Privacy Policy

Last updated:

October 8, 2025

Privacy Policy

ERP Institute
Operated by BRIAN ANKAMAH ANNAN LTD (HE 449077)
Georgiou Karaiskaki 11–13, Carisa Salonica Court, OFFICE 102, Pervolia, 7560, Larnaca, Cyprus
Last updated: [Insert Date]

ERP Institute (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy.
This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website, courses, products, services, and SAP training system access (“Services”).

We process personal data in compliance with:

EU General Data Protection Regulation (GDPR)
Cyprus Data Protection Law
Other applicable EU/EEA privacy regulations

By using our Services, you consent to the practices described in this Policy.

1. Data Controller

The Data Controller responsible for processing personal data is:

BRIAN ANKAMAH ANNAN LTD
HE 449077
Georgiou Karaiskaki 11–13
Carisa Salonica Court, OFFICE 102
Pervolia, 7560, Larnaca, Cyprus
📩 privacy@erpinstitute.com

2. Personal Data We Collect

We collect personal data directly from you when you use our Services, purchase a course, book a session, or interact with our platform.

2.1 Data you provide directly

Name
Email address
Phone number (optional)
Billing address
Payment information (processed by third parties, not stored by us)
Account login details
SAP training system credentials (pseudonymized)
Support inquiries
Career coaching details (if booked)

2.2 Automatically collected data

IP address
Device information
Browser type
Time zone
URLs visited
Cookies & tracking data
Usage logs
Course progress & engagement analytics

2.3 Third-party data sources

We may collect data from:

Payment processors (Stripe, PayPal)
Calendly (coaching session bookings)
Kajabi (course platform analytics)
SAP training system providers
Email marketing tools (e.g., Mailchimp, Kajabi Email)
Support platforms (email, ticketing systems)

We do not collect or process special categories of data (racial, biometric, health, political, etc.).

3. How We Use Your Data

We process your personal data for the following purposes:

3.1 To provide and improve our Services

Deliver course access
Give SAP training system access
Track course progress
Authenticate users
Provide technical support
Improve the learning experience

3.2 To manage your account

Account creation
Login management
Password resets
Communication regarding your courses

3.3 To process payments

Billing
Fraud prevention
Payment confirmations
(Handled by third-party processors; we do not see your full card data.)

3.4 For communication

Course updates
Support responses
Account-related notifications
Service announcements

3.5 For marketing (with consent)

Email newsletters
New course announcements
Special offers
You can unsubscribe at any time.

3.6 For legal compliance

Tax and accounting obligations
Regulatory requirements
Fraud prevention
Enforcement of Terms & Conditions

4. Legal Basis for Processing (GDPR Articles 6)

We process personal data on the following legal bases:

Contract performance (providing the course you purchased)
Legal obligation (tax law, accounting, recordkeeping)
Legitimate interest (platform security, fraud prevention, analytics)
Consent (marketing communications)

5. How Long We Store Your Data

We store personal data only for as long as necessary:

Account data: while your account remains active
Course purchases: 7 years (for tax and legal compliance)
Email marketing: until you unsubscribe
SAP system access data: until training access expires
Support messages: up to 24 months

You may request deletion at any time (see Section 10).

6. Data Sharing & Third Parties

We only share your data with trusted partners essential to delivering our Services:

6.1 Course & Learning Tools

Kajabi (course platform)
SAP training system providers (third-party)

6.2 Payment Processors

Stripe
PayPal
(We never store full payment card details.)

6.3 Scheduling Tools

Calendly (career coaching sessions)

6.4 Analytics & Marketing Tools

Kajabi Analytics
Google Analytics (if enabled)
Email marketing providers

6.5 Legal & Compliance

Auditors
Regulatory authorities (when legally required)

We never sell your data to third parties.

7. International Data Transfers

Some data may be transferred outside the EU/EEA.
All transfers follow GDPR requirements through:

Standard Contractual Clauses (SCCs)
Adequacy decisions
Compliance audits by service providers

8. Cookies & Tracking Technologies

We use cookies to:

Improve website functionality
Track usage analytics
Personalize your experience
Enable login sessions

You can control cookie settings through your browser.

A detailed Cookie Policy is available separately.

9. Data Security

We implement technical and organizational measures to protect your data, including:

Encrypted connections (HTTPS)
Password hashing
Access controls
Secure data centers
Regular security audits
Limited employee access

Despite this, no online platform can guarantee 100% security.

10. Your GDPR Rights

As an EU/EEA user, you have the right to:

Access your data
Correct inaccurate data
Request deletion (“right to be forgotten”)
Restrict processing
Object to processing
Download your data (data portability)
Withdraw consent (for marketing)
File a complaint with a Data Protection Authority

To exercise these rights, contact:
📩 privacy@erpinstitute.net

11. Children's Privacy

Our Services are not intended for individuals under 18.
We do not knowingly collect data from minors.

12. Third-Party Links

Our website may contain links to external sites.
We are not responsible for their privacy practices or content.

13. Changes to this Privacy Policy

We may update this Policy at any time.
Changes take effect when posted on our website.
Continued use of the Services constitutes acceptance.

14. Contact Information

For privacy-related inquiries:

BRIAN ANKAMAH ANNAN LTD
Georgiou Karaiskaki 11–13
Carisa Salonica Court, OFFICE 102
Pervolia, 7560, Larnaca, Cyprus

📩 privacy@erpinstitute.net
📩 info@erpinstitute.net