Privacy Policy

PMPath (“we”, “us”) provides PMP® exam preparation services through our website and mobile apps (the “Services”). This Privacy Policy describes how we process personal information when you use the Services.

This policy applies to visitors, registered users, and organization accounts. By creating an account or using the Services, you acknowledge that you have read this policy. If you do not agree, please discontinue use of the Services.

We collect information in the following categories, depending on how you use PMPath:

Account and profile: name, email address, preferred language, organization name (for team accounts), and similar details you provide when registering or updating your profile.

Authentication and identity: when you sign in with email and password, we process your email and credentials through our authentication provider. When you use social sign-in, we receive identifiers and profile data that the provider shares with us according to your settings and that provider’s policies.

Usage and performance: app and web interactions such as study progress, exam attempts, scores, feature usage, timestamps, and diagnostic data needed to operate and improve the Services.

Device and technical data: device type, operating system, app version, IP address, approximate location derived from IP, cookies or similar technologies where applicable, and crash or error logs.

Support and communications: messages you send through contact forms or email, and related metadata needed to respond.

We do not require you to provide more information than is reasonably necessary to deliver the Services.

PMPath offers sign-in options that may include email and password, Sign in with Google, Sign in with Apple, and related flows.

Google: If you choose Google sign-in, Google processes your authentication according to Google’s terms and privacy policy. We receive account identifiers and limited profile information as permitted by Google for app sign-in.

Apple: If you choose Sign in with Apple, Apple processes authentication under Apple’s terms and privacy policies. We may receive a stable user identifier and, if you choose to share it, your name or email relay as allowed by Apple.

Firebase: We use Firebase (Google) services for authentication, security features, and related backend operations. Firebase may process technical and account-related data as described in Google’s Firebase documentation and privacy disclosures.

You can manage or revoke some connections through your Google or Apple account settings. Email/password accounts are managed within PMPath and our authentication infrastructure.

We use personal information to:

Provide and operate the Services, including accounts, exams, progress tracking, subscriptions, and customer support.

Secure the Services, detect abuse, prevent fraud, troubleshoot issues, and improve reliability.

Communicate with you about your account, service updates, and responses to inquiries.

Analyze aggregated or de-identified usage to improve product quality and user experience.

Comply with legal obligations and enforce our terms.

We do not sell your personal information. We do not use your data for automated decision-making that produces legal or similarly significant effects solely by automated means.

We host our Services using cloud infrastructure. Data may be processed and stored using Google Firebase and related Google Cloud services (for example, authentication, databases, storage, and operational logging), as well as other subprocessors we engage to run PMPath.

Data may be stored in data centers located in regions selected for our production environment. We implement appropriate technical and organizational measures designed to protect personal information against unauthorized access, loss, or alteration.

Retention periods depend on the nature of the data and our legal obligations. We retain information only as long as needed for the purposes described in this policy, unless a longer period is required or permitted by law.

Depending on your location, you may have rights regarding your personal information, which can include:

Access: request a copy of the personal information we hold about you.

Correction: request correction of inaccurate or incomplete information.

Deletion: request deletion of your account or certain data, subject to legal exceptions.

Portability: where applicable, request your data in a structured, machine-readable format.

Objection or restriction: object to or ask us to restrict certain processing where required by law.

Withdraw consent: where processing is based on consent, you may withdraw it at any time (this does not affect processing before withdrawal).

You may exercise these rights by contacting us using the email address below. We may need to verify your identity before fulfilling requests. You may also lodge a complaint with your local data protection authority where applicable.

PMPath is not directed at children under 13 (or the minimum age required in your jurisdiction to consent to processing of personal data). We do not knowingly collect personal information from children under that age. If you believe a child has provided us with personal information, please contact us and we will take appropriate steps to delete it.

We may update this Privacy Policy from time to time. We will post the updated version on this page and revise the “Last updated” date. For material changes, we may provide additional notice (for example, via email or an in-app notice) where appropriate. Continued use of the Services after changes become effective constitutes acceptance of the updated policy.

Go to the contact page