Infynno UCAT – home

Privacy Policy

Last Updated: June 2026

1. Introduction

Infynno UCAT Portal ("we", "our", or "us") provides online UCAT preparation tools, including question bank practice exams, analytics, performance tracking, and related educational services.

This Privacy Policy explains how we collect, use, store, share, and protect personal information when you use our platform, website, and related services.

By using the platform, you acknowledge that you have read and understood this Privacy Policy.

2. Who We Are

Infynno UCAT Portal is an online educational platform designed to help students prepare for examinations through practice tests, performance analytics, and learning tools.

The data controller responsible for personal information processed through the platform is:

Infynno UCAT Technologies

For our registered address, please contact us using the email address below.

Email: sales@infynno.com

For any privacy-related questions, requests, or concerns, you may contact us at the email address above.

3. Information We Collect

We collect information that is necessary to provide and improve our services.

3.1 Account Information

When you create an account, we may collect:

  • Full name
  • Email address
  • Password (stored in a secure hashed format)
  • Account preferences and settings

3.2 Assessment and Learning Data

To provide exam preparation services, we may collect:

  • Practice test, mock exam, sub mock exam attempts
  • Answers submitted
  • Scores and results
  • Question bookmarks, likes, and preferences
  • Time spent on questions and assessments
  • Progress and performance analytics

3.3 Technical and Usage Information

When you use the platform, we may automatically collect:

  • IP address
  • Operating system
  • Session activity
  • Pages visited
  • Usage statistics
  • Error and diagnostic information

3.4 Support Communications

If you contact us for assistance, we may collect:

  • Support requests
  • Messages and correspondence
  • Information provided during troubleshooting

4. Cookies and Similar Technologies

We use cookies and similar technologies to:

  • Maintain user sessions
  • Authenticate users
  • Remember user preferences
  • Improve platform performance
  • Analyze platform usage

For more information, please refer to our Cookie Policy.

5. How We Use Your Information

We use personal information for legitimate business purposes, including:

Service Delivery

  • Creating and managing accounts
  • Authenticating users
  • Delivering examinations and practice tests
  • Providing scores, analytics, and progress reports
  • Maintaining platform functionality

Security and Fraud Prevention

  • Protecting user accounts
  • Detecting abuse, fraud, unauthorized access, and security incidents
  • Monitoring platform stability and reliability

Product Improvement

  • Understanding platform usage
  • Improving performance and user experience
  • Developing new features and services
  • Conducting internal analytics and research

Communication

  • Sending account-related notifications
  • Providing important service updates
  • Responding to support requests

Marketing Communications

Where applicable and where required by law, we may send educational updates, product announcements, or promotional communications only with appropriate consent or another lawful basis.

You may opt out of marketing communications at any time.

6. Legal Basis for Processing

Where required by applicable law, we process personal information based on one or more of the following legal grounds:

  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate business interests
  • User consent where required

Legitimate interests may include platform security, fraud prevention, service improvement, analytics, operational management, and customer support.

We do not use personal information to make solely automated decisions that produce legal or similarly significant effects on individuals.

7. Who Can Access Information

Access to personal information is limited to individuals who require access for legitimate business purposes.

Depending on how the platform is used, information may be accessible to:

  • Authorized Super Administrators
  • Authorized administrators and managers
  • Authorized internal staff and support personnel
  • Educational institutions or organizations operating their own instance of the platform
  • Service providers that help us operate the platform

All access is subject to appropriate permissions and operational requirements.

8. Sharing of Information

We do not sell personal information.

We may share information with trusted service providers that assist us in operating the platform, including:

  • Cloud hosting providers
  • Infrastructure providers
  • Email delivery providers
  • Analytics providers
  • Security and monitoring providers
  • Customer support providers

These providers may process information only as necessary to perform services on our behalf and are required to protect personal information appropriately.

We may also disclose information:

  • To comply with legal obligations
  • To respond to lawful requests from authorities
  • To protect our rights, users, systems, and services
  • In connection with a merger, acquisition, or business transfer

9. Data Retention

We retain personal information only for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements.

Retention periods may include:

  • Account information: retained while the account remains active
  • Assessment records and analytics: retained while necessary to provide educational reporting and historical performance analysis
  • Security logs: retained for a limited period necessary for security, auditing, and fraud prevention

Inactive accounts may be deleted, anonymized, or archived after a long period of inactivity.

If an account is deleted, historical assessment results, analytics, bookmarks, preferences, and related educational records may no longer be accessible.

10. International Data Transfers

Our service providers and infrastructure partners may operate in multiple countries.

As a result, your information may be processed and stored in countries outside your country of residence, including locations where our hosting and infrastructure providers operate.

These providers may include cloud and infrastructure platforms such as:

  • Amazon Web Services (AWS)
  • Microsoft Azure
  • Google Cloud Platform

We take reasonable measures to ensure that personal information remains appropriately protected regardless of where it is processed.

11. Data Security

We implement reasonable technical and organizational measures designed to protect personal information from unauthorized access, disclosure, alteration, or destruction.

These measures may include:

  • HTTPS and encrypted communications
  • Access controls and role-based permissions
  • Secure infrastructure and hosting environments
  • Password hashing and authentication safeguards
  • Monitoring and security practices appropriate to the nature of the service

While we work to protect information, no method of transmission or storage can be guaranteed to be completely secure.

Where required by applicable law, we will notify affected individuals and relevant authorities of certain personal data breaches.

12. Your Privacy Rights

Depending on your location and applicable laws, you may have rights relating to your personal information, including:

  • Access your personal information
  • Correct inaccurate information
  • Request deletion of personal information
  • Receive a copy of your personal information in a structured, commonly used, and machine-readable electronic format where required by applicable law
  • Restrict certain processing activities
  • Object to certain processing activities
  • Withdraw consent where consent is relied upon

To exercise your rights, contact: sales@infynno.com

We may need to verify your identity before processing requests.

Upon receiving a valid deletion request, we will delete or anonymize personal information unless retention is required by law, contractual obligations, security requirements, fraud prevention purposes, or legitimate business interests.

13. Children's Privacy

Our services are intended for students preparing for educational examinations.

Where required by applicable law, parental or guardian authorization may be required for users below the applicable age threshold.

If you believe personal information has been provided in violation of applicable law, please contact us.

14. Third-Party Services

The platform may contain links to third-party websites or services.

We are not responsible for the privacy practices, content, or security of third-party services and encourage users to review their privacy policies separately.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

When material changes are made, we may provide notice through the platform, email, or other appropriate means as required by applicable law.

The updated version will be effective from the date shown at the top of this Privacy Policy.

16. Contact Us

For privacy-related questions, requests, or concerns, please contact:

Email: sales@infynno.com

We will make reasonable efforts to respond to privacy requests in accordance with applicable laws and regulations.

Footer

Empowering future doctors with
the right preparation and guidance.

HomePrivacy PolicyCookie PolicyTerms of Use

© 2026 Infynno UCAT. All rights reserved.