This policy explains what information the American Institute of Modern Trichology ("AIMT," "we") collects when you use our websites and courses, how we use it, and the choices you have. The short version: we collect what's needed to run your courses and nothing more, we don't sell your data, and we don't run advertising trackers.
Account information. Your email address, the name you provide for your certificate, and a securely hashed password, stored with our authentication provider (Supabase).
Course progress. Which modules and checkpoints you've completed, your answers to course checkpoints, and your study state, so your progress follows you across devices.
Cadence conversations. Messages you exchange with Cadence, our AI study companion, including the learning context Cadence keeps to personalize your experience. These are processed by our AI provider (Anthropic) to generate responses.
Payment information. Payments are processed entirely by Stripe. We never see or store your card number — we receive only confirmation of purchase, your email, and the purchase details needed to grant course access.
Technical logs. Basic operational events (sign-ins, purchases, errors) used to keep the platform reliable and secure.
To deliver your courses, sync your progress, power Cadence, issue and verify certificates, provide support, process payments and refunds, and keep the platform secure. That's the list. We do not sell or rent personal information, and we do not use your data for third-party advertising.
Only the service providers that make the platform work: Supabase (accounts and course data), Stripe (payments), Cloudflare (hosting and delivery), Anthropic (AI responses for Cadence), and Vimeo (video delivery). Each receives only what it needs for its function. We may also disclose information if required by law.
We use browser storage for functional purposes only: keeping you signed in and caching your course progress locally. We do not use advertising cookies or cross-site trackers.
When you complete a course, we create a completion record with your certificate name, course, completion date, and a unique credential ID. Anyone with your credential ID can confirm those details through our public verification page — the same information a paper certificate would show. If you'd prefer your credential not be publicly verifiable, contact us.
We keep your account and course data while your account is active, so your lifetime course access and credentials keep working. If you ask us to delete your account, we will remove your personal data, except records we're required to keep (such as purchase records for tax purposes) and credential records needed to preserve certificate integrity, which can be anonymized on request.
You may request a copy of your personal data, correct inaccurate data, or request deletion by contacting us. If you are in a region with specific privacy rights (such as the EU/UK or California), we will honor the rights those laws provide.
Data is encrypted in transit, access to student data is restricted through row-level security, and payment handling is delegated entirely to Stripe. No system is perfectly secure, but we design so that a problem in one layer doesn't expose everything.
Our services are for adults. We do not knowingly collect information from anyone under 18.
We'll post any updates to this policy here with a new date. Questions or requests: brandmrice@gmail.com.