Privacy Policy

Last updated: 25 September 2025

This Privacy Policy explains how BigFansAcademy (“we”, “us”, “our”) collects, uses, shares, and protects personal data when you use our website, resources, and community spaces (e.g., Discord/Telegram), and when you purchase products hosted by third parties (e.g., Whop).

Data Controller: BigFansAcademy
Address (for notices): c/o BigFansAcademy, Bucharest, Romania
Contact: [email protected]

If you do not agree with this Policy, please do not use our website or services.

1) What data we collect

  • Identifiers & contact data: email address, name/handle (if provided), IP address, device identifiers.
  • Community data: your Discord/Telegram username/ID and messages you post in our spaces.
  • Transactional data: product purchased, price, currency, payment status and access information (processed on Whop; we do not receive your full card/payment details).
  • Usage data: pages viewed, referral URLs, time on page, clicks, approximate location (country/region), collected via cookies/SDKs/analytics.
  • Support data: content of emails or messages you send to support.

We do not intentionally collect sensitive categories of data.

2) How we obtain data

  • Directly from you: when you join the email list, request access to community, complete forms, contact support.
  • Automatically: via cookies and similar technologies (see Cookie Policy).
  • From third parties: Discord/Telegram (your profile/ID in our server), Whop (purchase status and access), analytics and email providers.

3) Purposes and legal bases (GDPR)

  • Provide access to resources and community (perform a contract or steps at your request; Art. 6(1)(b)).
  • Send invites, onboarding and service emails (contract/legitimate interests; Art. 6(1)(b)/(f)).
  • Send educational content and occasional updates/marketing (your consent; Art. 6(1)(a)).
  • Analytics, performance and anti-abuse (legitimate interests; Art. 6(1)(f)).
  • Compliance, legal claims, record-keeping (Art. 6(1)(c)/(f)).

Where we rely on consent (e.g., marketing emails, non-essential cookies), you can withdraw it at any time.

4) Third parties and processors

We use trusted providers to operate our services. Typical categories include:

  • Hosting/CDN: [Hosting provider]
  • Email & CRM: [Email provider] (double opt-in and unsubscribe links enabled)
  • Analytics: [Analytics provider]
  • Community platforms: Discord, Telegram
  • Commerce platform: Whop (checkout, billing, access control)
  • Support tools: [Ticketing/helpdesk, if any]

These vendors act as processors or independent controllers depending on the service. We only share what’s necessary to operate the service.

5) International transfers

Your data may be processed outside the EU/EEA by our providers. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses (SCCs) or equivalent). You can contact us for more information on specific transfer mechanisms.

6) Retention

We keep personal data only as long as necessary for the purposes described:

  • Email list: until you unsubscribe or after 24 months of inactivity (whichever comes first).
  • Community accounts/logs: for the life of the account and a reasonable period for audit/security.
  • Transaction records (via Whop): as required by tax/accounting laws.
  • Support emails: up to 24 months, unless needed longer for legal reasons.

7) Your rights (EU/EEA)

You have the right to access, rectify, erase, restrict, object, and data portability, and to withdraw consent at any time without affecting prior processing.
To exercise rights, email [email protected] with “Privacy Request” in the subject.
You also have the right to lodge a complaint with your supervisory authority. In Romania: Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP).

8) U.S. state privacy disclosures (summary)

We do not sell your personal information. We do not knowingly engage in cross-context behavioral advertising at this time. If we introduce advertising/retargeting, we will update this Policy and provide opt-out mechanisms (“Do Not Sell/Share”). California residents may request access/deletion/correction similar to the above by emailing [email protected].

9) Marketing communications

  • We use double opt-in where applicable.
  • Every email includes an unsubscribe link.
  • You can also request removal at [email protected].

10) Cookies and similar technologies

We use cookies and trackers for functionality, analytics and (if enabled) marketing. For details, categories, and how to change preferences, see our Cookie Policy and the cookie banner on our site.

11) Community conduct & user content

Content you share in our community (Discord/Telegram) may be visible to other members. We may moderate or remove content that violates our guidelines to keep the community safe.

12) Children

Our services are intended for individuals 18+ only. We do not knowingly collect data from children.

13) Security

We apply reasonable technical and organizational measures to protect data (access controls, encryption in transit, least-privilege). No method is 100% secure; please use strong, unique passwords for third-party platforms.

14) Third-party websites

Links to third-party sites and tools (e.g., Discord, Telegram, Whop) are governed by their own policies. We are not responsible for their practices.

15) Changes to this Policy

We may update this Policy from time to time. We will post the new version with the “Last updated” date. Material changes may be communicated via email or site notice.

16) Contact

Questions about this Policy or your data?
Email: [email protected]

Scroll al inicio