Student Login
Garvin Academy
Privacy Policy

Privacy isn't a feature. It's the point.

Garvin Academy teaches privacy, freedom, and preparedness. We hold ourselves to the same standard we teach. This page explains, in plain English, exactly what we do — and don't — do with your information.

Last updated: April 30, 2026

Minimum data

We collect only what's needed to deliver what you asked for. If we don't need it, we don't ask for it.

No selling. Ever.

Your data is never sold, rented, traded, or handed to data brokers. There is no scenario in which that changes.

No surveillance ads

We don't run third-party ad trackers, fingerprinters, or behavioral profiling on this site.

You're in control

You can request a copy of your data, correct it, or have it deleted at any time. We'll do it.

1. Who this applies to

This policy covers Garvin Academy and the websites, courses, webinars, events, and communications operated under that name (collectively, "the Service"). When we say "we" or "us," we mean Garvin Academy. When we say "you," we mean anyone visiting the site or signing up for anything we offer.

2. What we collect

We try to keep this list short on purpose.

  • Information you give us. Your name, email address, and any message you send through the contact form, webinar signup, affiliate application, or other forms on the site.
  • Account information (if you create an account). Email address and a hashed password. We never see or store your plain-text password.
  • Privacy-respecting analytics. Anonymous page views, the page you came from, and basic device info (screen size, language, user agent) so we can see what's working. This is tied to a randomly generated session ID — not to you personally — and is not shared with third-party ad networks.
  • Operational logs. Standard server logs (timestamps, IP address, requested URL) used to keep the site running and to investigate abuse. Rotated and deleted on a short schedule.

3. What we don't collect

  • We don't run third-party advertising trackers.
  • We don't use Facebook, Google, or TikTok ad pixels.
  • We don't fingerprint your device to follow you around the web.
  • We don't sell, rent, or trade your data. Not now. Not ever.
  • We don't ask for personal information we don't need to deliver what you signed up for.

4. How we use what we collect

  • To respond to your messages and questions.
  • To deliver the courses, webinars, and events you sign up for.
  • To send transactional email (receipts, login links, course access).
  • To send occasional updates if — and only if — you opted in. You can unsubscribe in one click, any time.
  • To improve the site using aggregate, non-personal analytics.
  • To prevent fraud, abuse, and unauthorized access.

5. Cookies

We use a small number of strictly necessary cookies — for example, to keep you signed in if you have an account. We don't use third-party advertising cookies. Your browser can block or clear cookies at any time; the site will still work, you just may need to sign in again.

6. Who we share data with

We share data only with the small number of vendors required to actually run the Service — for example, the hosting provider running our database and the payment processor handling course purchases. These vendors are bound by contract to use your data only to provide the service we hired them for, and never for their own marketing.

We will disclose data if compelled by a valid, lawful court order from a jurisdiction with authority over us — and in those cases we will challenge overly broad requests and notify you when we are legally permitted to do so.

7. How long we keep it

We keep account and purchase records for as long as your account is active, plus the period required by tax and accounting law. Contact form messages are kept while the conversation is active and reasonably afterward, then deleted. Analytics data is aggregated and pruned regularly.

8. Your rights

Regardless of where you live, we extend these rights to everyone:

  • Access. Ask what we have about you.
  • Correction. Fix anything that's wrong.
  • Deletion. Have your data permanently removed.
  • Portability. Get a copy of your data in a standard format.
  • Withdraw consent. Opt out of any optional communication at any time.

To exercise any of these, just send us a message. We aim to respond within a few business days.

9. Security

Data is transmitted over HTTPS, stored in encrypted databases, and access is restricted to the small number of people who genuinely need it to operate the Service. We follow industry-standard authentication and access controls. No system is perfect, but we treat your data the way we'd want ours treated.

10. Children

The Service is not directed at children under 16, and we don't knowingly collect personal information from them.

11. International users

The Service may be operated from, and your data stored in, the United States. By using the Service, you consent to that transfer. Where applicable, we honor GDPR and CCPA-equivalent rights for everyone, not just residents of those regions.

12. Changes to this policy

If we change this policy in any meaningful way, we'll update the "Last updated" date at the top and, for significant changes, notify account holders by email before the change takes effect.

13. Contact us

Questions, requests, or concerns about your privacy? Use the contact page. A real person reads it.

Have a privacy question?

We answer them — personally.

Contact us