Skip to main content

Legal

Privacy Policy

Last updated: April 13, 2026. This Privacy Policy explains how Radiance Station collects, uses, stores, discloses, and retains personal information when you use RadianceStation.com.au and the related learning, billing, support, and community features.

Who We Are And What This Policy Covers

  • Radiance Station operates RadianceStation.com.au and the related dashboard, learning, billing, support, and community features described in this policy.
  • Radiance Station is the organisation responsible for deciding how personal information is handled for this service. Our main privacy contact path is the site contact form or hello@radiancestation.com.
  • This policy covers public website browsing, account signup and sign-in, placement flows, study-plan features, IELTS and CEFR tools, subscriptions, support interactions, peer features, and privacy-rights requests.
  • Some public pages can be browsed without creating an account. Account-based learning, billing, support, and community features require personal information so the service can work safely and reliably.
  • Radiance Station is designed for adults. Users must be 18 or older to create an account and use account-based or paid features.

Categories Of Personal Information We Collect

  • Account and identity data, such as your name, email address, password hash if you sign up with email, date of birth, profile image, email-verification status, and Google sign-in details if you choose Google authentication.
  • Learning and assessment data, such as study goals, target scores, placement-test answers and results, IELTS and CEFR lesson activity, progress records, AI feedback inputs and outputs, peer feedback, and related scoring data.
  • Community and network data, such as contact requests, contact relationships, invite links, peer-feedback requests, reviewer activity, and information you choose to share through contact or feedback features.
  • Billing and transaction data, such as subscription plan, subscription status, Stripe customer and subscription identifiers, feedback-pack purchase records, and related billing events.
  • Support and communication data, such as contact-form messages, support correspondence, password-reset or verification flows, privacy requests, and related request notes or status records.
  • Technical, browser, and security data, such as session data, authentication cookies, short-lived sign-in and signup context cookies, local browser storage used for product features, browser-level analytics preference records, and operational logs needed for security, troubleshooting, and abuse prevention.
  • If you allow optional analytics, analytics and usage data such as page views, general device and browser information, and high-level navigation patterns collected through Google Analytics.

How We Collect Personal Information

  • Directly from you when you create an account, complete forms, submit study responses, purchase a subscription, contact support, adjust account settings, or submit a privacy request.
  • Automatically when you use the service, such as when the app creates session records, saves progress, records submissions, stores essential browser data, or logs operational and security events.
  • From third parties you choose to use, including Google for sign-in and Stripe for checkout, subscription, billing, and payment-status events.
  • From other users when they send you contact requests, share feedback with you, or otherwise interact with you through peer or contact features.

When You Can Be Anonymous Or Use A Pseudonym

  • You can browse some public pages without identifying yourself.
  • For account-based learning, billing, support, community, and security features, we generally need real account information so we can provide the service, protect accounts, prevent abuse, and respond to billing or safety issues.
  • If you contact us with a privacy question before creating an account, you may choose not to identify yourself unless we reasonably need your identity to answer the request or investigate the issue.

Why We Collect, Hold, Use, And Disclose Personal Information

  • To create and manage accounts, authenticate users, verify email addresses, maintain security, and let you sign in across devices.
  • To deliver the learning service, including placement, study plans, IELTS practice, CEFR lessons, progress tracking, AI feedback, peer feedback, and contact-network features.
  • To process subscriptions, administer billing, detect fraud, manage account access, and respond to payment issues, refunds, or cancellations.
  • To communicate with you about account verification, security matters, support requests, essential service changes, billing matters, and optional marketing if you have opted in or another lawful basis applies.
  • To improve the platform, monitor feature performance, investigate errors, and generate de-identified or aggregated insights about how the service is used. Where you allow optional analytics, this can include page-use and navigation reporting through Google Analytics.
  • To comply with applicable law, enforce our terms, respond to lawful requests, and protect the rights, safety, and security of Radiance Station, our users, and others.

Who We Disclose Personal Information To

  • Service providers that help us operate the product, such as authentication, database, cloud, payment, email-delivery, analytics, and AI providers. The codebase currently uses providers and integrations including Google sign-in, Google Analytics where enabled, Stripe, Resend, Anthropic, and Neon-backed database infrastructure.
  • Other users, but only where the feature requires it, such as peer feedback, contact requests, contact relationships, invite links, or shared feedback activity.
  • Professional advisers, auditors, regulators, law-enforcement bodies, courts, or other authorities where reasonably necessary for legal, security, compliance, or dispute-handling purposes.
  • Potential acquirers, investors, or transaction advisers where reasonably necessary for a corporate transaction, subject to appropriate confidentiality and legal controls.

Service Emails, Marketing, AI, And Peer Features

  • We use your email address for essential service communications such as signup verification, password reset, admin verification, billing updates, security notices, support replies, and other account or service messages.
  • Signed-in users can store an optional marketing email preference in account privacy settings. If we send optional marketing emails, we will use saved preferences and provide unsubscribe controls where required by applicable law.
  • When you request AI feedback, the prompts, written responses, speaking responses, and related task content needed for that feature may be sent to our AI service provider so feedback and scores can be generated.
  • When you use peer feedback or contact features, other users may see information needed for that feature, which can include your name or display label, email address, submitted practice, feedback text, contact status, and related activity.
  • Please do not include sensitive personal information in study submissions, peer feedback, or messages unless it is genuinely necessary, because those materials may be stored, reviewed, and shared within the feature you choose to use.

Cookies, Local Storage, And Similar Technologies

  • We use essential authentication and session cookies created by the sign-in and session layer so the site can keep you signed in, protect account access, and make authenticated pages work correctly.
  • We use the first-party cookie `rs_google_auth_intent` for about 60 seconds to remember whether you started a Google sign-in or Google signup flow.
  • We use the first-party cookie `rs_google_signup_context` for up to about 10 minutes to carry required Google-signup context such as adult-account checks and signup confirmation state through the Google pre-check flow.
  • We use local browser storage for core product features. Current browser-stored items include pending contact-invite tokens, onboarding goal and placement state, free-lesson variant state, CEFR reading, writing, listening, and speaking progress state, daily-goal state, dashboard study summaries, and saved vocabulary state.
  • These browser-side records are used for service functionality you request and may stay on your device until they expire, are overwritten, are cleared by the app, or are removed by you through your browser settings.
  • We store a browser-level analytics preference record so the site can remember whether you allowed or rejected optional analytics on that browser.
  • If you allow optional analytics, the site loads Google Analytics to measure page views, broad device and browser information, and high-level navigation patterns so we can understand how the public site and product flows are being used.
  • Optional analytics stays off until you choose to allow it. If you reject or later withdraw that choice, the site keeps optional analytics off and continues using only the essential cookies and browser storage needed for core service functionality.
  • You can change the optional analytics setting at any time through the analytics preference control or dashboard privacy settings.
  • We do not currently use optional analytics for cross-context behavioural advertising and do not currently deploy separate advertising cookies for personalised ads.

Retention And Security

  • We take reasonable steps in the circumstances to protect personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure. Those steps may include access controls, password hashing, encryption in transit, vendor security controls, and internal operational safeguards.
  • No internet service can promise absolute security. You should keep your password confidential and let us know promptly if you suspect unauthorised access to your account.
  • We retain account and profile data for as long as the account is active and for a reasonable period after that where needed for continuity, support, dispute handling, or legal compliance.
  • We retain learning, progress, and community data for as long as needed to provide the service and keep study history available, unless it is deleted or de-identified earlier through account deletion or another valid request.
  • We retain billing, tax, accounting, privacy-request, and some security or fraud-prevention records for longer where needed to meet legal, contractual, compliance, or enforcement obligations.
  • When information is no longer needed, we aim to delete it, de-identify it, or put it beyond use where reasonable. Where account deletion is requested, some records may be removed, some may be anonymised, and some may be retained in restricted form where billing, security, fraud, or legal reasons require it.
  • If we believe an eligible data breach involving your personal information has occurred, we will respond in line with applicable legal obligations, including notification requirements where required.

Your Product Controls And Privacy Request Paths

  • Signed-in users can directly view core account details and update their name, date of birth, and profile image in the service. Email-address changes are handled through verified support review, and password changes use the secure password flow. Signed-in users can also review the browser-level optional analytics setting and submit data export and account-deletion requests through dashboard privacy settings. Account-deletion requests currently use a short cooling-off period before execution and may be cancelled from the dashboard during that period. For other requests, including complaints or requests sent outside the dashboard, contact us through the site contact form or our support email and we may need to verify your identity before acting on the request.
  • Privacy requests are tracked through a request record and event trail so they can be reviewed, updated, and completed in a traceable way.
  • If you have a privacy complaint, contact us first with enough detail for us to investigate, including the page or feature involved, the email address used, and the approximate time the issue occurred.

Australia-Specific Information

  • If the Australian Privacy Act and Australian Privacy Principles apply, you can ask for access to the personal information we hold about you and ask us to correct inaccurate, incomplete, or out-of-date information.
  • You can make privacy, access, correction, deletion, or complaint requests through the site contact form, the support page, or our privacy contact email. We may need reasonable identity verification before acting on some requests.
  • We aim to respond within a reasonable time and, where practicable, within 30 days.
  • If you are not satisfied with our response, you may be able to complain to the Office of the Australian Information Commissioner (OAIC). See https://www.oaic.gov.au/privacy/privacy-complaints.

EU And EEA-Specific Information

  • If EU or EEA data-protection law applies to your use of the service, our main legal bases for processing personal data are: performing our contract with you to provide the service; complying with legal obligations; legitimate interests such as securing the platform, preventing abuse, improving the service, and handling support; and consent where we ask for it or another lawful basis is not appropriate.
  • If those laws apply, you may have rights to access, rectify, erase, restrict, object to some processing, withdraw consent where consent is the basis, and receive a portable copy of relevant personal data where the law provides that right.
  • If EU or EEA law applies and you are unhappy with our response, you may also have the right to complain to your local supervisory authority.
  • Where personal data is handled outside the EU or EEA, we aim to use appropriate contractual, organisational, and security measures that are reasonable for the transfer context and the services involved.

California-Specific Information

  • If California privacy law applies to your use of the service, this policy is also intended to operate as a California notice describing the categories of personal information we collect, the sources those categories come from, the business or commercial purposes for collecting them, and the categories of recipients to whom they are disclosed.
  • If California law applies, you may have rights to know or access personal information, correct inaccurate personal information, delete personal information subject to exceptions, and obtain a portable copy of certain data. You may also have the right not to receive discriminatory treatment for exercising applicable privacy rights.
  • We do not currently sell personal information and do not currently share personal information for cross-context behavioural advertising. Because of that current product model, we do not currently provide a separate 'Do Not Sell or Share My Personal Information' link.
  • We may collect California sensitive personal information such as account log-in credentials, but we use that information only to provide the service, maintain account security, detect fraud, process transactions, respond to support needs, and comply with law. We do not currently use sensitive personal information to infer characteristics about you for advertising or profiling purposes that would require a separate California right-to-limit workflow.
  • California privacy requests can be submitted through signed-in dashboard privacy settings where available, or through the contact form, support page, or hello@radiancestation.com.

International Transfers And Overseas Handling

  • Radiance Station and our service providers may store or process personal information in Australia and in other countries where our providers or their subprocessors operate.
  • Depending on the feature used, overseas handling may include the United States and other jurisdictions used by providers such as Google, Stripe, Resend, Anthropic, Neon, and related cloud or support vendors.
  • Where personal information is disclosed overseas, we aim to work with providers that offer appropriate security, contractual, and operational safeguards for the services they perform.

Changes To This Policy And Contact Details

  • We may update this Privacy Policy from time to time to reflect changes in the service, our providers, or legal requirements. When we make material changes, we will update the date at the top of this policy and may provide an additional notice where appropriate.
  • For privacy questions, access requests, correction requests, complaints, or dashboard access issues, use the contact form on RadianceStation.com.au, visit the support page, or email hello@radiancestation.com. Signed-in users can also submit data export and account-deletion requests from dashboard privacy settings.
  • Radiance Station's main privacy contact path is hello@radiancestation.com. If you contact us by email, include enough detail for us to identify the account or issue you want us to review.
  • Nothing in this policy limits rights that cannot be excluded under applicable privacy, consumer, or data-protection law.