1. Objective & Scope

At [EDIT: HEADING EDITORIAL PRIVATE LIMITED] (referred to as "we", "us", or "our"), we respect the integrity of our users' personal and academic metrics. This Policy details how we govern the intake, custody, processing, and distribution of personal information acquired via our pilot ground-training platform, designed in accordance with Swiss typographic and aeronautic instrumentation principles.

2. Collected Information Vectors

We capture specific datasets to maintain flight ground school training accuracy:

• Identity & Credentials: Email addresses, display names, profile avatars provided during explicit sign-in initialization through high-security OAuth integrations (including Google Auth).
• Aeronautic Progress & Study Metrics: Detailed records of answer selections, timestamped performance variables, mastery logs, customized study preferences, and quiz configurations to power our spaced repetition review scheduler.
• Payment Context: Information processed during premium subscriptions, including transaction token metadata, order states, and billing identifiers. Note: We do not hold clear credit/debit card details directly; all payments are handled directly by our PCI-DSS compliant partner Razorpay.
• System Logs & Telemetry Events: Non-sensitive browser identifiers, device profiles, dynamic window resizes, active sessions, and system latencies tracked to prevent operational crashes.

3. Data Retainment, Hosting & Storage

Your private profiles and academic state histories are hosted in highly secure cloud architectures managed by Supabase. These servers are hosted in secure data centers operating with advanced hardware access controls. Data is stored in perpetuity until either (a) the user triggers an explicit account suppression action, or (b) an idle profile shows zero interface check-ins for three (3) consecutive years, at which point it is automatically purged or archived.

4. Cookie Guidelines & AdSense Personalization

Cookies are tiny system packets logged onto hard drives to calibrate interface consistency. Our platform executes cookies to preserve user login sessions, store styling preferences, and coordinate analytical metrics.

Additionally, we run with Google AdSense. Third-party advertising vendors, including Google, execute cookies to serve personalized context based on your previous clicks on this or external virtual portals. Users can choose to opt-out of personalized advertising frameworks entirely by adjusting their master configurations inside Google's Ads Preferences settings.

5. Third-Party Integrations

Under no circumstances do we barter, vend, or lease your private logs to random marketers. We do share designated data slots with specialized standard interfaces solely to fulfill operational requirements:

• Google OAuth: To provide instant, passwordless sign-on utility.
• Razorpay API: To fulfill card, NetBanking, and UPI subscription payment routes securely.
• Gemini AI Engine: To generate AI-boosted ground-prep study items and analyze your weak operational subjects.
• Google AdSense: To offer educational ads as support for operating ground infrastructure.

6. User Rights (GDPR & CFPB Alignment)

Whether you are studying under EASA, FAA, or DGCA jurisdictions, we grant uniform procedural rights relative to your personal records:

• Right to Inspect: Request a comprehensive export copy of all logs recorded under your name.
• Right to Recalibrate: Request corrections to misspelled names or flawed study settings.
• Right to Reset/Delete: Request absolute and immediate termination of your registration, wiping all databases clean of your historical runs.

To utilize these rights, escalate your written flight plan to our dispatch unit at [EDIT: support@headingeditorial.com].