Privacy Policy

Gradlinq Inc. ("we," "us," or "our") operates the Gradlinq platform (the "Service"), which connects African university students with industry companies through supervised project placements. This Privacy Policy informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy. Unless otherwise defined in this Privacy Policy, terms used herein have the same meanings as in our Terms of Service.

We collect several types of information:

• Identity Data: Full name, username, profile picture, institution, degree, graduation year. • Contact Data: Email address, phone number, physical address. • Professional Data: CVs, portfolio links, skills, project experience, academic transcripts. • Company Data: Company name, industry, size, billing information. • Usage Data: Log files, IP addresses, browser type, page visits, timestamps. • Communication Data: Messages between students, supervisors, and companies on the platform.

Gradlinq uses collected data to:

• Provide and maintain all platform features — matching, messaging, and workspaces. • Notify you of Service changes or account updates. • Provide customer support and resolve disputes. • Generate analytics to improve the platform. • Monitor for technical issues and security threats. • Verify academic credentials and company legitimacy. • Issue verified Linq-CV credentials on project completion.

We do not sell your personal data. We share information only in these limited circumstances:

• Matched parties: Limited profile data is shared with company and supervising faculty post-match acceptance. • Service Providers: Third-party processors (Supabase, Stripe) may access data only to perform contracted tasks. • Legal Compliance: We may disclose data to comply with legal obligations or protect user safety. • Business Transfers: On a merger or acquisition, data may be transferred under standard confidentiality agreements.

We take data security seriously:

• All data is encrypted at rest (AES-256) and in transit (TLS 1.3/HTTPS). • Database infrastructure is managed via Supabase, which is SOC 2 Type II certified. • Access to personal data is restricted to authorized Gradlinq personnel on a need-to-know basis. • Data is retained while your account is active. Request deletion at any time.

We use cookies and similar tracking technologies:

• Essential: Required for platform function. Cannot be disabled. • Preference: Remember settings such as language and currency. • Analytics: Anonymous, aggregated usage data to improve the platform.

You may configure cookie preferences in your browser settings. Disabling essential cookies may limit platform functionality.

Depending on your jurisdiction (particularly GDPR and NDPR), you may have:

• Access: Request a copy of data we hold about you. • Rectification: Correct inaccurate data. • Erasure: Request deletion of your data. • Portability: Receive your data in machine-readable format. • Objection / Restriction: Object to or restrict our processing.

To exercise these rights, email privacy@gradlinq.com. We respond within 30 days.

For privacy-related enquiries:

• Email: privacy@gradlinq.com • Data Protection Officer: dpo@gradlinq.com • EU/UK Representative: eu-privacy@gradlinq.com • Address: Gradlinq Inc., Lagos, Nigeria

We may update this Privacy Policy periodically. Changes take effect upon posting and the date above will be updated accordingly.