Privacy Policy & GDPR Compliance

At StandardizedTests.org, we are committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws.

This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our platform.

StandardizedTests.org is operated by Chinery SAS, a company registered in France under SIREN 938 593 290, with its registered office at 60 RUE FRANCOIS 1ER, 75008 PARIS, France.

Chinery SAS acts as the data controller for personal data collected through StandardizedTests.org. This means we determine the purposes and means of processing your personal data.

For any questions regarding this policy or your personal data, please contact us at [email protected].

Information you provide directly:

• Contact information (name, email) when you contact us or subscribe to our newsletter
• Any feedback or inquiries you submit through our forms

Information collected automatically:

• Device and browser information (type, version, operating system)
• IP address and approximate geographic location
• Pages visited, time spent, and navigation patterns
• Referral source and search terms used

Cookies and similar technologies:

We use cookies and similar tracking technologies to enhance your experience. See our Cookie Policy section below for details.

We use the information we collect to:

• Provide and improve our services
• Respond to your inquiries and provide customer support
• Send newsletters and updates (only with your consent)
• Analyze usage patterns to improve user experience
• Detect and prevent fraud or abuse
• Comply with legal obligations

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you opt-in to newsletters or marketing communications
• Legitimate Interest: To improve our services and provide a better user experience
• Contractual Necessity: To respond to your inquiries and provide requested services
• Legal Obligation: To comply with applicable laws and regulations

GDPR Rights (EU/EEA residents):

• Right to Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interest
• Right to Withdraw Consent: Withdraw previously given consent at any time

CCPA Rights (California residents):

• Right to Know: Request disclosure of personal information collected
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal data)
• Right to Non-Discrimination: Equal service regardless of exercising privacy rights

To exercise any of these rights, contact us at [email protected].

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

• Contact inquiries: Deleted after resolution + 12 months
• Newsletter subscriptions: Until you unsubscribe
• Analytics data: Anonymized after 26 months

We use the following types of cookies:

• Necessary Cookies: Essential for website functionality (always active)
• Analytics Cookies: Help us understand how visitors use our site (requires consent)
• Marketing Cookies: Used for advertising purposes (requires consent)
• Functional Cookies: Remember your preferences (requires consent)

You can manage your cookie preferences at any time through our cookie banner or browser settings.

We implement appropriate technical and organizational measures to protect your personal data, including:

• SSL/TLS encryption for all data transmissions
• Secure hosting infrastructure
• Regular security assessments
• Access controls and authentication

Your data may be processed outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions where applicable
• Binding Corporate Rules for group companies

We may use third-party services that collect and process data on our behalf:

• Google Analytics (analytics)
• Firebase (hosting and infrastructure)
• Email service providers (newsletter delivery)

Each third-party service has its own privacy policy and data practices.

Our services are not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

For any privacy-related questions or to exercise your rights:

Email: [email protected]

Address:
Chinery SAS
60 Rue François 1er
75008 Paris, France

If you are not satisfied with our response, you have the right to lodge a complaint with a supervisory authority. In France, this is the CNIL (Commission Nationale de l'Informatique et des Libertés).