Privacy Policy

Last updated: 28 May 2026

This Privacy Policy explains how Leigh Burke, a sole trader trading as CourseConverter ("CourseConverter", "we", "us", or "our"), based in Victoria, Australia, collects, uses, and protects your personal information when you use CourseConverter (the "Service"). We handle personal information in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles, and — where applicable to users in the European Union or United Kingdom — the General Data Protection Regulation (GDPR).

1. Information we collect

Information you provide

  • Account information: when you sign up via Google, we receive your name, email address, and profile image from your Google account.
  • Content: the documents you upload, courses you create, images you add, and other material you put into the Service.
  • Communications: if you contact us for support, we keep the content of your messages.

Information collected automatically

  • Usage data: basic information about how you use the Service, such as actions taken and features used.
  • Technical data: information such as browser type, device, and IP address, collected through standard server logs and our infrastructure providers.

Payment information

When you subscribe to a paid plan, payment is processed by Stripe. We do not store your full card details — Stripe handles that directly. We receive limited billing information such as your subscription status, plan, and the result of payment attempts.

2. How we use your information

  • To provide, operate, and maintain the Service;
  • To create and manage your account and process your subscription;
  • To store and process your content so you can build and export courses;
  • To send transactional emails (for example, welcome, billing, and account notices);
  • To respond to your support requests;
  • To improve the Service, diagnose problems, and ensure security;
  • To comply with legal obligations.

We do not sell your personal information, and we do not use your uploaded content to train machine-learning models.

3. Legal bases (for EU/UK users)

Where the GDPR applies, we process personal data on the following bases: performance of our contract with you (to provide the Service); our legitimate interests (to operate, secure, and improve the Service); your consent (where required, such as certain communications); and compliance with legal obligations.

4. Service providers we share data with

We use trusted third-party providers to run the Service. Each processes data only as needed to provide their function:

  • Supabase — database, authentication, and storage (hosted in Sydney, Australia);
  • Stripe — payment processing and subscription billing;
  • Cloudflare R2 — storage of uploaded media files;
  • Vercel — application hosting and delivery;
  • Resend — sending transactional email;
  • Google — authentication (sign-in).

These providers may process data outside Australia. We take reasonable steps to ensure they handle your information securely and consistently with this policy.

5. Cookies and similar technologies

We use essential cookies and similar technologies to keep you signed in and to operate the Service. We do not currently use third-party advertising cookies. If we introduce analytics in future, we will update this policy and, where required, seek your consent.

6. Data retention

We retain your personal information and content for as long as your account is active or as needed to provide the Service. If you delete content or close your account, we delete or anonymise the associated data within a reasonable period, except where we must retain it for legal, accounting, or legitimate operational reasons (such as backups, which are purged on a rolling basis).

7. Your rights

You have the right to:

  • Access the personal information we hold about you;
  • Request correction of inaccurate information;
  • Request deletion of your information (subject to legal retention requirements);
  • Request a copy of your information in a portable format;
  • Withdraw consent where processing is based on consent;
  • Object to or request restriction of certain processing (for EU/UK users).

To exercise any of these rights, contact us at support@courseconverter.com. We will respond within a reasonable timeframe and as required by applicable law.

8. Security

We take reasonable technical and organisational measures to protect your information, including encryption in transit, access controls, and reputable infrastructure providers. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

9. Children

The Service is not directed to children under 18, and we do not knowingly collect personal information from them. If you believe a child has provided us personal information, contact us and we will take appropriate steps to delete it.

10. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will take reasonable steps to notify you. The "last updated" date at the top reflects the latest revision.

11. Contact and complaints

For privacy questions or to make a complaint, contact us at support@courseconverter.com. If you are in Australia and are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC).