Accessibility Statement
    This price won't last long...
    00h:00m:00s
    Log in

    Privacy Policy

    This Privacy Policy was last updated on March, 2026.

    1. Introduction and applicable regulations.

    This privacy policy (the "Privacy Policy") explains how we process your personal data within the scope of providing the services offered in the website www.domestika.org and the Domestika mobile app (the "Platform"), such as the sale and subscription to courses, creating your profile at the Platform, communications, etc. (the "Services"). Pursuant to applicable data protection laws, bear in mind that:

    • If you live in a country that is a member of the European Economic Area ("EEA"), the way your data is processed and the current Privacy Policy shall be governed by the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (the "GDPR"), together with any local data protection regulations that may be applicable, including any applicable national implementing laws within the EEA.
    • For users located in the United Kingdom, the UK GDPR and Data Protection Act 2018 shall apply.
    • If you live in California, collection of your personal data shall be governed according to the privacy laws of the state of California. In particular, the California Consumer Privacy Act (the "CCPA"). You can obtain additional information in this regard in Section 12.1 below. If you live in a country outside the European Economic Area or the State of California, your data will be processed according to the privacy regulations applicable in such territories. All regulations will be jointly referred to as "Applicable Data Protection Regulations" for the purposes of this Privacy Policy, as applicable depending on the User’s location.

    2. Who is the data controller?

    In accordance with current Applicable Data Protection Regulations, hereby the data subject is informed that the Personal Data provided (the "Personal Data") will be processed by Domestika Inc. ("Domestika") as the owner of the Platform and data controller of the Personal Data provided therein, whose contact details are as follows: Registered Office: 2001 Addison St., Suite 300 Berkeley, CA, 94704, United States. Data Protection Officer (DPO) can be contacted at the following email address: dataprotection@domestika.org.

    3. For what purposes will your Personal Data be processed by Domestika and under what legal basis?

    The purpose under which Domestika will process your Personal Data varies depending on whether you are a student, teacher, creative, affiliate, or candidate (the "Users") and how you provide us with the information. Below, we list all the purposes (and their legal basis) under which we may process your Personal Data.

    3.1 Use of the Domestika Platform as a registered or non-registered user:

    To attend to requests, incidents (including access to the Platform) and suggestions of the Users through the contact forms available in the Platform, including interactions with our chatbot, e-mail address or social media platforms, on the legal basis of the precontractual or contractual relationship between the User and Domestika. To manage your registration, onboarding and your user account (including payments of courses, subscriptions and refunds) in the Platform, on the legal basis of the precontractual or contractual relationship between the User and Domestika, including all communications that Domestika may send in order to manage the contractual relationship. To manage the communication (private or public) with Teachers, through the means provided in the Platform, being the contractual relationship the legal basis of the processing. To manage the follow-up and the accesses of the Users during the courses, as well as for the corresponding projects, and to issue the relevant certificates, being the contractual relationship the legal basis of the processing. To manage the User's participation in our contests, on the basis of the User's consent. To control access of Users (or other data subjects) to the Platform (including the control of illicit or any other unauthorized accesses that may derive from the activities of the Users) and their activity, as well as to give them access to the Services. The basis for processing will be the legitimate interest of Domestika. To send the Users personalised information about products, services and/or events in which Domestika participates or organises. For Users located in the EEA and the United Kingdom, where applicable legislation requires prior consent for electronic commercial communications, the legal basis for this processing shall be the User's consent, which may be withdrawn at any time through the channels described below. For Users with whom Domestika has an existing contractual relationship and where the communication relates to similar products or services, the legal basis may be the legitimate interest of Domestika in accordance with applicable ePrivacy and electronic communications laws. In any case, Users may exercise their right to oppose the sending of such communications at the address dataprotection@domestika.org or by the specific channels provided by Domestika (e.g., "Unsubscribe" options in the emails). To carry out quality and satisfaction surveys concerning the Platform and its catalogue of Services to optimise and make modifications on the service. The basis for processing will be the legitimate interest of Domestika. Cookies – you can find information about how we process personal data through cookies in our Cookie Policy. To produce anonymous statistical reports on the access habits and activity carried out by the Users on the Platform, based on the legitimate interest of Domestika. To evaluate ideas for carrying out internal solution operations, data analysis, research and service developments which the User may raise through the improvements channel, on the basis of Domestika's legitimate interest.

    3.2 Profiling and automated decision-making:

    Domestika may create a User profile based on the User's activity on the Platform (e.g., courses viewed, acquired, members followed, payment methods) to offer personalised Services, on the basis of the legitimate interest of Domestika. Automated decisions: In the context of such profiling, automated decisions may be made to personalise content, offers and recommendations displayed to the User. The logic applied involves analysing browsing behaviour, course history, interactions and preferences to generate a personalised profile. As a result, certain content may be prioritised over other content in the User's experience on the Platform. In accordance with Article 22 of the GDPR, Domestika confirms that the automated decisions described above do not produce legal effects on Users nor similarly significantly affect them. Nevertheless, Domestika provides the following safeguards:

    1. Users may contact dataprotection@domestika.org to obtain human intervention;
    2. Users may express their point of view and contest any such decision; and
    3. Users may exercise their right to object at any time as described in Section 9 below. Domestika's interest in providing personalised information has been weighed against the User's expectation of privacy. Profile-related information will be processed in a secure and confidential manner.

    3.3 Teachers, Creatives and Affiliates:

    To contact Teachers, Creatives and Affiliates that may have an interest in collaborating with Domestika. Such processing is based on the legitimate interest of Domestika in contacting new teachers, creatives and affiliates. To manage your relationship with Domestika as a Teacher, Creative or Affiliate, in order to comply with the obligations arising therefrom. Domestika will need to process the relevant Personal Data for contacting you in order to organize courses, materials or campaigns, process the payment of your fees, etc. Such data processing is based on the contractual relationship you have with Domestika.

    3.4 Employment:

    To manage applications of the Users that have applied for an employment offer in Domestika either directly through our job vacancies published in our Platform or through our job advertisements in LinkedIn, on the basis of the precontractual relationship. To manage applications of the Users through the employment offers of third parties published in the Employment section of the Platform, on the basis of the contractual relationship as a User of Domestika. You may obtain additional information regarding how these third parties process your data directly contacting with such entities.

    3.5 Fraud prevention:

    Payment behavioural analysis and Users' trends in order to analyse payment methods and products implemented by Domestika and for fraud prevention purposes, based on the legitimate interest of Domestika. To identify any malicious software or activity and protect the User from fraud and misuses of their Personal Data, we may collect information about the User's activity and interaction within our Platform or Domestika Services (e.g., we may evaluate the User's computer, mobile phone or other access device), on the basis of our legitimate interest.

    3.6 Legal obligations:

    To comply with the laws or regulations on the basis of Domestika's legal obligations, including all the Personal Data processing for anti-money laundering and counter-terrorism purposes as set out in the applicable anti-money laundering regulations, including, where applicable, Directive (EU) 2015/849 and other applicable anti-money laundering regulations in relevant jurisdictions.

    4. What categories of Personal Data will be processed?

    The categories of data that can be processed will be determined, in each case, according to the authorisations and requirements held by each User and the information necessary for each purpose. Such data may include:

    1. Non-registered Users: Identification data (IP address, device ID) and navigation data.
    2. Registered Users: Identification data (name and surname, IP address, device ID, Domestika User ID); contact details (e-mail address and postal address); and others (date of birth, nationality, geolocation, navigation data, personal interests that may be provided by the User in the registration form, academic data, historical data regarding the activity in the Platform as a Student, image, user name, payment data and payment behaviour, bank account number, credit card number).
    3. Teachers, Affiliates and Creatives: Identification data (name, surname, National Identity Card, image, voice, social media user name); contact details (e-mail address, postal address, telephone number); data on personal characteristics (date of birth, nationality); academic and professional data (studies, occupation, professional experience, CV); and others (tax identification data, general information provided by the User).
    4. Employment applicants: Identification data (name, surname); contact details (e-mail address, telephone number); and academic and professional information (CV, current company, social media profile). More information about how we process Personal Data such as IP-address and navigation data can be found in our Cookie Policy.

    5. Sources from which we obtain User's Personal Data.

    Personal Data processed by Domestika is directly provided by the User or obtained from browsing behaviour and activity within the Platform. Additionally, Personal Data may be obtained from third parties such as social media platforms (e.g., Facebook, Google, LinkedIn or Instagram). The Personal Data we may receive varies by site and is controlled by such third parties. By associating an account managed by a third party with your Domestika account and authorizing Domestika to have access to this information, you agree that Domestika may collect, store and use this information in accordance with this Privacy Policy. For more information about how such third parties process your Personal Data, please review their privacy policies.

    5.1 YouTube API Services.

    Certain features of our Service incorporate YouTube API Services to display and recommend video content. By using our Service, you agree to be bound by the YouTube Terms of Service, available at: https://www.youtube.com/t/terms. Your continued use of any feature displaying YouTube content constitutes your acceptance of these terms. Privacy Policy: YouTube API Services. Our Service uses YouTube API Services to provide video content and recommendations related to topics of interest within our platform. We do not require you to authenticate with YouTube, and we do not access, collect, or store any personal data from your YouTube account. The content displayed is based solely on information generated within our Service. Your use of features that incorporate YouTube content is subject to: the YouTube Terms of Service: https://www.youtube.com/t/terms the Google Privacy Policy: http://www.google.com/policies/privacy You may revoke Domestika's access to data obtained via the YouTube API Services by visiting the Google security settings page at https://security.google.com/settings/security/permissions.

    6. For how long will Domestika process User's Personal Data?

    On a general basis, Domestika will retain the Personal Data of Users only for the time necessary to carry out the purposes for which they were collected (e.g., managing the contractual relationship as a registered User of the Platform). The following table sets out the specific retention periods applicable to each category of processing:

    In any case, Users may at any time revoke the consents granted, as well as exercise their right of opposition to those processing which are based on the legitimate interest of Domestika. Subsequently, if necessary, Domestika may keep the information blocked for the legally established time periods, until the expiration of the liabilities arising from the respective data processing. Under such circumstances, Personal Data will only be processed in the event that this is required by the competent judicial or administrative authorities in the cases expressly established in the Applicable Data Protection Regulations.

    7. Who are the recipients of your Personal Data?

    User's data may be shared with: The relevant tax authorities for the fulfilment of Domestika's tax obligations, as well as any other public administration that may legally require information. Judges and Courts in the cases provided for by applicable law. Likewise, the Personal Data may be accessed by providers of Domestika (i.e., data processors) if such access is necessary for the adequate fulfilment of legal obligations and/or for the purposes indicated above regulated by the relevant agreements. These suppliers will not process your Personal Data for their own purposes but to comply with Domestika's. Such services may include:

    Additionally, Domestika uses certain third-party services that may act as independent data controllers in relation to the personal data collected through their technologies; where required, such processing will be subject to the User’s consent in accordance with applicable laws.

    In particular, Domestika uses Google services such as Google Analytics, Google Ads and Google Tag Manager. As a result of the use of these services, personal data (such as online identifiers, device information and browsing behaviour) may be shared with Google, which may process such data for its own purposes, including analytics and advertising. For more information on how Google processes personal data in the context of its business services, please visit: https://business.safety.google/privacy/ Additional information on Google’s general privacy practices is available at: https://policies.google.com/privacy A complete and up-to-date list of the specific data processors engaged by Domestika is available upon request by contacting dataprotection@domestika.org.

    7.1 International data transfers.

    Some of these data processors are located outside the European Economic Area (EEA). In particular, Personal Data may be transferred to the following countries: United States: Personal Data may be transferred to the United States, where Domestika Inc. is established and where certain data processors are located. The legal basis for such transfers is the EU-US Data Privacy Framework, where the relevant data importers are certified. Where this mechanism is not applicable, Domestika relies on the Standard Contractual Clauses adopted by the European Commission pursuant to its Implementing Decision (EU) 2021/914 of 4 June 2021, as supplemented by any additional safeguards required following the transfer impact assessment carried out by Domestika.

    For transfers from the United Kingdom, Domestika relies on the UK Extension to the EU-US Data Privacy Framework, where applicable, and/or the UK International Data Transfer Agreement (IDTA). Domestika ensures, through contractual regulations and appropriate safeguards, that these service providers, including entities of Domestika Group, process Personal Data in accordance with Applicable Data Protection Regulations, and in particular with the GDPR, to guarantee a high level of protection, even if the Personal Data is transferred to a country where another level of data protection is applied. No other transfer of Personal Data to other recipients takes place, except where we are required by law to do so. For more information on appropriate safeguards for international data transfers or a copy of them, please contact us at dataprotection@domestika.org.

    8. Data security.

    Domestika has implemented the necessary technical and organisational measures to guarantee the security of your Personal Data and to prevent its alteration, loss, or unauthorised access or processing, taking into account the state of the art, the nature of the data and the risks to which it is exposed. However, please note that measures on the Internet, due to their nature and global character, are not impregnable.

    9. What rights do Users have?

    Users have the data protection rights recognised in the Applicable Data Protection Regulations. In particular, the following may apply: Access to Personal Data. Rectify inaccurate or incomplete Personal Data. Request the erasure of their Personal Data when, among other reasons, the data is no longer necessary for the purposes for which they were collected. Obtain from Domestika the limitation of data processing when any of the conditions set out in the data protection regulations are met. Request the portability of their data. Object to the processing of their data. Right not to be subject to automated individual decision-making, including profiling, which produces legal effects concerning the User or similarly significantly affects the User, in accordance with Article 22 of the GDPR, as further described in Section 3.2 above. File a complaint with the relevant data protection authority when the User considers that Domestika has violated the rights recognised by the Applicable Data Protection Regulations. In particular, for Users located in Spain, the competent authority is, for example, the Agencia Española de Protección de Datos (AEPD), with registered office at C/ Jorge Juan, 6, 28001 Madrid, and website www.aepd.es. For Users located in other EEA Member States, the competent authority shall be the data protection supervisory authority of the Member State of their habitual residence, place of work or place of the alleged infringement. Where a processing operation is based on the consent of the User, the User may withdraw his/her consent at any time. Likewise, where the processing is based on the legitimate interest of Domestika, the User may execute his/her right to object at any time to such data processing, by clicking the unsubscribe link at the bottom of the communication submitted or by submitting their objection to dataprotection@domestika.org. However, the withdrawal of the consent and the objection of the User will not affect the lawfulness of the processing carried out prior to that moment. You may contact Domestika by sending a statement accompanied by a photocopy of your ID or otherwise proving your identity to the address dataprotection@domestika.org. Domestika will respond to your request within one (1) month from receipt, which period may be extended by two (2) further months where necessary, taking into account the complexity and number of the requests, in accordance with Article 12.3 of the GDPR.

    10. Responsibility of the User.

    The User: Warrants that is over 16 years old when registering in the Platform. The registration and the acquisition of courses is only for people over 16. Users who do not comply with these requirements will not be allowed to register in the Platform. The age requirement of 16 years established by Domestika for registration on the Platform is a contractual condition of the Service, without prejudice to the applicable legal provisions. Warrants that the Personal Data he/she provides to Domestika are true, exact, complete and updated. In this sense, the User is responsible for the truthfulness of all the data he/she communicates and will provide updated information, in a way that responds to his/her actual situation. Warrants that he/she has informed third parties (e.g., when inviting a friend to join the Platform) whose data has been provided, if any, of the aspects contained in this document. You also guarantee you have obtained his/her authorization to provide their data to Domestika for the purposes indicated. Will be responsible for false or inaccurate information provided through the Platform and for direct or indirect damages which may be caused to Domestika or to third parties. All Personal Data requested are mandatory unless expressly stated otherwise so that the refusal to provide them will result in the impossibility of providing the service. We reserve the right to ask Users for any information (e.g., a copy of his/her ID card) that we deem appropriate to verify the characteristics of the User, as well as to delete or deactivate any account of a User who does not meet the conditions stated or who does not provide the requested documentation in due time and form.

    11. Changes to this Privacy Policy.

    If the User chooses to use Domestika's Services, the use and any dispute over privacy is subject to this Policy and our Terms of Use. If you have any concern about privacy at Domestika, please contact us through our address dataprotection@domestika.org with a thorough description, and we will try to resolve it. Our business and technology changes constantly, and our Privacy Policy will change also. The User should check our Platform frequently to see recent changes. Unless stated otherwise, our current Privacy Policy applies to all Personal Data that we have about you and your account. Notification of material changes: In the event of material changes to this Privacy Policy that may affect the way in which your Personal Data is processed, Domestika shall notify Users by means of a prominent notice on the Platform and/or by email to the address associated with the User's account, prior to the changes taking effect. Where the changes relate to processing activities based on the User's consent, Domestika will obtain renewed consent where required by the Applicable Data Protection Regulations.

    12. Jurisdiction-Specific Privacy Notices.

    This section provides additional privacy notices for users in specific US jurisdictions.

    12.1. User rights under California Consumer Privacy Act (CCPA).

    This notice applies solely to California residents under the CCPA. Considering Domestika's Services and global presence, in some scenarios your data could be "sold" (as defined under the CCPA, which includes sharing or transferring personal information, not only selling in exchange for money) to third parties. Certain activities are not considered "sales," including when:

    1. personal information is shared with a service provider solely for the provision of services; or

    2. the consumer has directed the company to disclose the personal information. Do not sell my data. Users have the right to opt out of such sale by:

    3. managing cookies through browser settings as described in our Cookie Policy; or

    4. emailing dataprotection@domestika.org. Additional information may be requested to verify the User's identity. Users may also exercise any other right recognised by the CCPA by contacting the same email address.

    12.2. User Rights under the Nevada Privacy Law.

    Under Nevada law (SB 220), Nevada residents may opt out of the sale of certain personal information. Domestika does not currently sell personal information as defined under Nevada law. To submit an opt-out request, email dataprotection@domestika.org.

    12.3. Privacy Notice for Residents of Colorado, Connecticut, Montana, Oregon, Texas, Utah, and Virginia.

    Residents of Colorado, Connecticut, Montana, Oregon, Texas, Utah, and Virginia have the following rights under applicable state privacy laws:

    1. access to and a copy of their personal data;
    2. deletion of personal data;
    3. correction of inaccurate personal data;
    4. opt-out of data sales and targeted advertising; and
    5. data portability in a portable and readily usable format. To exercise these rights, email dataprotection@domestika.org from the email address associated with your Domestika account. These rights are subject to certain exceptions. If your request is denied, you may appeal by contacting the same email address.

    13. First Layer Information Notice (Summary).

    In compliance with the principle of transparency and applicable data protection laws and regulatory guidance on layered information notices, the following table provides a summary of the key elements of this Privacy Policy:


    Element Summary
    Data Controller Domestika Inc., 2001 Addison St., Suite 300, Berkeley, CA 94704, United States.
    DPO Contact dataprotection@domestika.org
    Purposes Management of the contractual relationship; commercial communications; profiling and personalisation; fraud prevention; compliance with legal obligations. See Section 3 for full details.
    Legal Basis Contractual or precontractual relationship; consent; legitimate interest; legal obligations. See Section 3 for full details.
    Recipients Tax authorities; courts and judges; data processors (hosting, IT, analytics, CRM, mailing, payment services). See Section 7 for full details.
    International Transfers United States (and other countries, where applicable). See Section 7.1 for the safeguards applied.
    Retention Periods Varies by purpose. See Section 6 for full details.
    User Rights Access, rectification, erasure, limitation, portability, objection, right not to be subject to automated decisions, withdrawal of consent, and complaint before the competent supervisory authority. See Section 9 for full details.
    More Information Please read the full Privacy Policy above or contact dataprotection@domestika.org.