Privacy Policy

1. Overview

This document sets out the privacy policy of Zen and the Art of Trading Pty Ltd (referred to in this privacy policy as “we”, “us”, or “our”). We are committed to protecting the privacy of individuals and safeguarding personal information in accordance with the Australian Privacy Act 1988 (Cth) and, where applicable, the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the UK Data Protection Act 2018. For the purposes of the GDPR, we act as a data controller in relation to the personal data we collect directly from you.

This privacy policy applies whenever we collect, use or handle your personal information or personal data (together referred to as “personal data” in this privacy policy). It applies to your use of our website, your interactions with us, and the provision of our online educational services to you.

We provide online educational content and related digital services to customers worldwide. We collect a limited amount of personal information ourselves, and we also use third-party service providers (such as payment processors, email platforms and learning management systems) who may process personal information on our behalf. These third parties maintain their own privacy practices, and we encourage you to review their privacy policies.

We take our privacy obligations seriously. Please read this privacy policy carefully as it contains important information on who we are and how and why we collect, store, use and share your personal data in connection with your use of our website. It also explains your rights in relation to your personal data and how to contact us or a relevant regulator in the event you have a complaint.

2. Types of personal information we collect

The personal data we collect directly from you may include the following:

  1. name;
  2. email address;
  3. payment related information (such as the payment method used; however, we do not receive or store full credit card numbers, which are processed securely by our payment providers);
  4. your general location (country), collected for tax and GST purposes; and
  5. any information you provide us when contacting or completing forms on our website.

We may also receive limited personal data through our third-party service providers, including Stripe, PayPal, Mailchimp, Thinkific, WordPress and Google Analytics. These services may collect information such as device and browser details, website usage data, IP addresses, and basic payment or subscription information. Some of this information is collected on our behalf to help us provide our services, while other information may be collected under those providers’ own privacy policies. We encourage you to review their privacy policies for more detail.

We do not intentionally collect sensitive information (as defined under the Australian Privacy Act or the GDPR). If you choose to provide sensitive information to us, you consent to us handling it in accordance with this privacy policy and applicable laws.

3. How we collect personal information

We endeavour to ensure that information we collect is complete, accurate, accessible and not subject to unauthorised access.

We may collect personal data directly from you when you:

  1. complete online forms or sign up for an account or service;
  2. make a purchase or subscription;
  3. contact us via email or through our website; or
  4. access our website or online learning platform.

We also collect personal data through our third-party integrations, including Stripe, PayPal, Mailchimp, Thinkific and WordPress, which process payments, host our content, manage subscriptions and assist with email communications.

When you visit our website, we may automatically collect limited analytical information through cookies and tracking technologies (such as Google Analytics). This may include your IP address, device details and browsing activity. For more information, please see our Cookie Policy.

We take reasonable steps to ensure the personal data we collect is accurate, up-to-date and protected from unauthorised access.

4. Use of your personal information

We collect and use personal data for the following purposes:

  1. to provide services, including processing payments and managing your account;
  2. to communicate with you and respond to your enquiries;
  3. to send marketing emails where you have consented or where permitted by law (you may unsubscribe at any time);
  4. to improve our website, products and user experience through analytics and feedback; and
  5. to comply with our legal, tax and regulatory obligations.

Where required under the GDPR, our legal bases for processing your personal data include performance of a contract (when providing our services to you), compliance with legal obligations, our legitimate interests in operating and improving our services, and (where applicable) your consent.

5. Sharing your data

We may share your personal data with:

  1. our service providers, including payment processors (e.g. Stripe, PayPal), email service providers (e.g. Mailchimp), website hosts, learning management systems (e.g. Thinkific) and analytics providers (e.g. Google Analytics), where necessary for them to provide services to us;
  2. professional advisers (such as accountants or legal advisers), where required;
  3. authorities or regulators where we are legally required to do so.

We do not sell or trade personal information.

Some of our service providers may be located overseas or may store personal data on servers outside Australia, the UK or the EEA. Where personal data is transferred outside the UK or EEA, we take steps to ensure an appropriate level of protection, including relying on safeguards such as Standard Contractual Clauses where applicable.

6. Cookies

We use Google Analytics to measure traffic and usage patterns on our website. Google Analytics may collect information such as your IP address, device type and browsing behaviour. You can opt out of Google Analytics by using Google’s browser add-on or adjusting your cookie preferences in your browser.

7. Security

We take reasonable steps to ensure your personal data is secure and protected from misuse or unauthorised access. Our information technology systems are password protected, and we use a range of administrative and technical measures to protect these systems. However, we cannot guarantee the security of your personal data.

Our website may contain links to other websites. Those links are provided for convenience and may not remain current or be maintained. We are not responsible for the privacy practices of those linked websites and we suggest you review the privacy policies of those websites before using them.

9. Your rights

You have various rights with respect to our use of your personal data:

  1. Access: You have the right to obtain access to your information (if we’re processing it) and certain other information (similar to that provided in this privacy notice). This is so that you’re aware and can check that we’re using your information in accordance with data protection law.
  2. Be informed: You have the right to be provided with clear, transparent and easily understandable information about how we use your information and your rights. This is why we’re providing you with the information in this privacy policy.
  3. Rectification: We aim to keep your personal data accurate, current, and complete. We encourage you to contact us using our contact form to let us know if any of your personal data is not accurate or changes, so that we can keep your personal data up-to-date.
  4. Objecting: You also have the right to object to processing of your personal data in certain circumstances, including processing for direct marketing.
  5. Restricting: You have the right to “block” or suppress further use of your information. When processing is restricted, we can still store your information, but may not use it further.
  6. Erasure: You have the right to ask us to erase your personal data when the personal data is no longer necessary for the purposes for which it was collected, or when, among other things, your personal data have been unlawfully processed.
  7. Portability: You have the right to request that some of your personal data is provided to you, or to another data controller, in a commonly used, machine-readable format.
  8. Complaints: If you believe that your data protection rights may have been breached, you have the right to lodge a complaint with the applicable supervisory authority. In the UK, the supervisory authority is the Information Commissioner’s Office.
  9. Withdraw consent: If you have given your consent to anything we do with your personal data, you have the right to withdraw your consent at any time. This includes your right to withdraw consent to us using your personal data for marketing purposes.

You may, at any time, exercise any of the above rights, by contacting our email address provided below.

10. How long we keep data

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. We will securely destroy your personal data in accordance with applicable laws and regulations.

If you would like further information about our specific retention periods for your personal data, please contact us using our email address provided below.

11. Transfers outside the European Economic Area (EEA)

To provide our services, we may transfer the personal data we collect to countries outside of the UK or EEA which do not provide the same level of data protection as the country in which you reside and are not recognised by the European Commission as providing an adequate level of data protection.

When we do this, we will make sure that it is protected to the same extent as in the EEA and UK as we will put in place appropriate safeguards to protect your personal data, which may include standard contractual clauses.

For more information, please contact us at our email address provided below.

12. Contact us

For further information about our privacy policy or practices, or to access or correct your personal data, or make a complaint, please contact us using the details set out below:

Contact us.

We may change this privacy policy from time to time by posting an updated copy on our website and we encourage you to check our website regularly to ensure that you are aware of our most current privacy policy. Where we make any significant changes, we will endeavour to notify you by email.

Last Updated: 21st January, 2026 with help from sprintlaw.com.au

Free Premium Charts!