevent recurrence.

Despite our best efforts, no system is 100% secure. If you suspect a data breach or unauthorized access, contact us immediately at privacy@openedg.org.

Data Retention Policy

We retain candidate data only as necessary for education, certification, identity verification, and legal compliance.

• Exam Registration Data – retained for 5 years, then anonymized.
• Exam Responses, Results, and Logs – retained for 5 years, after which it is simplified to general exam details such as pass/fail status, score, and exam date.
• Proctoring Data (Video & Audio) – retained only for as long as the verification process is complete, plus an additional 30 days to allow users to raise any concerns about their exam results. After this period, proctoring data is permanently deleted.
• Certification Records – retained indefinitely to allow users to retrieve their certification records unless deletion is requested by the user.
• Learning Progress Data – retained indefinitely so users can access their learning history unless they request deletion.
• User Account Data – deleted within 14 days after an account deletion request.
• De-Identified Data – may be retained temporarily during the 14-day grace period after an account deletion request, allowing users to retrieve their account if needed. After this period, the data is either permanently deleted or transitioned into anonymized data for internal research, statistical analysis, and service improvements, unless immediate deletion is explicitly requested.
• Anonymized Data – may be retained indefinitely for research, statistical analysis, and service improvements.

You may request the deletion of their data where legally permissible. However, certain data may be retained for compliance with legal obligations, dispute resolution, or legitimate business purposes.

If you have any questions about data retention or wish to request deletion, please contact us at privacy@openedg.org.

Cookies & Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and improve our services.

Types of Cookies We Use:

• Essential Cookies – necessary for site functionality and security.
• Analytics Cookies – help us understand site traffic patterns and optimize user experience.
• Marketing Cookies – may be used to personalize content and track interactions with third-party platforms (e.g., LinkedIn, Facebook).

Your Choices:

• You can disable cookies in your browser settings.
• Opt-out of tracking through browser preferences or third-party tools (e.g., Google Analytics opt-out).

For more details, refer to our Cookies Policy.

Your Rights Under U.S. and EU Privacy Laws

We respect your rights and are committed to giving you control over your personal information. Here are your rights:

• Right to Access & Correct Your Data – request a copy of your personal data.
• Right to request Data Deletion – request to delete your account and personal information.
• Right to withdraw Consent – stop certain types of data processing.
• Right to Data Portability – you can request that we provide your personal data in a structured, commonly used, and machine-readable format.
• Right to file a Complaint – submit concerns to your data protection authority.

To exercise your rights, contact us at privacy@openedg.org.

Children’s Privacy (Under 13 Years Old)

Our services are not intended for children under 13 without parental consent, and we do not knowingly collect personal information from children under 13.

If you believe a child has provided personal data, contact us immediately at privacy@openedg.org, and we will remove the information in compliance with COPPA (U.S.) and GDPR-K (EU).

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in laws, regulations, or business practices.

If we make significant updates to how we collect, use, or share your data, we will notify you through email or a prominent notice on our website. For clarifications, formatting changes, or policy refinements, we will update the policy without prior notice.

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your data. By registering for an OEDG, Python Institute, JS Institute, C++ Institute, or OLQ certification exam, as well us using our educational platforms and services, you agree to the terms of this Privacy Policy.

Contact Us

At Open Education and Development Group, we are committed to providing secure, high-quality educational and certification services. Your privacy and data security are our top priorities.

💙 Thank you for trusting us and choosing us for your learning and certification journey! 💙

If you have any questions, concerns, or feedback, we’re here to help:

For U.S. Candidates:
Email: privacy@openedg.org

For EU & EMEA Candidates:
Email: privacy-eu@openedg.org