‍Last Updated: February 7, 2026

This Privacy Policy explains how ApplyAZ Inc. (“ApplyAZ”, “we”, “us”, “our”) collects, uses, stores, shares, and protects Personal Information when you use our websites, dashboards, eligibility check, forms, communications channels, and related services (the “Platform”).

If you do not agree with this Privacy Policy, do not use the Platform.

1) Who We Are and How to Contact Us

Company: ApplyAZ Inc.

Email: info@applyaz.com

Privacy Officer: Email info@applyaz.com with subject Privacy Request.

India Grievance Contact: Email info@applyaz.com with subject India Privacy Grievance.

We respond within a commercially reasonable time and within any timelines required by applicable law.

2) Scope

This Privacy Policy applies to Personal Information we process when you: - visit our websites or use our dashboards - submit eligibility information - create an account - upload documents - communicate with us (email, WhatsApp, phone, SMS, in-dashboard) - make payments through our payment providers (note: we do not store full card details)

If you choose to communicate with us through third-party platforms (for example, WhatsApp or social platforms), those providers process information under their own terms and privacy policies.

3) What We Collect

We collect information you provide, information generated through your use of the Platform, and limited information from service providers.

A) Information you provide

• Identity: name, date of birth, nationality, passport details (if provided), government identifiers (only if you upload them)
• Contact: email, phone number, address, country of residence
• Academic and professional: transcripts, diplomas, certificates, CV, SOP, test scores, work history
• Application-related: preferred programs, intake, documents required for forms, declarations, signatures (where applicable)
• Communications: messages and files you send us, meeting notes, support requests

B) Information we collect automatically

• Device and usage: IP address, device identifiers, browser type, pages viewed, timestamps, referral sources
• Cookies and similar technologies: used to operate, secure, measure, and improve the Platform (see Section 12)

C) Payment information

Payments are processed by third-party payment providers. We receive confirmation details such as payment status, transaction reference, amount, currency, and timestamp.

D) Sensitive or high-risk documents

Some documents you upload may contain sensitive or high-risk information (for example, passport pages, visa documents, national identifiers, or medical or family details included in third-party forms). You control what you upload. Do not upload information that is not needed for your requested services.

4) Why We Use Your Information

We use Personal Information for the following purposes:

A) Provide and operate the Platform

• create and manage your account
• deliver platform features and workflows
• provide administrative coordination and case updates

B) Deliver your requested services

• review documents for completeness and formatting
• prepare checklists, reminders, and submission coordination
• populate forms and prepare drafts based on the information you provide
• coordinate submissions to third parties as part of the services you initiate through the Platform

C) Communications

• service messages, reminders, missing-document alerts, status updates
• support responses and operational coordination

D) Safety, fraud prevention, and enforcement

• prevent abuse and unauthorized access
• secure accounts and systems
• enforce platform rules, investigate suspicious activity

E) Analytics and improvement

• troubleshoot issues, measure performance, improve user experience
• develop and improve features, training, and support quality

prevent abuse and unauthorized access

secure accounts and systems

enforce platform rules, investigate suspicious activity

F) Legal and compliance

• accounting, tax, recordkeeping, dispute handling, legal claims, and regulatory obligations

We do not sell Personal Information.

5) Legal Bases and Consent Mechanics (Where Required)

Depending on where you live, we rely on one or more of the following: - Contract necessity (to provide what you request) - Consent (where required, including certain marketing communications and certain cookies) - Legitimate interests (to operate, secure, and improve the Platform, prevent fraud, and protect our business and users) - Legal obligation (tax, accounting, lawful requests)

Where applicable law requires consent, consent is provided through affirmative actions (for example, submitting forms, proceeding after notices, or enabling optional technologies through a cookie banner or settings).

Where applicable law requires a withdrawal mechanism, we provide a method to withdraw consent that is reasonably comparable to the method used to provide it, including through account settings where available, cookie controls where available, or by contacting us.

Consent withdrawal may be subject to lawful limitations and continued processing that is necessary for service delivery, security, fraud prevention, dispute handling, and compliance.

6) Automated Decision-Making and AI

We may use software tools to help organize workflows, reduce errors, and improve efficiency. We do not use automated systems to make binding decisions about admissions, scholarships, or visas. Third parties make those decisions.

7) How We Share Information

We share Personal Information only when necessary for the purposes in this Policy.

A) Authorization through Platform use

By creating an account, submitting forms, uploading documents, communicating with us, or taking any dashboard action on go.applyaz.com, any applyaz.com subdomain, or related channels, you are requesting ApplyAZ to perform the services you initiate through the Platform.

You authorize ApplyAZ to process and use your Personal Information and documents as reasonably necessary to provide those services, including preparing, transmitting, and submitting information to relevant third parties required for the workflow you initiate.

For clarity, initiating or confirming a workflow step in the dashboard (for example, selecting programs, confirming submission steps, requesting submission support, paying for a service step, or requesting visa coordination support) constitutes instruction to process and, where necessary, transmit the relevant information for that workflow.

If you do not want certain information transmitted, do not upload it and contact us before proceeding.

B) Recipients as independent third parties

When information is transmitted to universities, scholarship bodies, visa-related third parties, or government authorities as part of your requested workflow, those recipients generally process information under their own rules and privacy notices. They act as independent third parties for their portals and internal processes, and we are not responsible for their privacy practices.

C) With service providers (“processors”)

We use third-party vendors to run the Platform and operations, such as cloud hosting, storage, databases, communications tools, analytics and security tools, customer support tools, and payment processors.

We use contractual and organizational measures intended to require service providers to protect Personal Information and to process it only to provide services to ApplyAZ.

D) Legal disclosures

We may disclose information if required to comply with law, court orders, lawful government requests, or to protect rights, safety, and security.

E) Business changes

If we are involved in a merger, acquisition, financing, restructuring, or sale of assets, Personal Information may be transferred as part of that transaction, subject to appropriate protections.

8) International Data Processing and Transfers

ApplyAZ operates globally and uses third-party infrastructure and service providers (including large cloud, storage, database, communications, analytics, and security providers). As a result, your Personal Information may be processed and stored in multiple jurisdictions, including jurisdictions outside your country of residence.

Our providers may process and store data across multiple data centers and jurisdictions depending on their architecture, resilience practices, and your access location. We may change or add providers at any time, and processing locations may change accordingly.

Where required by applicable law, we use lawful mechanisms intended to support cross-border processing (for example, contractual protections and other recognized transfer tools). We do not provide legal advice regarding the adequacy of any jurisdiction.

For users in India, we will comply with any India government-notified restrictions or conditions applicable to cross-border transfers, to the extent such requirements apply to our processing.

By using the Platform, you understand that cross-border processing may occur as described here.

9) Data Retention

We retain Personal Information for as long as reasonably necessary for: - providing the Platform and requested services - legal, tax, accounting, and compliance obligations - dispute handling and enforcement - security and fraud prevention

Retention periods vary depending on the purpose and type of data. In practice, certain records may be retained for multi-year periods where needed for tax, audit, dispute handling, security, and fraud prevention, and where required by law.

Where deletion is requested, we will delete or de-identify Personal Information unless we must retain it for legal obligations, security, fraud prevention, dispute handling, or legitimate business purposes.

10) Security and Incident Response

We use reasonable administrative, technical, and organizational safeguards designed to protect Personal Information, including access controls and secure storage practices.

No system is perfectly secure. You are responsible for keeping your login credentials confidential and notifying us of any suspected unauthorized access.

We maintain records of confidentiality incidents and take steps consistent with our incident-response process.

If a security incident affecting Personal Information occurs, we will notify affected individuals and regulators where and to the extent required by applicable law.

11) Your Privacy Rights

Your rights depend on where you live.

A) EU/EEA and similar jurisdictions

You may have rights to access, correct, delete, restrict or object to certain processing, request portability, withdraw consent where processing is based on consent, and lodge a complaint with a regulator.

B) Canada

You may request access to Personal Information we hold about you and request corrections.

C) India (DPDP framework)

You may request access, correction, and deletion consistent with applicable law, and you may raise a grievance using the India Grievance Contact in Section 1.

To make a request, email info@applyaz.com with subject Privacy Request and include the email used on your account. We may need to verify your identity before completing a request.

We may decline, limit, or charge a reasonable fee for requests to the extent permitted by applicable law (for example, where a request is excessive, repetitive, or manifestly unfounded).

12) Cookies, Pixels, Tags, and Similar Technologies

We use cookies and similar technologies (which may include pixels, SDKs, tags, and local storage) for: - operating core site and dashboard functionality - security, fraud prevention, and abuse detection - measuring traffic, usage, and performance - attribution and measurement of marketing campaigns - advertising and retargeting, where enabled

Some of these technologies may be provided by third parties and may collect information about your device and interactions.

Where required by applicable law, non-essential cookies and similar technologies (including advertising and retargeting technologies) are intended to remain disabled unless and until consent is provided through our cookie banner or settings, and you can withdraw consent at any time through the same controls.

If a settings control is not available in a particular context, you can use browser or device controls to limit optional technologies and you may contact us for reasonable guidance.

Disabling certain technologies may limit some Platform features.

13) Marketing Preferences

You may receive service messages that are necessary for your account and case status.

If we send marketing messages, you can opt out using the unsubscribe link or by contacting us. Opting out of marketing does not stop service communications.

14) Call Recordings and Meetings

We may record calls or meetings for quality, training, fraud prevention, and documentation.

Where required by applicable law, we will provide notice and obtain consent before recording. Where permitted by law, your continued participation after notice will be treated as consent to recording.

If you do not consent to recording in a situation where consent is required, you should not participate in a recorded call or you should inform us at the start of the call so we can discuss alternatives where feasible.

15) Children

The Platform is not intended for children.

If we learn that an account involves a minor and applicable law requires guardian involvement, we may request verification of guardian authorization or limit processing until it is provided.

16) Third-Party Websites and Portals

The Platform may link to third-party websites (including university portals). Their privacy practices are governed by their own policies. We are not responsible for third-party privacy practices.

17) Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in law, technology, or operations. We will post the updated version with a new “Last Updated” date. Continued use of the Platform after an update means you accept the revised Privacy Policy.

18) Contact

ApplyAZ Inc.

Email: info@applyaz.com

Subject line for privacy matters: Privacy Request