Privacy Policy

1. Data we collect

• Identity: name, date of birth, nationality, passport number, country of residence.
• Aviation: license authority, license number, total/PIC/type hours, medical class and expiry, English proficiency, training preference.
• KYC documents: passport, license, medical certificate, logbook, English certificate.
• Account & technical: email, hashed password, IP, device, login timestamps.
• Financial: Paddle transaction references and milestone status. We do not store your card data.

2. Why we use it

To verify your identity and license eligibility, match you with authority-approved providers, manage contracts and payments, comply with legal/regulatory obligations (KYC, AML), and provide customer support.

3. Where data lives

All KYC documents are encrypted at rest in our object storage. Audit logs are immutable. Production infrastructure is hosted on dedicated servers; data is replicated nightly to our internal ARISTO operations infrastructure for backup. We do not sell or share data with airlines or third parties outside the contractual parties to your training agreement.

4. Your rights

Subject to applicable law (including GDPR, UK GDPR, KVKK, CCPA where relevant), you may request access to, correction of, or deletion of your data. Contact privacy@pilotsgate.com. Note that compliance and audit logs may be retained for the period required by law even after account deletion.

5. Cookies

We use only essential cookies needed for authentication and session management. We do not run third-party advertising or behavioral tracking on this site.

6. Sub-processors

Paddle (payments), our email delivery provider, and our cloud-storage vendor act as sub-processors. A current list is available on request.

7. Children

The platform is not intended for users under 18 years of age. We do not knowingly collect data from minors.

8. Contact

For privacy questions, including DPO inquiries: privacy@pilotsgate.com.