Our Privacy Commitments
The full policy follows below. Here's the short version of what you should know:
- We do not sell your personal information.
- We do not advertise to Learners inside the training portal.
- You own your data and can request access, correction, or deletion.
- Employers see progress for Learners they invite - that is the product.
- We encrypt data in transit and never store raw passwords or card numbers.
- We retain training records for at least seven years to meet compliance needs.
Rapid Fusion Technologies, LLC, doing business as Rapid Training Solutions ("we," "us," or "our"), respects your privacy. This Privacy Policy explains what information we collect, how we use and share it, and the rights and choices available to you with respect to that information.
This Privacy Policy applies to the website rapidtrainingsolutions.com, any subdomains, our learning portal, our mobile applications, and all related services (collectively, the "Services"). By using the Services, you acknowledge that you have read and understood this Privacy Policy.
This Privacy Policy is incorporated by reference into our Terms and Conditions. Capitalized terms not defined here have the meaning given in the Terms and Conditions.
01Scope and Application
This Privacy Policy applies to personal information we collect from or about:
- visitors to our websites and marketing pages;
- individuals who create an account ("Learners");
- employers, safety managers, HR professionals, and other business representatives who purchase or administer training on behalf of an organization ("Employer Admins");
- employees, contractors, and other individuals whom an Employer invites or enrolls into training through our Services ("Invited Learners");
- individuals who request quotes, contact customer support, or otherwise communicate with us;
- candidates and other individuals whose information we receive through business contact lists, lead generation services, or third-party providers.
This Privacy Policy does not apply to: (a) third-party websites or services that may be linked from the Services, each of which is governed by its own privacy policy; (b) information you provide to an Employer outside of the Services; or (c) employment data collected by us directly in our role as an employer (that is governed by a separate internal privacy notice).
02Information We Collect
2.1 Information You Provide Directly
When you interact with the Services, you may provide:
- Account and identity information - name, email, password (stored only in hashed form), telephone number, company name, job title, country, state, and city.
- Employer account information - company name, billing address, billing contact, number of employees, industry, tax identification information (where applicable), and administrative preferences.
- Learner roster information - when you act as an Employer Admin, you may upload or enter the names, email addresses, job titles, and group assignments of individuals you wish to enroll.
- Payment information - payment card number, expiration date, card security code, billing address, and other payment details. Card details are transmitted directly to our PCI-compliant payment processor and are not stored by us. We retain only a transaction identifier, the last four digits of the card, card brand, and amount.
- Shipping information - where physical wallet cards or printed certificates are involved, shipping name, company, street address, city, state, and postal code.
- Training data - courses purchased or assigned, enrollment status, progress, time spent, quiz and examination attempts and scores, completion status, Certificate identifiers, language preferences, and validity periods.
- Customer service and communications - the content of support requests, chat messages, phone call notes, email correspondence, feedback, reviews, and survey responses.
- Marketing information - contact information submitted through marketing forms, event registrations, quote requests, demo requests, and newsletter subscriptions.
2.2 Information Collected Automatically
When you access the Services, we automatically collect certain technical information:
- Device and connection data - IP address, approximate geographic location derived from IP, device type, operating system, browser type and version, screen resolution, language setting, and referring URL.
- Usage data - pages viewed, features used, buttons clicked, links followed, forms submitted, session duration, and timestamps of activity.
- Session and cart identifiers - unique cart tokens, session identifiers, and CSRF tokens essential to the operation of the Services.
- SCORM and training telemetry - progress through training modules, time spent, pause and resume events, interactions with assessment questions, final scores, and completion events.
- Security and fraud signals - login history, failed login attempts, password reset requests, suspicious activity patterns, and other signals used to detect fraud and protect the Services.
2.3 Information from Third Parties
We may receive information about you from your Employer when they enroll you, our payment processor regarding transaction status, our content licensors and SCORM delivery platforms, our email delivery provider regarding message delivery, publicly available sources and business contact databases, and advertising and analytics partners regarding campaign performance.
2.4 Sensitive Information
We do not intentionally collect sensitive information such as Social Security numbers, driver's license numbers, precise geolocation, health information, biometric data, racial or ethnic origin, religious beliefs, or union membership. Please do not submit such information through the Services unless we expressly request it for a specific purpose.
03How We Collect Information
We collect information through the following channels: forms, registration pages, checkout, and other interactive elements of the Services; cookies, pixels, tags, and similar tracking technologies (see Section 8); server logs and technical monitoring systems; uploads from Employer Admins through bulk-enrollment and roster management tools; integrations with third-party services such as payment processors, SCORM delivery platforms, email providers, and analytics providers; and direct communications such as email, telephone, and chat.
04How We Use Information
We use personal information for the following purposes:
| Purpose | Description |
|---|---|
| Providing the Services | Creating and administering accounts, processing purchases, delivering training, tracking progress, generating Certificates, fulfilling physical shipments, and providing customer support. |
| Account and session management | Authenticating users, maintaining sessions, preventing unauthorized access, enabling password reset, and applying access controls. |
| Transactional communications | Sending order confirmations, receipts, enrollment notifications, assignment alerts, due-date reminders, completion notifications, certificate availability notices, and shipping notifications. |
| Training recordkeeping | Maintaining training records, generating progress reports, producing Certificates, and supporting compliance reporting and export to third-party verification systems where you request it. |
| Billing and finance | Processing payments, managing invoices, handling refunds and chargebacks, calculating taxes, and complying with tax and accounting obligations. |
| Security and integrity | Monitoring for unauthorized access, protecting against fraud, detecting cheating or examination integrity violations, investigating suspected violations of our Terms, and enforcing our rights. |
| Analytics and improvement | Understanding how Users interact with the Services, measuring feature performance, diagnosing technical issues, and improving our content and user experience. |
| Marketing | Sending promotional communications about courses, bundles, and industry updates, subject to your preferences and applicable law. You may opt out at any time. |
| Legal and compliance | Complying with legal obligations, responding to lawful requests and legal process, establishing or defending legal claims, and protecting the rights of Rapid Training Solutions, our Users, or others. |
| Business operations | Managing our business, performing internal audits, corporate transactions, and related activities. |
We do not use personal information to make decisions that produce legal or similarly significant effects about individuals without meaningful human involvement.
05Legal Bases for Processing
Where data protection law requires a legal basis for processing (for example, under the European Union or United Kingdom General Data Protection Regulation), we rely on one or more of the following:
- Performance of a contract - processing necessary to provide the Services you or your Employer have purchased.
- Legitimate interests - processing necessary for our legitimate interests, such as operating and improving the Services, preventing fraud, securing our systems, and direct marketing, provided those interests are not overridden by your rights.
- Consent - where required, such as for certain marketing communications and optional cookies. Consent can be withdrawn at any time.
- Legal obligation - processing necessary to comply with tax, accounting, recordkeeping, and other legal requirements.
- Protection of vital interests or public interest - in limited circumstances where processing is necessary to protect someone's life or a public interest.
06Information Sharing and Disclosure
6.1 We Do Not Sell Personal Information
We do not sell personal information in exchange for monetary consideration. See Section 12 for additional disclosures regarding the concept of "sale" or "sharing" as defined in certain state laws.
6.2 Categories of Recipients
We share personal information with the following categories of recipients, each subject to appropriate confidentiality and data protection obligations:
- Service providers - vendors who perform services on our behalf, including hosting, content delivery, SCORM training delivery, payment processing, email delivery, customer support tooling, analytics, security monitoring, and physical print and shipping fulfillment.
- Content licensors - third-party training content providers receive enrollment, completion, and related telemetry data as required to operate and account for the licensed courses.
- Employers - if you are an Invited Learner, your Employer's designated Admins will have access to your enrollment and progress information. See Section 7.
- Compliance verification services - where you or your Employer request export of Certificates or completion data to third-party compliance verification systems such as ISNetworld, Avetta, or similar providers.
- Professional advisors - attorneys, accountants, insurers, auditors, and other professional advisors, as needed for the operation of our business.
- Legal and governmental authorities - where required by law, subpoena, court order, or regulatory requirement; to establish or defend legal claims; or to protect the rights, property, or safety of Rapid Training Solutions, our Users, or the public.
- Business transactions - in connection with a corporate transaction such as a merger, acquisition, reorganization, financing, or sale of assets, subject to customary confidentiality protections.
- With your direction or consent - any other disclosure you direct or authorize.
6.3 Aggregated and De-Identified Information
We may create, use, and share aggregated or de-identified information that cannot reasonably be used to identify you for any lawful purpose, including research, benchmarking, and product improvement.
07Employer Accounts and Invited Learner Data
7.1 The Data Relationship
When an Employer purchases Services and invites Learners, the Employer is the "controller" of the Invited Learner's personal information under applicable data protection laws, and Rapid Training Solutions acts as the "processor" or "service provider." We process Invited Learner data on behalf of the Employer in accordance with this Privacy Policy and our agreements with the Employer.
7.2 Visibility to Employers
If you are an Invited Learner, your Employer's designated Admins will have access to information about your training, including enrollment, courses assigned, due dates, progress, examination scores, completion dates, Certificate validity, and expiration dates. Your Employer may use this information to monitor compliance, assign additional training, and generate internal reports. If you have questions about how your Employer uses this information, please contact your Employer directly, as their own privacy practices apply.
7.3 Requests from Invited Learners
We may refer requests from Invited Learners regarding their data to the Employer, and we may rely on the Employer to respond to, and to provide direction for, such requests. Where we are legally required to respond directly, we will do so in accordance with applicable law and Section 11 of this Privacy Policy.
7.4 Employer Obligations
Employers are responsible for providing any notices, obtaining any consents, and fulfilling any other legal obligations required before submitting Learner information to us. Employers warrant that they have the legal right to submit the information and to direct our processing as described in this Privacy Policy and the Terms and Conditions.
08Cookies and Tracking Technologies
8.1 What We Use
We and our service providers use cookies, web beacons, pixels, local storage, and similar technologies to operate and improve the Services. These fall into the following categories:
| Category | Purpose |
|---|---|
| Strictly necessary | Required for core functionality including authentication, session management, cart, checkout, CSRF protection, and security. These cannot be disabled without preventing the Services from working. |
| Functional | Remember your preferences such as language selection and display settings. |
| Analytics and performance | Help us understand how Users interact with the Services, such as which pages are visited, how Users navigate, and where errors occur. |
| Marketing | Used to measure the effectiveness of our marketing campaigns and, where permitted, to deliver relevant advertising on third-party sites. We do not use cookies to build cross-context behavioral advertising profiles of Invited Learners while they are using the learning portal. |
8.2 Third-Party Analytics
We use analytics providers that may set cookies and collect information about your use of the Services. These providers process information in accordance with their own privacy policies.
8.3 Your Choices
Most web browsers allow you to review, delete, and control cookies through browser settings. Disabling cookies may affect the functionality of the Services. Where required by law, we will obtain your consent before placing non-essential cookies and provide a cookie preference mechanism on the Services.
8.4 Do Not Track and Global Privacy Control
Some browsers send a "Do Not Track" signal. There is no industry consensus on how to respond to such signals. Currently, we do not alter our practices in response to Do Not Track signals but we honor Global Privacy Control (GPC) signals to the extent required by applicable law.
09Data Retention
We retain personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, establish or defend legal claims, and enforce our agreements. Our general retention practices are:
| Data Type | Retention Period |
|---|---|
| Training records and Certificates | At least 7 years after last issuance or enrollment activity |
| Account data | Life of the Account plus a reasonable period; inactive Accounts may be archived or anonymized |
| Transactions and billing | At least 7 years after the transaction |
| Support communications | Up to 3 years after the last interaction |
| Marketing records | Until opt-out or up to 3 years after last engagement, whichever is shorter |
| Server logs and security data | Up to 2 years, or longer where needed for active investigations |
When personal information is no longer needed for any of these purposes, we will delete, destroy, or anonymize it in accordance with our internal retention schedule and applicable law.
10Data Security
We maintain reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These safeguards include encryption in transit (TLS), encryption of passwords using one-way hashing, role-based access control, audit logging of administrative actions, CSRF protection, prepared-statement database queries to prevent injection attacks, session security controls, and regular security reviews.
No method of transmission over the Internet or method of electronic storage is one hundred percent secure. While we take the security of your information seriously, we cannot guarantee absolute security. You are responsible for keeping your login credentials confidential and for notifying us promptly of any suspected unauthorized access. In the event of a data breach involving personal information, we will provide notice as required by applicable law.
11Your Privacy Rights
Subject to applicable law and certain exceptions, you may have the following rights regarding your personal information:
11.1 How to Exercise Your Rights
You may exercise your rights by emailing us at the address in Section 16 with "Privacy Request" in the subject line. We will confirm receipt of your request and respond within the timeframe required by applicable law. We will take reasonable steps to verify your identity before responding. For Invited Learners, see Section 7 regarding how we handle requests.
11.2 Authorized Agents
You may designate an authorized agent to submit a request on your behalf where permitted by applicable law. We may require documentation demonstrating the agent's authority and may require you to verify your own identity directly.
11.3 Appeal
If we deny your request, you may appeal our decision where applicable law provides an appeal right. Appeal requests should be submitted by email to the address in Section 16 with "Privacy Appeal" in the subject line.
12State-Specific Disclosures
This Section 12 provides additional information for residents of certain U.S. states. These disclosures supplement the information provided elsewhere in this Privacy Policy.
12.1 California
If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (together, "CCPA"), provides you with additional rights and requires certain disclosures.
Categories of Personal Information Collected
In the preceding twelve (12) months, we may have collected the following categories of personal information as defined by the CCPA: identifiers (such as name, email, IP address, account identifier); customer records (billing name and address, phone number); commercial information (transactions and purchase history); internet and network activity (browsing and usage data); approximate geolocation data; professional and employment-related information (job title, company, industry); inferences drawn from the foregoing; and training progress and completion data. We do not collect sensitive personal information in the ordinary course.
Sources
We collect personal information from the sources described in Sections 2 and 3.
Purposes
We use personal information for the business and commercial purposes described in Section 4.
Disclosure for a Business Purpose
In the preceding twelve (12) months, we may have disclosed the categories of personal information listed above to the categories of recipients listed in Section 6 for the business purposes described in Section 4.
Sale or Sharing
We do not sell personal information. We do not share personal information for cross-context behavioral advertising as those terms are defined by the CCPA. We do not knowingly sell or share personal information of consumers under sixteen (16) years of age.
California Rights
California residents have the rights described in Section 11. California residents may also request information about our disclosures of personal information in the preceding twelve months ("Shine the Light"). You may submit a request by contacting us as described in Section 16.
12.2 Virginia, Colorado, Connecticut, Utah, and Other States
If you are a resident of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), or another state with a comprehensive consumer privacy law, you have the rights described in Section 11 to the extent provided by your state's law. To exercise these rights, follow the procedure in Section 11.1. These laws also provide a right to appeal a denial of your request (see Section 11.3).
12.3 Nevada
Nevada residents may opt out of the sale of covered personal information by contacting us as described in Section 16. As noted above, we do not currently sell personal information.
13International Users and Data Transfers
The Services are hosted and operated in the United States. If you access the Services from outside the United States, your personal information will be transferred to, processed, and stored in the United States, where data protection laws may differ from those of your country. By using the Services, you acknowledge and consent to the transfer of your personal information to the United States. Where applicable law requires additional safeguards for cross-border transfers (such as Standard Contractual Clauses under European data protection law), we will implement such safeguards.
14Children's Privacy
The Services are intended for use by individuals who are at least eighteen (18) years old. We do not knowingly collect personal information from children under the age of sixteen (16), and we do not direct the Services to children. If we learn that we have collected personal information from a child under sixteen, we will delete it promptly. If you believe we have collected such information, please contact us at the address in Section 16.
15Changes to This Policy
We may update this Privacy Policy from time to time. The "Last Updated" date at the top reflects the date of the most recent revision. Material changes will be communicated by updating the effective date and, where required by law, by providing additional notice (such as an email or a prominent notice on the Services). Your continued use of the Services after the revised Privacy Policy takes effect indicates your acceptance of the revised Privacy Policy.
16How to Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
Rapid Fusion Technologies, LLC
d/b/a Rapid Training Solutions
Attention: Privacy Officer
Phone: 1-800-287-5942
Email: [email protected]
For privacy requests, please include "Privacy Request" in the subject line. For appeals of denied requests, please include "Privacy Appeal" in the subject line.