Privacy policy
At Unideft, your privacy and the security of your personal data are paramount. We are committed to
transparency in our data handling practices. This Privacy Policy answers frequently asked questions
about how we collect, use, share, and safeguard your information. By interacting with our platform,
mobile app, or services, you agree to the terms of this Privacy Policy. Below, we provide detailed
answers to common questions to ensure you have a complete understanding of your data’s journey
and protection.
General Information
- Introduction to Unideft: Unideft is a global education services provider with more than a decade
of experience in the study abroad sector. We specialize in connecting students and recruitment
partners to world-class educational opportunities through our comprehensive platform and mobile
app. Our services include admissions assistance, visa and immigration support, scholarship
applications, pre-departure guidance, and post-graduation support. We aim to streamline every
aspect of the study abroad journey, ensuring that students and partners benefit from seamless and
efficient processes tailored to their unique needs. Unideft is a global education services provider with
more than a decade of experience in the study abroad sector. We specialize in connecting students
and recruitment partners to world-class educational opportunities through our comprehensive
platform and mobile app. Our services encompass everything from admissions assistance to postgraduation support, ensuring a seamless study abroad journey. - Headquarters Information: Unideft’s headquarters is located in the UAE:
• Address: Business Centre, Sharjah Publishing City Free Zone, Sharjah, United Arab Emirates.
• Email: hello@unideft.com - Official Website: Our official website is www.unideft.com, where users can access detailed
information about our services, register for our platform, and manage their study abroad journey. - Unique Features of Unideft: Unideft combines technology and expertise to redefine global
education services with enhanced collaboration for recruitment partners worldwide.
Platform Technology: Our website is built using WordPress, and the primary programming language
is PHP. Additionally, our platform leverages a complex tech stack involving multiple programming
languages and tools to ensure seamless functionality and user experience.
Data Collection - Types of Personal Data Collected: We collect various types of data to provide personalized and
efficient services. These include:
• Identification Data: Aadhaar, PAN (for Indian students), local IDs for other countries, and
passports.
• Academic Data: Transcripts, certificates, qualifications, and course preferences.
• Professional Data: Work experience certificates, resumes, and recommendations (if
applicable).
• Financial Data: Proof of funds, bank statements, GIC/block account details, tuition payment
records, and scholarship details.
• Biometric Data: Collected only when mandated by specific visa requirements, such as
Canadian Embassy Biometric Certificates.
• Technical Data: IP addresses, device details, browser types, cookies, tracking information,
and usage logs. - Purpose of Data Collection: Unideft collects your data to:
1. Facilitate admissions to educational institutions.
2. Assist with visa and immigration processes.
3. Provide tailored recommendations for programs, scholarships, and internships.
4. Track application statuses and notify users of updates.
5. Improve user experiences by personalizing platform interactions.
6. Conduct marketing campaigns (with explicit user consent).
7. Comply with local and international regulations, including tax and audit requirements. - Data Collection Methods: We collect data through:
1. Online Platforms: Information submitted via our website or mobile app.
2. In-Person Channels: Data collected through recruitment agents, sub-agents, or physical
office visits.
3. Third Parties: Information shared by educational institutions, visa agencies, and authorized
partners.
Data Usage and Sharing - Usage of Collected Data: Your data is used to:
• Process applications to educational institutions.
• Facilitate visa and immigration services.
• Provide updates and notifications about your application status.
• Deliver personalized content and tailored user experiences.
• Conduct targeted marketing and promotional campaigns (only with your explicit consent).
• Ensure compliance with regulatory requirements and support operational needs. - Data Sharing with Third Parties: Yes, data may be shared with:
1. Educational Institutions: To process admissions and placements.
2. Visa Agencies: For assistance with visa applications and compliance.
3. Payment Gateways: Stripe processes payments securely and receives necessary transaction
data.
4. Marketing Partners: For personalized advertising and outreach (only with consent).
5. Sub-Agents: To assist in application processing and coordination. - Third-Party Compliance Assurance: Unideft maintains strict contractual agreements with all third
parties, ensuring compliance with data protection laws such as GDPR, PIPEDA, and local regulations.
Regular audits and evaluations are conducted to verify adherence to our privacy standards.
Data Storage and Retention - Data Retention Policy: User data is retained for a period after the completion of an application or
when a user opts out of the service. The retention period depends on legal, regulatory, and
operational needs, such as compliance with data protection laws like GDPR and PIPEDA, tax
regulations, or audit requirements.
If a user chooses to exempt themselves from the service or no longer wishes to use the platform,
their data may be retained for a reasonable duration to ensure legal compliance or resolve pending
issues such as financial transactions or contractual obligations.
Users may request to deactivate or delete their accounts. However, certain information may still be
retained for legal, regulatory, or dispute resolution purposes, even after exemption from the service.
For example, data may be kept to resolve potential disputes, comply with court orders, or meet audit
or reporting requirements mandated by specific jurisdictions. User data is retained for a period after
the completion of an application or when a user opts out of the service. The retention period
depends on legal, regulatory, and operational needs.
If a user chooses to exempt themselves from the service or no longer wishes to use the platform,
their data may be retained for a reasonable duration to ensure legal compliance or resolve pending
issues such as financial transactions or contractual obligations.
Users may request to deactivate or delete their accounts. However, certain information may still be
retained for legal, regulatory, or dispute resolution purposes, even after exemption from the service. - Retention Rules for Sensitive Data: Yes, Unideft applies stringent retention rules for sensitive
data, including financial and academic records.
• Financial and academic data is retained for extended periods due to legal, regulatory, and
contractual obligations. This data is often required for audits, tax reporting, or compliance
with education-related regulations. Retention typically ranges from 5 to 7 years after the
completion of service or exemption, depending on jurisdiction and circumstances.
• If unresolved disputes or legal matters exist, sensitive data may be retained until such issues
are resolved, even if the user has opted out of the service.
• Usage data is generally retained for a shorter period unless it is essential for strengthening
security, improving platform functionality, or complying with legal obligations.
Unideft ensures that data retained for longer durations is safeguarded with advanced security
protocols to protect user privacy. - Data Storage Locations: Your data is securely stored on AWS servers located in the Europe
region. We use trusted third-party providers to ensure data security and compliance with
international data protection regulations. - Security Measures: Unideft employs advanced security protocols, including:
• Encryption: Unideft employs robust encryption protocols to safeguard customer data both in
transit and at rest. For data at rest, we use industry-standard AES-256 encryption, providing a
high level of security. Data transmitted over public networks is secured using Transport Layer
Security (TLS) versions 1.2 and 1.3, offering strong protection against unauthorized access or
alterations. These measures ensure the confidentiality and integrity of sensitive information
throughout its lifecycle.
• Access Controls: Multi-factor authentication (MFA) is required for accessing sensitive data,
ensuring only authorized personnel can access the system.
• Regular Audits: Security systems are routinely assessed for vulnerabilities and
improvements, with periodic penetration testing.
• Data Minimization: Only necessary data is collected and processed to reduce risks.
• Firewall Protection: Advanced firewalls are implemented to protect our network from
unauthorized access or cyber threats.
• Backup Systems: Data is regularly backed up and stored securely to ensure data recovery in
case of system failure or breach. Unideft employs advanced security protocols, including:
• Encryption: Data is encrypted during transmission and storage to prevent unauthorized
access.
• Access Controls: Multi-factor authentication is required for accessing sensitive data.
• Regular Audits: Security systems are routinely assessed for vulnerabilities and
improvements.
• Data Minimization: Only necessary data is collected and processed to reduce risks.
User Rights and Consent - User Rights Regarding Data: You have the right to:
1. Access: View the data we hold about you. Users can submit a request via email to
hello@unideft.com or through the account management section on our website.
2. Correction: Request updates or corrections to your personal information. This can be done
by contacting our support team or sending an email to hello@unideft.com. Alternatively,
you may fill out the correction request form available on our platform.
3. Deletion: Request deletion of your data (subject to legal obligations). Users can submit a
deletion request by emailing us.
4. Portability: Receive a copy of your data in a structured, machine-readable format. Users can
request data portability by contacting our support team or emailing us
5. Consent Management: Opt in or out of specific data uses, such as marketing
communications. This can be managed by contacting our support team or emailing
hello@unideft.com. You have the right to:
6. Access: View the data we hold about you.
7. Correction: Request updates or corrections to your personal information.
8. Deletion: Request deletion of your data (subject to legal obligations). However, please note
that some essential data (e.g., required for service functionality) may still be collected as
needed to maintain the core services.
9. Portability: Receive a copy of your data in a structured, machine-readable format.
10. Consent Management: Opt in or out of specific data uses, such as marketing
communications. - Consent Management: Consent is obtained through:
1. Registration Prompts: When you visit our website, you will encounter a consent banner that
explains our Privacy Policy. To continue using our services, you must agree to the terms by
clicking the consent button.
2. Email Requests: To withdraw consent, email us at hello@unideft.com. - Data Preferences Management: Yes, users can log into their accounts to adjust preferences or
contact our support team for assistance.
Cookies and Tracking - Cookie Usage: Yes, we use cookies and similar technologies to:
• Monitor website performance and improve functionality.
• Personalize user experiences based on preferences and behavior.
• Deliver targeted advertisements relevant to user interests. - Cookie Preferences Management: Yes, users can:
1. Adjust browser settings to block or delete cookies.
2. Use the cookie management tool on our website to select preferences. This tool provides
users with detailed options for managing their cookie preferences, including enabling or
disabling specific categories of cookies, such as necessary, functional, analytics, or
advertising cookies. Clear instructions are provided to ensure users can easily customize their
settings according to their preferences. Yes, users can:
3. Adjust browser settings to block or delete cookies.
4. Use the cookie management tool on our website to select preferences. - Tracking Data Sharing: Yes, tracking data may be shared with service providers, marketing
platforms, and analytics tools to enhance our services and provide relevant advertisements. All
sharing complies with applicable privacy laws.
Notification and Updates - Privacy Policy Changes Notification: Users are notified of updates to the Privacy Policy through
multiple channels to ensure transparency:
1. Pop-up Notifications: A pop-up is displayed on the homepage of the website or app when
users log in or visit the platform. This notification informs them of the updated Privacy Policy
and provides an option to read more.
2. In-App Alerts: Notifications within the platform or mobile app require acknowledgment
before proceeding.
3. Website Announcements: Updates are highlighted on the homepage for easy access.
Third-Party Links - Third-Party Links: Yes, Unideft provides links to third-party services such as accommodation
booking, financial portals, GCI and Blog, educational resources. These links are intended to enhance
user convenience and provide access to additional services. - Managing Third-Party Link Risks: While we carefully vet our third-party partners to ensure
reliability and security, users should note the following:
1. Independent Policies: Third-party websites operate under their own privacy policies, which
may differ from Unideft’s. Users are encouraged to review these policies before sharing
personal information.
2. Secure Payment Links: Financial transactions through third-party services like payment
gateways are encrypted and processed securely.
3. Limited Data Sharing: Unideft shares only the necessary information required to facilitate
the requested service.
4. Caution Advised: Users should exercise caution and report any suspicious activity
encountered on linked sites.
By clicking on third-party links, users agree to the terms of the external site and acknowledge that
Unideft does not control their content or data handling practices.
Payments - Payment Processing: Payments are processed securely through Stripe, a PCI-DSS-compliant
payment provider. Sensitive financial details are not stored on Unideft’s servers. - Payment-Related Data Sharing: We share transaction details, billing information, and payment
confirmations with Stripe to facilitate secure payments and verify transactions.
Law Enforcement and Legal Compliance - Data Disclosure to Authorities: Unideft may disclose your personal data under the following
circumstances:
1. Legal Obligations: When required to do so by law or in response to valid requests from
public authorities, such as courts or government agencies.
2. Good Faith Actions: In situations where disclosure is deemed necessary to:
o Comply with a legal obligation.
o Protect and defend the rights or property of Unideft.
o Prevent or investigate potential wrongdoing in connection with our services.
o Safeguard the personal safety of our users or the public.
o Protect against legal liability.
Examples of Specific Scenarios:
• If law enforcement authorities request user data as part of an investigation into fraud or
cybercrime.
• To comply with a court order requiring disclosure of information related to a user’s legal
case.
• If a government agency requests data to verify compliance with regulatory standards, such
as tax or financial reporting requirements.
• In the event of a legal dispute where disclosure of specific user data is necessary to defend
Unideft’s rights. Unideft may disclose your personal data under the following circumstances:
1. Legal Obligations: When required to do so by law or in response to valid requests from
public authorities, such as courts or government agencies.
2. Good Faith Actions: In situations where disclosure is deemed necessary to:
o Comply with a legal obligation.
o Protect and defend the rights or property of Unideft.
o Prevent or investigate potential wrongdoing in connection with our services.
o Safeguard the personal safety of our users or the public.
o Protect against legal liability.
Such disclosures are conducted in strict compliance with applicable legal frameworks to ensure
transparency and accountability.
Business Transactions - Data During Mergers or Acquisitions: In the event of a merger, acquisition, or restructuring, user
data may be transferred to the acquiring entity. Any transfer will adhere to this Privacy Policy and
relevant legal obligations. Users will be notified of significant changes to data handling.
Usage Tracking Data - Usage Tracking Data Collection: Usage tracking data is collected through cookies, web beacons,
and other similar technologies to monitor interactions with our platform. We use tools like Google
Analytics to gather insights about user behavior, which helps us refine and enhance the user
experience. This data helps us:
1. Analyze user behavior to improve platform functionality and design.
2. Personalize user experiences by tailoring content and recommendations based on preferences.
3. Detect and address potential security threats or fraudulent activity.
4. Measure the effectiveness of marketing campaigns and optimize advertisements. - Usage Tracking Data Sharing: Yes, usage tracking data may be shared with trusted third-party
service providers and partners for the following purposes:
1. Analytics: To help us understand user behavior and improve the platform’s performance.
2. Marketing: To enable targeted advertisements that align with user preferences and interests.
3. Security : To identify and mitigate potential security risks.
All data sharing is conducted in compliance with applicable privacy regulations, such as GDPR and
PIPEDA. Third parties are contractually obligated to protect the data and use it solely for the
intended purposes
Contact Information - Privacy-Related Contact Information:
You can reach us at:
Email: [hello@unideft.com](mailto\:hello@unideft.com)
Address: Business Centre, Sharjah Publishing City Free Zone, Sharjah, United Arab Emirates.
At Unideft, we prioritize your privacy and are dedicated to maintaining transparency and
accountability in all data handling practices. Please contact us if you have further questions or
concerns.
