Privacy Policy
Plain language summary
iZONE Labs is a digital engineering lab and a platform for free developer learning. We collect minimal data, including basic usage data, functional cookies, and, where required or enabled, data used by Google Analytics and Google AdSense. We do not sell your personal data. We use Google Analytics to understand how visitors use our site and Google AdSense to show and measure ads. If you are located in a region where consent is required by law — such as the EEA, UK, Switzerland, Brazil, South Korea, or Japan — we ask for your consent before using non-essential cookies or similar technologies. Visitors from other regions are covered by this policy but may not see a consent banner. This policy explains what we collect, why, and your rights over it.
01 — Overview
About this policy
This Privacy Policy describes how iZONE Labs collects, uses, discloses, and protects your information when you use our Website and services — including free mini-courses, roadmaps, cheatsheets, online converter tools, Google Analytics measurement, and Google AdSense advertising.
By using our Service, you acknowledge you have read and understood this policy. We are committed to handling your information responsibly and in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR), the ePrivacy Directive, Brazil's LGPD, South Korea's PIPA, Japan's APPI, and other laws that may apply depending on where you access the Service from.
We use your information only to provide, measure, secure, and improve our Service. We do not sell, rent, or trade your personal information to third parties for commercial purposes.
02 — Definitions
Interpretation and definitions
Words with initial capital letters carry the meanings defined below. These definitions apply in both singular and plural forms throughout this policy.
03 — Data collection
What data we collect
iZONE Labs is designed to be a low-data platform. We do not require you to create an account to access our free content. The data we collect falls into the categories below.
Collected automatically when you use the Service. This may include your device's IP address, browser type and version, the pages you visit, the time and date of your visit, time spent on those pages, referral URL, approximate location, and device information. We use this data to understand how the Service is used and to improve it.
We use a small number of functional cookies to remember your theme preference, track your course progress locally (if you take a free mini-course), and remember page interactions (such as article likes and daily action limits). This data is stored client-side only and is never transmitted to our servers. We also use analytics and advertising cookies, where permitted, for Google Analytics and Google AdSense. See Section 04 and our Cookies Policy for full details.
We do not intentionally collect personally identifiable information such as your name or email address unless you contact us directly.
04 — Cookies
Tracking technologies and cookies
Cookies may be Persistent — remaining on your device until they expire or you delete them — or Session cookies, which are erased when you close your browser.
We use functional cookies, and where permitted, analytics and advertising cookies. Google Analytics stores a first-party cookie such as _ga to distinguish unique users and sessions. Google AdSense and its partners may use cookies or similar technologies to serve and measure ads.
We determine whether to show a consent banner based on your approximate location, detected via Cloudflare's IP geolocation service. If you are in the EU/EEA, UK, Switzerland, Brazil, South Korea, or Japan, we will request consent before placing any non-essential cookies. Visitors from other regions are not shown a consent banner but may still manage cookies via their browser or through our Cookies Policy.
You can manage ad personalization and opt out of interest-based advertising through Google's Ad Center or optout.aboutads.info.
Essential to provide core services on the Website. They enable basic functions such as page navigation, security, and access to protected features.
Allow us to remember choices you make — such as your preferred theme (light or dark mode), your course progress (if you take a free mini-course), and page interactions (such as remembering pages/articles you have liked to enforce daily anti-spam action limits). This data is stored entirely in your browser and is not transmitted to our servers or any third party.
Used by Google Analytics to understand how visitors use the Website, measure traffic and session statistics, and help us improve content, performance, and user experience. In regions where consent is required by law, these cookies are only activated after you explicitly opt in.
Used by Google AdSense and its partners to show and measure ads, including personalized ads where permitted, frequency capping, reporting, and fraud prevention. In regions where consent is required by law, these cookies are only activated after you explicitly opt in.
You can manage or delete cookies at any time via your browser settings. See our Cookies Policy for browser-specific instructions and to reset your consent preferences.
05 — Data use
How we use your information
We use the information we collect only for the purposes listed below. Where required by law, we use a geo-based consent mechanism before activating non-essential analytics or advertising technologies. Your location is determined using Cloudflare's IP geolocation service solely to determine whether a consent prompt is required — it is not stored or used for any other purpose.
06 — Data sharing
When we share your information
We do not sell, trade, or rent your personal information. We may share data only in the following limited circumstances:
07 — Retention
How long we keep your data
We retain personal data only for as long as necessary to fulfil the purposes described in this policy, or as required by law. The table below outlines our current maximum retention periods.
| Category | Retention period |
|---|---|
| Usage Data | Up to 24 months |
| Server logs | Up to 24 months |
| Account data | Duration of relationship + 24 months post-closure |
When retention periods expire, data is securely deleted or anonymised. Residual copies in encrypted backups are not restored except where required for disaster recovery or legal compliance.
08 — Transfers
International data transfers
Your information may be processed on servers located outside Sri Lanka, including in countries where data protection laws may differ. This may happen when we use hosting, analytics, or advertising providers such as Google. Where such transfers occur, we ensure that appropriate safeguards are in place — such as contractual protections, standard data protection clauses, or equivalent safeguards — to help protect your data.
We will not transfer your data to any organisation or country unless adequate controls are in place to protect your information.
09 — Your rights
Your data rights
Depending on your location, you may have the following rights regarding your personal data. Users in the EU/EEA, UK, Switzerland, Brazil, South Korea, and Japan may have additional rights under their respective privacy laws. To exercise any of these rights, please contact us at [email protected].
We will respond to all valid requests within 30 days. In complex cases, we may extend this by a further two months and will notify you accordingly.
10 — Disclosure
Legal disclosure of your data
The Company may be required to disclose your personal data in response to valid requests by public authorities (such as a court or government agency). We may also disclose your data in good faith where such action is necessary to:
- Comply with a legal obligation
- Protect and defend the rights or property of the Company
- Prevent or investigate possible wrongdoing in connection with the Service
- Protect the personal safety of users of the Service or the public
- Protect against legal liability
11 — Security
Security of your data
We take the security of your personal data seriously and use commercially reasonable measures to protect it. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
In the event of a data breach likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority as required by applicable law.
12 — Children's privacy
Children's privacy
Our Service is not directed to children under the age of 13. In jurisdictions where the age of consent for online data processing is higher than 13, we do not knowingly collect personal data from anyone under that higher age. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately at [email protected] and we will take steps to remove that information promptly.
13 — External links
Links to other websites
Our Service may contain links to third-party websites not operated by us — for example, within course content or resource pages. We have no control over and accept no responsibility for the content, privacy practices, or policies of those sites.
We encourage you to review the privacy policy of every website you visit before providing any personal information.
14 — Updates
Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in technology, law, or our services. When we do, we will revise the "Last updated" date at the top of this page and, where material changes occur, notify you by email or via a prominent notice on our Website prior to the change taking effect.
Continued use of the Service after changes are posted constitutes your acknowledgement of the updated policy.
15 — Contact
Questions?
If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your data, please contact us: