Privacy Policy – Central Christian University Certificate Verification Portal

Effective Date: January 10, 2026
Last Updated: January 10, 2026

 

Central Christian University (CCU) is deeply committed to protecting the privacy, dignity, and personal information of all individuals who interact with our Certificate Verification Portal. This Privacy Policy explains how we collect, use, store, disclose, and safeguard your information when you access or use this official verification platform. By using the portal, you consent to the practices described herein.

 

Our policy adheres to internationally recognized principles of data privacy and is designed to comply with applicable laws, including—but not limited to—the General Data Protection Regulation (GDPR), where relevant, and other national and regional data protection frameworks.

 
 

1. Information We Collect

We collect only the data necessary to perform secure and accurate certificate verification:

 
  • Verification-Specific Data:
    • Unique Certificate ID or QR code
    • Full name of the certificate holder
    • Program of study, degree awarded, and graduation date
    • Date of birth (if required for identity matching)
  • Technical & Log Data:
    • IP address
    • Browser type, device, and operating system
    • Timestamps of access and session duration
    • Referring URL (if accessed via a third-party link)
  • Voluntary Submissions:
    • Email address or contact details (only if you submit a support request or inquiry)
    • Name and affiliation of the verifying party (e.g., employer, licensing board)
 

🔒 Note: We do not collect sensitive personal data such as religious beliefs, financial information, government IDs, or health records through this portal.

 
 

2. Purpose of Data Processing

Your information is used solely for legitimate, transparent, and necessary purposes:

 
  • To verify the authenticity of certificates issued by Central Christian University
  • To prevent academic fraud, credential misrepresentation, and document forgery
  • To generate official verification responses for authorized requesters
  • To maintain audit trails for security and compliance
  • To improve the usability, performance, and reliability of the verification system
  • To respond to legitimate inquiries from stakeholders
 

We do not use your data for marketing, profiling, automated decision-making, or commercial exploitation.

 
 

3. Data Sharing and Disclosure

Central Christian University treats all verification data with the highest level of confidentiality. We never sell, rent, or trade your personal information. Limited disclosure may occur only under the following conditions:

 
  • With Your Consent: When you initiate a verification on behalf of someone else or authorize sharing with a third party (e.g., employer).
  • To Verifying Entities: A confirmation report (limited to name, program, award status, and validity) may be shared with the organization requesting verification.
  • Legal Obligations: If required by law, court order, or regulatory authority.
  • Trusted Service Providers: Third-party vendors (e.g., cloud hosting, cybersecurity partners) who assist in operating the portal—bound by strict data processing agreements and prohibited from independent use of your data.
  • Internal Use: Shared only within CCU’s Academic Registry, Quality Assurance, and IT Security units on a strict need-to-know basis.
 
 

4. Data Security Measures

We implement industry-standard technical and organizational safeguards to protect your data:

 
  • End-to-End Encryption: All data transmitted via the portal is secured using TLS 1.3 (HTTPS).
  • Access Controls: Multi-factor authentication (MFA) and role-based permissions for internal staff.
  • Regular Security Audits: Penetration testing and vulnerability assessments conducted biannually.
  • Secure Infrastructure: Data stored in ISO 27001-certified cloud environments with encrypted databases.
  • Fraud Monitoring: Automated systems detect and block suspicious or bulk verification attempts.
 

While absolute security cannot be guaranteed in any digital environment, we continuously enhance our defenses to meet evolving threats.

 
 

5. Data Retention Period

Personal data is retained only for as long as necessary to fulfill verification and compliance objectives:

 
  • Verification Logs: Retained for 24 months for audit, fraud prevention, and legal compliance.
  • Support Inquiries: Kept for 12 months after resolution.
  • Academic Records: Official student records are preserved indefinitely in accordance with CCU’s archival policies and national education regulations—but access remains strictly controlled and limited to authorized personnel.
 

Upon expiry of retention periods, data is securely erased or anonymized.

 
 

6. Your Data Protection Rights

Depending on your location and applicable law, you may have the right to:

 
  • Request access to the personal data we hold about you
  • Correct inaccurate or incomplete information
  • Request deletion of your data (subject to academic and legal retention requirements)
  • Restrict or object to certain types of processing
  • Receive your data in a portable, machine-readable format
  • Withdraw consent at any time (where consent is the legal basis)
 

To exercise these rights, please contact our Data Protection Officer at privacy@centralchristian.edu with verifiable identification.

 
 

7. Use of Cookies and Similar Technologies

The portal uses only essential, non-intrusive cookies:

 
  • Session Cookies: Maintain your active session during verification
  • Security Tokens: Prevent cross-site request forgery (CSRF) attacks
  • Analytics (Optional): Anonymous usage metrics (e.g., page load times) — no personal tracking
 

We do not use advertising, behavioral, or third-party tracking cookies. You may disable non-essential cookies via browser settings without affecting core functionality.

 
 

8. International Data Transfers

Central Christian University operates globally but ensures that all data processing complies with international data transfer standards. Where data is transferred across borders, we rely on approved mechanisms such as Standard Contractual Clauses (SCCs) or adequacy decisions to ensure protection.

 
 

9. Policy Updates

We may update this Privacy Policy to reflect changes in technology, legal requirements, or operational practices. The revised policy will be published here with a new Effective Date. Continued use of the portal constitutes acceptance of the updated terms.

 
 

We are dedicated to responding promptly, respectfully, and in full accordance with your rights.

 
 

Central Christian University — Upholding Truth, Integrity, and Trust Through Secure and Transparent Certification.