Privacy Policy
August 11, 2025
Introduction
This Privacy Policy explains how Apparently.mx ("Apparently," "we," "us," or "our") collects, uses, shares, and protects personal data when you use our websites, mobile apps, and services that link to this Policy (collectively, the "Services"). It also describes your privacy rights and how you can exercise them. If you do not agree with this Policy, please do not use the Services.
Who we are (Controller)
For the purposes of data protection laws, Apparently.mx is the controller of personal data processed via the Services. You can contact us at info@apparently.mx.
Scope
This Policy applies to personal data we collect from: (a) visitors to our Sites; (b) account holders and subscribers; (c) participants in live sessions and community features; (d) organizational partners and prospective customers; and (e) individuals who interact with our marketing or support teams. Our Cookie Policy explains our use of cookies and similar technologies.
Information we collect
We collect the following categories of personal data:
• Account & contact data: name, email address, password, country/region, language, and profile details you provide.
• Transaction & payment data: purchase history, subscription status, and limited payment information (processed by our payment processors; we do not store full card numbers).
• Course & activity data: courses enrolled/viewed, assessments or quizzes completed, downloads of workbooks/toolkits, completion badges, and in‑app preferences.
• Communications & support: messages you send to us, survey responses, help‑desk tickets, and marketing preferences.
• Community & live sessions: questions you post, chat messages, audio/video participation, and any recordings captured during sessions (see “Live sessions & community” below).
• Device & usage data: IP address, device identifiers, browser/app type and version, operating system, pages viewed, links clicked, referring/exit pages, and general location (city/region). Some of this is collected via cookies, SDKs, pixels, or similar technologies.
• Social & integrations (optional): if you connect a third‑party account (e.g., app store, single sign‑on, or social platform) we receive information needed to enable that connection per your settings.
• B2B contact data: role, employer, and contact details when organizations inquire about partnerships or bulk access.
How we use personal data (purposes & legal bases)
We use personal data for:
• Provide and operate the Services: create and manage accounts, deliver courses, books/audiobooks, workbooks, and live sessions; personalize content; provide customer support. (Legal bases: contract; legitimate interests.)
• Safety, trust, and integrity: monitor and enforce acceptable use; detect, prevent, and respond to fraud, abuse, piracy, network and information security incidents; protect children from exploitation (zero tolerance). (Legal bases: legitimate interests; legal obligations.)
• Improve and develop: analyze usage, fix bugs, conduct research and product development, and improve quality and accessibility. (Legal bases: legitimate interests; consent where required.)
• Marketing and communications: send service messages (transactional) and—with your consent where required—send newsletters, promotions, and event invites. You can opt out at any time. (Legal bases: legitimate interests; consent.)
• Advertising and measurement: with your consent where required (e.g., EU/UK), use cookies and similar tech for analytics/measurement and to show or measure ads about Apparently on our sites or third‑party services. (Legal basis: consent.)
• Legal and compliance: comply with law, respond to lawful requests, enforce our Terms, and protect our rights. (Legal bases: legal obligations; legitimate interests).
How we share personal data
We do not sell personal data. We share personal data with:
• Service providers (processors): cloud hosting/CDNs; analytics; payment processing; customer support tools; communications (email, in‑app, push); video streaming/live session platforms; security and fraud prevention. Providers process data under instructions and appropriate safeguards.
• Advertising and analytics partners: where permitted by law and your consent preferences, we may allow partners to set cookies/pixels for measurement and reach. See Cookie Policy for controls.
• Organizational customers: if your access is provided by an organization (e.g., school, municipality, employer), we may share limited usage or seat‑management data with the administrator consistent with our agreement.
• Business transfers: in connection with a merger, acquisition, or asset sale, data may be transferred as part of the transaction subject to this Policy.
• Legal, safety, and rights: to comply with law or respond to lawful requests; to protect users, children, our Services, or our rights; and to investigate and prevent prohibited activities.
International transfers
We may transfer personal data to countries outside your own (including to the United States) where we or our service providers operate. When we transfer personal data from the EU/EEA/UK/Switzerland to countries without an adequacy decision, we use appropriate safeguards such as Standard Contractual Clauses and implement supplementary measures where needed.
Your choices
• Account & profile: you can update certain account and profile information in your settings.
• Marketing: you can unsubscribe from promotional emails via the link in the message. You will still receive transactional/service emails.
• Cookies & tracking: manage preferences via our Cookie Settings (and Your Privacy Choices where applicable) and your browser/device controls. We honor Global Privacy Control (GPC) signals for cookie‑based opt‑outs where required.
• Device permissions: you can adjust app‑level permissions (e.g., camera or microphone for live sessions) in your device settings.
Your privacy rights
Your rights depend on your location. We will not discriminate against you for exercising them and may request information to verify your identity.
• EU/EEA/UK/CH: access; rectification; erasure; restriction; objection (including to direct marketing); portability; withdraw consent at any time; lodge a complaint with a supervisory authority.
• United States (CA, CO, CT, VA, UT and similar laws): know/access specific pieces and categories of personal information; correct inaccuracies; delete; portability; opt out of “sale”/“sharing” or targeted advertising; limit use/disclosure of sensitive personal information (where applicable). We do not knowingly sell personal information of children under 16.
• Mexico (ARCO): access, rectification, cancellation, and opposition; revoke consent.
• Brazil (LGPD): confirm processing; access; correction; anonymization/blocking/deletion; portability; information on sharing; withdraw consent.
• Canada (PIPEDA/Provincial): access and correction; withdraw consent subject to legal/contractual limits.
• India (DPDP): access, correction, erasure; grievance redressal; consent withdrawal subject to legal requirements.
• Australia/New Zealand: access and correction; lodge a complaint with the OAIC/NZ Privacy Commissioner.
To exercise rights, email info@apparently.mx with your request and region. We will respond as required by law.
Data retention
We retain personal data only as long as necessary for the purposes described or as required by law. Typical examples: account data (for the life of the account), transactional records (as required for tax/accounting), live session recordings (for on‑demand availability or as otherwise disclosed), and marketing preferences (until you opt out or the data is no longer needed). We may retain limited logs for security and fraud prevention.
Security
We use administrative, technical, and physical safeguards designed to protect personal data (including encryption in transit, access controls, and monitoring). No method of transmission or storage is completely secure; if we learn of a security incident affecting your personal data, we will notify you and regulators as required by law.
Children’s privacy
The Services are intended for parents and caregivers and are not directed to children. We do not knowingly collect personal data from children. If you believe a child provided personal data to us, contact info@apparently.mx and we will take appropriate steps to delete it. We have a zero‑tolerance policy for child sexual exploitation material (CSAM) and report suspected CSAM to the appropriate authorities.
Live sessions & community
Some sessions may be recorded to enable on‑demand access, quality assurance, and safety. Participation is optional; you may choose not to enable your camera/microphone or use chat only. By participating, you understand that your voice/image and contributions may be processed as part of the recording. We may moderate or remove content to enforce our Terms and community standards.
Automated decision‑making
We do not use automated decision‑making that produces legal or similarly significant effects on you. We may use analytics and personalization to improve the Services and show relevant content and offers.
Links and third‑party services
The Services may link to or integrate with third‑party services (e.g., payment processors, app stores, video platforms, social networks). Their privacy practices are governed by their own policies; we encourage you to review them.
Changes to this Policy
We may update this Policy to reflect changes in our practices or legal requirements. When we post changes, we will update the “Last updated” date above and, where required, seek your consent again or provide additional notice.
Contact us
If you have questions or concerns about this Policy or our data practices, contact us at info@apparently.mx.