Privacy Policy
Last updated: 2026-04-27
1. What we collect
- Account data: name, email, hashed password, role.
- Test data: answers, timing, device fingerprint, computed scores.
- Payment data: handled by our payment processors. We store only the last four digits and the processor's opaque token.
- Operational data: IP address, user-agent, request logs (retained 30 days).
- Cookies: session cookie (essential) and analytics consent cookie.
2. How we use it
- Deliver the test, compute your score, and produce your report.
- Improve the question bank and re-fit norms (anonymized aggregates only).
- Detect fraud, abuse, and item piracy.
- Send transactional emails (signup, password reset, test result).
We do not sell personal data. We do not use your individual answers or scores to train third-party AI models.
3. Lawful basis (GDPR)
- Contract: account creation, test delivery, payment processing.
- Legitimate interest: security, fraud detection, anonymized norm-fitting.
- Consent: non-essential analytics and marketing emails.
4. Sharing
- Sub-processors for payment, transactional email, error monitoring.
- For organization candidates: your score and report are shared with the inviting organization.
- If required by law, we will respond to lawful requests.
5. Data location
Primary storage in EU (Frankfurt) and India (Mumbai), region-pinned by account origin. Backups encrypted with AES-256 at rest. All transit encrypted with TLS 1.3.
6. Retention
- Account data: until you delete your account.
- Test results: 5 years (you can delete earlier).
- Operational logs: 30 days.
- Payment records: 7 years (tax requirement).
7. Your rights
- Access a full export of your data.
- Correct inaccuracies.
- Delete your account and associated data.
- Withdraw analytics or marketing consent.
- File a complaint with your local data-protection authority.
Requests: privacy@myiqchecker.com. Responded to within 30 days.
8. Children
We do not knowingly collect data from children under 13. Parents who believe their child has registered without consent can email privacy@myiqchecker.com to request deletion.
9. Changes
Material changes will be announced 14 days in advance via email and an in-app notice.