Privacy Policy

Effective date: February 16, 2026

The Executive Functioning Institute (EFI) collects and processes personal data only to operate the website, deliver requested resources, and provide paid certification/coaching services.

What We Collect

• Account data: name, email, login/session data, role metadata.
• Learning data: module progress, ESQ-R outputs, submission metadata, scoring/feedback records.
• Commerce data: order records, product entitlements, credential IDs, fulfillment status.
• Operational telemetry: page events, referrer, browser/device diagnostics, error events.

How We Use Data

• Provide account access, progress tracking, and dashboard features.
• Deliver paid services, including assessment/report outputs and credential verification.
• Send consented communications, updates, and resource offers.
• Detect abuse, secure systems, and troubleshoot service issues.

Payments and Authentication

Payment processing is handled by third-party processors. EFI does not store full payment card numbers. Purchase fulfillment is released only after server-side verification.

Authentication and authorization are server-backed. Browser-only role data is not considered authoritative for privileged actions.

Data Sharing

EFI may share consented lead/event data with configured CRM and email service providers to deliver requested resources and communications. EFI does not sell personal data.

Implementation-Specific Data Paths

• Primary application storage: Supabase (PostgreSQL) for progress, purchases, submissions, leads, events, and directory records.
• Server execution layer: Netlify Functions for API processing, signature verification, and webhook handling.
• Payment verification: Stripe webhook event metadata used for entitlement release logic.
• AI grading services: Gemini API requests include assignment content and rubric prompts for scoring outputs.

Retention

• Account and purchase records: retained while account is active, then archived for compliance and fraud prevention.
• Submission and rubric feedback records: retained to support certification verification and appeals.
• Telemetry and operational logs: retained on a rolling window (target: 30-90 days) for reliability and abuse monitoring.

Your Rights and Choices

You can request access, correction, or deletion of personal data, subject to legal and operational recordkeeping requirements. You can opt out of marketing emails at any time using unsubscribe links.

For marketing preferences, EFI honors unsubscribe requests and updates communication consent settings for future campaign sends.

Children and Sensitive Data

EFI services are for adults and professional users. Do not submit protected health information or confidential student records unless you are authorized and have lawful basis to do so.

Contact

Privacy requests: info@theexecutivefunctioninginstitute.com.

Back to Home