Effective date: April 1, 2026 · Last updated: April 1, 2026
MyPMP ("we", "our", "us") is an online learning platform that helps students prepare for the Project Management Professional (PMP)® certification exam. Our services include video lectures, study materials, practice simulations, a performance history tracker, and certificate generation.
This Privacy Policy explains what personal data we collect, why we collect it, how we use and protect it, and your rights regarding that data.
For privacy-related questions contact us at: privacy@mypmp.app
We collect the minimum data needed to provide and improve our services:
Account Identity
Full name, email address, Google account UID, profile avatar URL
Source: Google OAuth sign-in — you authorise this on Google's consent screen
Plan & Billing
Current plan role (Visitor / Pro / Premium / Admin), purchased Pro perk IDs, plan expiry date
Source: Created internally when a payment is confirmed by our server
Payment Transactions
Stripe checkout session ID, amount subtotal & total (in cents), purchased product slug, transaction timestamp
Source: Stripe webhook — recorded server-side after successful payment; no raw card data ever touches our servers
Exam & Study Activity
Simulator exam results (score, type, time taken, answers given), lecture progress percentage, study session activity
Source: Generated by your activity inside the app
Device & Session
Authentication tokens stored in browser localStorage, theme preference, language preference
Source: Stored locally on your device — theme/language are never transmitted to our servers
We do not collect passwords (Google handles authentication), payment card numbers (Stripe handles payments), precise geolocation, or any biometric data.
If you are located in the European Economic Area (EEA) or United Kingdom, we process your data under the following bases:
We share data only with the following trusted providers who are contractually bound to protect it:
Google OAuth 2.0
Privacy Policy ↗Purpose: Authentication · Data: Name, email, UID, avatar (provided by Google)
Supabase
Privacy Policy ↗Purpose: Database & auth (AWS-hosted) · Data: User records, plan data, exam results, transactions
Stripe
Privacy Policy ↗Purpose: Payment processing · Data: Email (checkout pre-fill), user ID reference; Stripe independently collects card details
Cloudflare Pages
Privacy Policy ↗Purpose: Hosting & serverless functions · Data: Standard web request metadata (IP, user-agent) — not stored by us
Google Fonts
Privacy Policy ↗Purpose: Typeface delivery · Data: Your IP address is sent to Google's CDN on page load
We do not sell, lease, or trade your personal data to any third party for marketing or advertising purposes.
MyPMP does not use tracking cookies or advertising cookies. We use browser localStorage exclusively for:
mypmpTheme)mypmpLang)These are stored solely on your device and are not used for cross-site tracking or profiling.
If you believe your account has been compromised, contact us immediately at privacy@mypmp.app.
MyPMP is intended for adults pursuing professional certification and is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has created an account, please contact us and we will promptly delete the data.
Depending on your location, you may have the following rights:
To exercise any right, email privacy@mypmp.app. We will respond within 30 days. EEA/UK users may also lodge a complaint with their local supervisory authority.
Your data is processed on infrastructure operated by Supabase (AWS, US) and Cloudflare (global edge). Transfers from the EEA or UK are covered by Standard Contractual Clauses or equivalent mechanisms in place with our service providers.
We may update this policy from time to time. Material changes will be reflected in the "Last updated" date above. Continued use of MyPMP after that date constitutes acceptance of the revised policy.
Email: privacy@mypmp.app