scormstack
ResourcesPricing
Sign InGet Started

Privacy Policy

Effective Date: July 2025

This Privacy Policy explains how Scormstack ("we", "us", "our") collects, uses, stores, and protects your personal data when you use our website and services available at https://scormstack.io.

We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR).

1. Who we are

Scormstack is a service that allows users to create and export SCORM-compliant e-learning content provided by MOOCit SAS, a French company registered in the Orleans Trade and Companies Register under number 810 156 497.

Data controller: MOOCit SAS

Address: 97 allée Maurice Ravel, 45160 Olivet, France

Email: support@scormstack.io

2. What data we collect

We collect the following types of personal data:

a. Account Data

  • Name
  • Email address
  • Password (hashed)
  • Organization (optional)

b. Billing data

  • Billing address
  • Payment method (handled securely via Stripe)
  • Subscription history

c. Usage data

  • Login times, page views, and feature usage
  • IP address and browser/user agent
  • Logs and error reports

d. Support data

  • Information you provide when contacting us for support

3. How we use your data

We process your data to:

  • Provide and maintain your account and access to Scormstack
  • Manage billing and subscriptions
  • Improve our services and user experience
  • Respond to inquiries or support requests
  • Ensure security and prevent abuse
  • Comply with legal obligations

4. Legal bases for processing

We process your personal data based on:

  • Contractual necessity – to provide the service you signed up for
  • Legitimate interests – for internal analytics, platform improvement, and fraud prevention
  • Legal obligation – to comply with applicable laws (e.g., tax regulations)
  • Consent – for optional features like marketing emails (only if you opt in)

5. How we share your data

We do not sell your personal data.

We share your data only with trusted third-party service providers necessary to operate Scormstack, such as:

  • Stripe (payment processing)
  • Email services (transactional and support emails)

Each provider only receives the data strictly necessary for their function and is GDPR-compliant.

6. International transfers

If we transfer your data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses).

7. Data retention

We retain your personal data:

  • As long as your account is active
  • As needed to comply with legal obligations (e.g., tax records for 6 years)
  • Or until you request deletion (see below)

8. Your rights under GDPR

You have the right to:

  • Access your personal data
  • Rectify inaccurate or incomplete data
  • Erase your data ("right to be forgotten")
  • Restrict or object to processing
  • Port your data to another provider
  • Withdraw consent (where applicable)
  • Lodge a complaint with your local data protection authority

To exercise any of these rights, email us at support@scormstack.io.

9. Cookies

We use essential and analytics cookies to:

  • Authenticate users
  • Improve performance and usability

You can manage cookie preferences in your browser settings.

10. Security

We implement appropriate technical and organizational measures to safeguard your data, including:

  • HTTPS encryption
  • Hashed passwords
  • Access controls
  • Regular security monitoring

11. Changes to this policy

We may update this policy from time to time. You will be notified of material changes by email or through the Service.

12. Contact

If you have questions or concerns about this policy, please contact:

📧 support@scormstack.io

📍 Scormstack, France

Ready to start creating? Join thousands of e-learning professionals using ScormStack.

Try Scormstack free
scormstack
PricingResourcesPrivacyTermsRelease Notes

© 2025 scormstack. All rights reserved.