+254 700 000 000 contact@credextraining.com
credex logo
Login Register

Privacy Policy

Effective Date: January 8, 2026

Last Updated: January 8, 2026

Credex Training ("we," "us," "our," or "Credex") is committed to protecting and respecting your privacy. This Privacy Policy explains in detail how we collect, use, process, disclose, and safeguard your personal information when you visit our website, register for our training courses, participate in our programs, or otherwise interact with our services. We take our responsibility for protecting your personal data seriously and are committed to transparency about our data practices.

Please read this privacy policy carefully to understand our views and practices regarding your personal data and how we will treat it. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this privacy policy, please do not access or use our services.

1. Who We Are

Credex Training is a professional training organization based in Kenya, specializing in providing high-quality training courses across various professional disciplines including quality management, project management, data management, and other professional development areas. We offer flexible training delivery modes including in-person sessions at various locations across East Africa and internationally, virtual online sessions, self-paced learning options, and customized fly-me-a-trainer services for organizations.

Our platform connects students and professionals with expert instructors to deliver comprehensive training experiences that enhance professional capabilities and career advancement. We serve individuals and organizations from Kenya and around the world, providing accessible and practical training solutions.

2. Information We Collect

We collect various types of information in connection with the services we provide. The information we collect falls into several categories, which we describe in detail below.

2.1 Personal Information You Provide Directly

When you create an account, enroll in a course, or interact with our platform, you provide us with personal information voluntarily. This includes:

  • Account Registration Information: When you create an account on our platform, we collect your email address, chosen password, first name, last name, and phone number. During the onboarding process, you will also create a username which becomes part of your profile.
  • Profile Information: You may optionally provide a profile picture to personalize your account. This helps instructors and administrators identify participants in virtual sessions and creates a more personalized learning experience.
  • Professional and Organizational Information: We collect information about your professional background, including your organization name and organization website URL if applicable. This information is optional but helps us understand our student demographics and tailor our course offerings. We also ask how you heard about us to help us understand which outreach channels are most effective.
  • Course Enrollment Information: When you enroll in a course, we collect detailed information about your training preferences, including your chosen course, preferred training location or virtual attendance preference, number of participants if you are registering on behalf of a group or organization, preferred start and end dates for your training, and your chosen mode of training delivery whether physical in-person training, virtual online training, fly-me-a-trainer service, or self-paced learning.
  • Communication Data: When you contact us through our website, email, phone, or social media channels, we collect the content of your communications, including any questions, feedback, support requests, or enrollment inquiries you send to us.
  • Payment Reference Information: While we do not collect your actual payment card details or banking information, we do collect payment reference numbers and transaction identifiers that are generated when you make a payment through our payment gateway. These references help us track and verify your payments and link them to your enrollments.

2.2 Information Collected Automatically

When you access and use our website, certain information is collected automatically through cookies and similar technologies:

  • Usage Analytics: We use Google Analytics to collect information about how visitors use our website. This includes pages you visit, the time and date of your visits, time spent on particular pages, the order in which you visit pages, which links you click on, and general patterns of navigation through our site. This data is collected in aggregate and anonymized form.
  • Technical Information: We automatically collect technical information about your device and internet connection, including your IP address, browser type and version, operating system, device type, screen resolution, and referring website addresses.
  • Session Information: We use essential functional cookies to maintain your login session, remember your preferences during your visit, and enable core functionality of our platform such as course enrollment workflows and payment processes.

2.3 Information from Third Parties

In some cases, we may receive information about you from third-party sources:

  • Payment Confirmations: Our payment gateway provider sends us confirmation when you complete a payment transaction, including transaction reference numbers, payment amounts, payment status, and timestamps. This allows us to automatically update your enrollment status and grant you access to your training.
  • Social Media Inquiries: If you contact us through social media platforms, we may receive your profile information from those platforms in accordance with your privacy settings on those services.

3. How We Use Your Information

We use the information we collect for various legitimate business purposes that are essential to providing and improving our training services. The specific purposes for which we use your information include:

3.1 Providing and Managing Training Services

We use your personal information to deliver the core services you have signed up for. This includes creating and maintaining your user account with secure authentication, processing your course enrollments and registrations, coordinating training logistics for both virtual and in-person sessions, matching you with appropriate instructors based on your chosen courses, scheduling training sessions according to your selected dates and availability, providing access to course materials and resources, facilitating your participation in virtual training sessions through our integrated video conferencing platform, tracking your progress through courses, and issuing certificates of completion when you successfully finish a training program.

3.2 Payment Processing and Financial Management

We process your enrollment and payment information to handle all financial aspects of your training, including calculating course fees based on your selected location and number of participants, generating payment references that securely link your payments to your enrollments, processing payments through our secure payment gateway partner, confirming receipt of payment and updating your enrollment status accordingly, maintaining transaction records for accounting and audit purposes, and handling any refund requests or payment disputes in accordance with our refund policy.

3.3 Communication and Customer Support

We use your contact information to maintain ongoing communication about your training experience. This includes sending confirmation emails when you register or enroll in courses, providing pre-training information and preparation materials, sending reminders about upcoming training sessions, notifying you of any schedule changes or important updates, responding to your questions and support requests, gathering feedback about your training experience to improve our services, and sharing relevant updates about new courses or training opportunities that may interest you based on your previous enrollments.

3.4 Platform Administration and Security

We process your information to maintain a secure and well-functioning platform. This involves verifying user identities and preventing unauthorized access to accounts, detecting and preventing fraudulent transactions or activities, monitoring for security threats and protecting against malicious attacks, enforcing our terms of service and other policies, resolving technical issues and troubleshooting problems, maintaining data backups to prevent loss of information, and conducting internal audits and quality control processes.

3.5 Analytics and Service Improvement

We analyze aggregated and anonymized data to understand how our services are being used and how we can improve them. This includes analyzing website traffic patterns to optimize user experience, identifying which courses are most popular and in-demand, understanding geographic distribution of our students to plan new training locations, evaluating the effectiveness of different training delivery modes, identifying technical issues or bottlenecks in the enrollment process, and making data-driven decisions about new course offerings and service enhancements.

3.6 Legal Compliance and Protection

We process your information when necessary to comply with legal obligations, including maintaining records as required by tax and accounting regulations, responding to lawful requests from government authorities or law enforcement, complying with court orders or legal processes, protecting our legal rights and interests in disputes, and fulfilling regulatory requirements applicable to educational and training services.

4. Legal Basis for Processing Your Information

We process your personal information based on several legal grounds, depending on the nature of the processing and the information involved:

Contractual Necessity: Most of the personal information we collect is necessary to perform our contract with you, specifically to provide the training services you have enrolled in. This includes processing your registration, coordinating your training, and issuing certificates.

Legitimate Interests: We process certain information based on our legitimate business interests, such as improving our services, maintaining security, preventing fraud, and analyzing usage patterns. We carefully balance these interests against your privacy rights and only process information where our interests do not override your fundamental rights.

Consent: For certain processing activities, particularly the use of analytics cookies, we rely on your consent. You can withdraw your consent at any time by adjusting your cookie preferences or contacting us.

Legal Obligations: We process some information to comply with legal requirements, such as maintaining financial records for tax purposes or responding to valid legal requests.

5. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We only share your information in the limited circumstances described below, and we ensure that any third parties we work with are contractually obligated to protect your information and use it only for the purposes we specify.

5.1 Service Providers and Business Partners

We work with carefully selected third-party service providers who help us operate our platform and deliver our services. These partners only have access to the minimum information necessary to perform their specific functions:

Secure Data Hosting: We use enterprise-grade cloud infrastructure providers to host and store your account information, enrollment records, and course data. These providers maintain industry-standard security measures including encryption, access controls, and regular security audits. The data is stored in secure data centers with redundancy and backup systems to ensure availability and prevent data loss.

Payment Processing: We partner with Paystack, a PCI-DSS compliant payment gateway, to securely process all course fee payments. When you make a payment, you are redirected to Paystack's secure payment interface. We never collect, store, or have access to your complete credit card numbers, CVV codes, or banking credentials. Paystack processes the payment information directly and only shares transaction reference numbers and payment confirmation details with us. All payment data is encrypted during transmission using industry-standard SSL/TLS protocols. You can review Paystack's security practices and privacy policy on their website.

Virtual Training Platform: For virtual training sessions, we use Whereby's embedded video conferencing service. When you join a virtual session, you connect directly to Whereby's platform through an embedded interface on our website. Whereby processes certain information about your participation in the session, including your device information, connection quality, and session duration. We do not record training sessions unless explicitly announced to all participants beforehand. Whereby's privacy practices and data handling procedures are governed by their own privacy policy.

Analytics Services: We use Google Analytics to understand how visitors interact with our website. Google Analytics collects information through cookies and processes it in accordance with Google's privacy policies. The data collected is anonymized and aggregated, meaning it does not identify you personally. Google Analytics helps us understand which pages are most visited, how users navigate through our site, and where visitors are geographically located in aggregate. You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.

Email Communications: We may use email service providers to send you transactional emails, course confirmations, and important updates. These providers process your email address and the content of messages we send you, but are prohibited from using your information for any other purpose.

5.2 Within Our Organization

Your information is accessible to different roles within our organization based on their legitimate need to access it:

Administrators have access to comprehensive information to manage the platform, create enrollments on behalf of students who contact us through social media or need assistance, oversee course operations, and ensure smooth service delivery.

User Managers can access student information relevant to managing enrollments, assisting with registration processes, and coordinating training logistics.

Instructors can view information about students enrolled in their courses, including names, contact information, and enrollment details necessary to deliver effective training and communicate with participants.

All staff members are trained on data protection principles and are contractually obligated to maintain the confidentiality of student information.

5.3 Legal Disclosures

We may disclose your personal information if required to do so by law or in good faith belief that such action is necessary to comply with legal obligations or lawful requests from government authorities, respond to a court order, subpoena, search warrant, or other valid legal process, protect and defend our rights or property in legal proceedings, investigate and prevent fraud, security breaches, or technical issues, protect the personal safety of users of our services or the public, or comply with regulatory investigations or audits.

5.4 Business Transfers

In the event that Credex Training is involved in a merger, acquisition, asset sale, or other business transaction, your personal information may be transferred as part of that transaction. We would notify you via email and post a prominent notice on our website of any such change in ownership or control of your personal information. The acquiring entity would be bound by the terms of this Privacy Policy unless they provide you with a new privacy policy and obtain your consent where required.

6. International Data Transfers

Credex Training is based in Kenya and primarily operates within East Africa. However, we welcome students from around the world and may transfer or process your personal information in different countries. Some of the third-party service providers we work with may be located in countries outside of Kenya, including in the United States, Europe, or other regions.

Different countries have different data protection laws, and some may not provide the same level of protection as the laws in your home country. When we transfer your personal information internationally, we take steps to ensure that your information receives an adequate level of protection, including implementing contractual safeguards such as standard data protection clauses, working only with service providers who maintain strong security practices, and ensuring compliance with applicable cross-border data transfer regulations.

If you are located in the European Economic Area or other regions with specific data transfer requirements, please be aware that your information may be transferred to and processed in countries that have not been deemed to provide adequate data protection by your local authority. By using our services, you acknowledge and consent to such transfers.

7. Data Security

We take the security of your personal information seriously and implement comprehensive technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

Encryption: All data transmitted between your browser and our servers is encrypted using industry-standard TLS (Transport Layer Security) protocols. Sensitive information stored in our databases is encrypted at rest using strong encryption algorithms.

Access Controls: We implement strict access controls to ensure that only authorized personnel can access personal information, and only to the extent necessary for their job functions. All staff accounts require strong passwords and are protected by authentication mechanisms.

Security Monitoring: We continuously monitor our systems for potential security vulnerabilities and unauthorized access attempts. We maintain logging and audit trails of access to personal information.

Regular Updates: We keep our systems and software up to date with the latest security patches and regularly review our security practices to address emerging threats.

Data Backup: We maintain secure backups of data to prevent loss due to system failures, natural disasters, or other unforeseen events. Backup data is also encrypted and stored securely.

Incident Response: We have procedures in place to respond to potential security incidents, including investigating breaches, notifying affected users where required by law, and taking corrective action to prevent future incidents.

However, no method of transmission over the internet or electronic storage is completely secure. While we strive to use commercially acceptable means to protect your personal information and implement industry best practices, we cannot guarantee absolute security. You also play a role in protecting your information by choosing a strong password, keeping your login credentials confidential, logging out of your account when using shared computers, and promptly notifying us if you suspect unauthorized access to your account.

8. Data Retention

We retain your personal information for different periods depending on the type of information and the purposes for which we use it:

Account Information: We retain your account information for as long as your account remains active. If you choose to close your account, we will delete or anonymize your personal information within a reasonable timeframe, except where we need to retain it for legal or legitimate business purposes.

Enrollment and Training Records: We retain comprehensive records of your course enrollments, training attendance, and certificates of completion indefinitely. This allows us to provide you with ongoing access to your training history and certificates for verification purposes throughout your professional career. This is also important for maintaining the integrity of our certification programs and complying with potential audit requirements.

Transaction Records: We retain payment transaction records for at least seven years to comply with tax, accounting, and financial regulations. This includes transaction reference numbers, payment amounts, dates, and related enrollment information.

Communications: We typically retain correspondence and communications with you for up to three years, or longer if necessary to resolve ongoing issues or for legal purposes.

Analytics Data: Website analytics data collected through Google Analytics is typically retained for 26 months in accordance with Google's data retention policies, after which it is automatically deleted.

When we no longer need your personal information for the purposes described in this policy, or when you request deletion of your information, we will securely delete or anonymize it so that it can no longer identify you. In some cases, we may retain anonymized or aggregated information for statistical and research purposes.

9. Your Privacy Rights

You have important rights regarding your personal information. We are committed to facilitating the exercise of these rights and responding to your requests promptly and transparently:

9.1 Right to Access

You have the right to request access to the personal information we hold about you. This includes the right to obtain confirmation of whether we are processing your information, access to your personal data, and information about how we are processing it. You can request a copy of your personal information in a commonly used electronic format.

9.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal information. You can update most of your account information directly through your profile settings. For information you cannot update yourself, you can contact us and we will make the necessary corrections promptly.

9.3 Right to Erasure

You have the right to request deletion of your personal information in certain circumstances, such as when the information is no longer necessary for the purposes for which it was collected, when you withdraw consent on which processing is based, or when you object to processing and there are no overriding legitimate grounds. However, we may need to retain certain information to comply with legal obligations, resolve disputes, enforce agreements, or maintain training records and certifications.

9.4 Right to Restriction

You have the right to request restriction of processing of your personal information in certain situations, such as when you contest the accuracy of the information, when processing is unlawful but you prefer restriction over deletion, or when we no longer need the data but you need it for legal claims.

9.5 Right to Data Portability

You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit that data to another service provider where technically feasible. This applies to information you have provided to us with your consent or that is necessary for our contract with you.

9.6 Right to Object

You have the right to object to processing of your personal information based on legitimate interests or for direct marketing purposes. When we process your information based on legitimate interests, you can object, and we will cease processing unless we can demonstrate compelling legitimate grounds that override your interests.

9.7 Right to Withdraw Consent

Where we process your personal information based on your consent, you have the right to withdraw that consent at any time. This does not affect the lawfulness of processing based on consent before its withdrawal.

9.8 How to Exercise Your Rights

To exercise any of these rights, please contact us using the contact information provided at the end of this policy. When you submit a request, we may ask you to verify your identity to ensure we are providing information to or taking action at the request of the correct individual. We will respond to your request within 30 days, or inform you if we need additional time to process your request. If we cannot fulfill your request, we will explain why.

10. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to provide functionality and improve your experience. Understanding how we use these technologies helps you make informed decisions about your privacy.

10.1 What Are Cookies

Cookies are small text files that are stored on your device when you visit a website. They contain information that can be read by the website on subsequent visits. Cookies enable websites to remember your preferences, maintain your login session, and collect information about how you use the site.

10.2 Types of Cookies We Use

Essential Functional Cookies: These cookies are necessary for our website to function properly and provide core features. They enable you to log into your account, navigate through the enrollment process, submit forms, and maintain your session while using the platform. Without these cookies, essential services cannot be provided. These cookies do not collect information that could identify you personally beyond your session.

Analytics Cookies: We use Google Analytics cookies to understand how visitors interact with our website. These cookies collect information about which pages you visit, how long you spend on each page, how you arrived at our site, and what links you click on. This information is collected in aggregate form and is anonymized, meaning it does not identify you personally. We use this information to improve the layout, content, and functionality of our website.

10.3 What We Don't Use Cookies For

We want to be clear about what we do not do with cookies. We do not use cookies for marketing or advertising purposes. We do not use cookies to track you across other websites. We do not use third-party advertising cookies or allow advertisers to place cookies on our site. We do not use cookies to build detailed profiles of your browsing behavior beyond our website. We do not sell cookie data to any third parties.

10.4 Managing Cookies

You have control over cookies through your browser settings. Most browsers allow you to refuse or delete cookies. The methods for doing so vary from browser to browser. You can typically find cookie management options in your browser's settings or preferences menu. Please note that if you disable essential functional cookies, some features of our website may not work properly, and you may not be able to log in or complete enrollments.

To opt out of Google Analytics specifically, you can install the Google Analytics Opt-out Browser Add-on, which prevents Google Analytics from collecting information about your website visits.

11. Third-Party Links and Services

Our website may contain links to third-party websites, social media platforms, or other online services that are not operated by us. For example, we may link to our social media profiles, partner organizations, or external resources relevant to our training content.

This Privacy Policy applies only to information collected by Credex Training. When you click on a link to a third-party website or service, you leave our website and are subject to the privacy practices and policies of that third party. We are not responsible for the privacy practices, content, or security of third-party websites or services.

We encourage you to read the privacy policies of any third-party websites you visit to understand how they collect, use, and protect your information. Be particularly cautious when providing personal information to third-party websites.

12. Children's Privacy

Our services are designed for and directed to adults seeking professional training and development. We do not knowingly collect personal information from individuals under the age of 18. Our training courses are intended for professional audiences and require a level of maturity and professional context that is typically not appropriate for minors.

If we become aware that we have inadvertently collected personal information from a person under 18 years of age, we will take steps to delete that information as quickly as possible. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately using the contact information at the end of this policy, and we will work with you to address the situation.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes, we will update the "Last Updated" date at the top of this policy.

If we make material changes to this Privacy Policy that significantly affect how we handle your personal information, we will notify you in advance through prominent notices on our website or by sending you an email to the address associated with your account. This gives you an opportunity to review the changes and decide whether to continue using our services.

We encourage you to periodically review this Privacy Policy to stay informed about how we are protecting your information and your privacy rights. Your continued use of our services after any changes to this policy indicates your acceptance of the updated terms.

14. Data Protection Officer and Contact Information

We are committed to addressing any concerns or questions you may have about our privacy practices. If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how we handle your personal information, please do not hesitate to contact us.

You can reach us at:

Credex Training
Email: contact@credextraining.com
Phone: +254 762 562819
Attention: Privacy Inquiries

When you contact us, please provide sufficient detail about your inquiry or request so we can address it properly. If you are exercising privacy rights, we may need to verify your identity before proceeding with your request to ensure we are protecting your information appropriately.

We aim to respond to all privacy inquiries and requests within 30 days. If your request is particularly complex or we have received a high volume of requests, we may extend this period, but we will inform you of any delay and keep you updated on the progress of your request.

15. Your Consent and Acceptance

By using our website, registering for an account, enrolling in our courses, or otherwise engaging with our services, you acknowledge that you have read and understood this Privacy Policy and agree to its terms. You consent to the collection, use, processing, and sharing of your personal information as described in this policy.

If you do not agree with any aspect of this Privacy Policy, please do not use our services. You may withdraw your consent at any time by discontinuing use of our services and requesting deletion of your account and personal information, subject to any legal obligations we have to retain certain information.

Thank you for trusting Credex Training with your professional development. We are committed to protecting your privacy while delivering exceptional training experiences.

Ready to Advance Your Career?

Join thousands of professionals worldwide who have elevated their skills and earned recognized certifications through our expert-led training programs. Whether you're looking to enhance your professional knowledge, improve institutional effectiveness, or achieve career advancement, we're here to empower you with the skills you need to succeed—wherever you are in the world.

Explore Courses