Frequently asked questions

Discover the answers to the most commonly asked questions right here, tailored for your convenience.

Is Learningbank GDPR compliant?

Learningbank is 100% GDPR compliant, we take data protection very seriously and implement the necessary measures in all applicable areas of our activities, including organizational security, infrastructure security and corporate security. We have ISAE-3402 type II audit report available upon request, the report is based on the ISO 27001 framework. More detailed information on our commitment to the requirements of GDPR can be found on our IT Security & GDPR page.

Where can we find Learningbank’s Terms & Conditions?

Our Terms & Conditions can be found on our website: Terms & Conditions

Where can we find Learningbank’s Data Processing Agreement?

Our Data Processing Agreement is available on our website: Data Processing Agreement

Where can we find the list of sub-processors of Learningbank?

The full list of the sub-processors can be found in Annex II to our Data Processing Agreement.


Do you process any sensitive personal data?

We only process the data that is provided to us by the Customer, for example:

  • username,
  • name,
  • phone number,
  • e-mail address, etc.

We do not process any sensitive personal data.

Is Learningbank Schrems II compliant?

Learningbank is Schrems II compliant, we do not transfer any personal data to the US without legitimate grounds for it, we use Standard Contractual Clauses with our US-based partners and perform transfer impact assessments as an additional security measure.

Where does Learningbank store its data?

Learningbank stores its data in the EU, our database server is located with AWS (Dublin/Frankfurt).

What technical and security measures does Learningbank take to protect privacy and personal data?

Learningbank adopted all necessary technical and security measures to ensure compliance with applicable regulations and laws. 

Our Organization Security ensures the following: 

  • 24/7 Monitoring and Incident Response​
  • Risk Assessment & Management ​
  • Business Continuity​
  • Information Security​

Additionally, our Infrastructure Security consists of:

  • Annual Penetration Test​
  • Hosted on leading cloud infrastructure provider (Ireland)​
  • Encrypted application servers ​
  • No unencrypted connections ​
  • Prevention and detection of threats ​
  • Daily backups ​

The annual penetration test is performed on our platform by an external partner to detect any exploitable vulnerabilities. We have the ISAE-3402-II audit report that is available upon request.

Does Learningbank transfer data to any other third parties?

Learningbank might transfer data to only authorized sub-processors that are listed in Annex II to the Data Processing Agreement:

If a new sub-processor is added to the list, we notify all of our existing Customers about the changes and we clarify any information necessary related to data transfers.

Does Learningbank send personal data to third countries?

All of our sub-processors have data centres within the EU. Also, we do not process any additional personal data except for the data provided by our Customers within the platform.

What kind of personal data does Learningbank process?

Learningbank might process the following data:

  • full name,
  • job title,
  • e-mail address,
  • phone number.

We do not process any sensitive personal data. Moroever, our Customers have the control over the data shared within our Platform.

Does Learningbank ensure that personal data is erased when contract obligations expire?

Learningbank erases all data upon termination of contract, the conditions are described in more detail in our Data Processing Agreement.

We retain data for 30 days after the termination of contract to ensure the access of the Customer to the data can be re-established after any conceivable targeted attack against the Data Controller's primary data and backup data. 

Which standard does Learningbank use for security and privacy policies?

We have ISAE-3402-II audit report that is available upon reguest. The audit report is issued by an external partner and is based on ISO-27001 international standard that ensures high level of IT security.

Does Learningbank follow the Privacy by Design principles?

We follow the 7 principles of Privacy by Design developed by Ann Cavoukian, Ph.D.

Privacy by Design ensures proactive commitment to IT security and describes the organizational and technical measures that are aimed at minimizing risks related to data protection. Our Privacy by Design handout describing the principles in more detail is available upon request.