1. Purpose

The purpose of this policy is to ensure that personal and academic information submitted to RIA is protected and used only for the intended purpose of credential evaluation and
client service.

2. Scope

This policy applies to all personal, academic, financial, and usage information collected by RIA, whether in electronic or physical form, and all staff, contractors, and third-party service providers engaged by RIA.

3. Data Collection Principles

  •  We collect data only for specified, legitimate purposes (credential evaluation, verification, communication).
  • We minimize collection of unnecessary information.
  • We ensure data is accurate and kept up-to-date where necessary.

4. Processing and Use

  • Data is processed lawfully, fairly and in a transparent manner.
  • We use data consistent with the expectations of clients and only for the reasons outlined in our Privacy Policy.
  • We protect data against unauthorized or unlawful processing and accidental loss,
    destruction or damage.

5. Access & Sharing

  • Access to your personal information is limited to RIA personnel and authorized service providers who need that access to perform their duties.
  • Service providers (payment processors, document verification agencies) are
    required to use data only as instructed by us and to maintain confidentiality.
  • We do not share your personal data for marketing or advertising without your explicit consent.

6. Data Retention & Destruction

  • We retain data for the period necessary to provide the service, satisfy legal obligations, and for archival/historic purposes.
  • When data is no longer required, we securely destroy or anonymize it.

7. Client Rights & Requests

  • Clients may request access to their data, corrections, deletion, or express concerns.
  •  should be directed to support@riaeducation.com and will be responded to within a reasonable timeframe.

8. Monitoring & Review

  • We regularly review our data protection practices and update policies and security measures as needed.
  • Staff receive training on data protection procedures and responsibilities.

9. Compliance & Accountability

  • RIA assures compliance with relevant data protection laws and best practices (for example, GDPR where applicable).
  • We maintain documentation of data processing activities and respond to audits or inquiries about our practices.

10. Policy Amendments

  • This policy may be revised at any time. The latest version will be published on our website and dated accordingly.