Privacy Policy
MSMGrad is a digital education platform owned and operated by M Square Business Solutions Inc., a corporation incorporated under the laws of British Columbia, Canada, with its registered office at 1631 Dickson Avenue, Suite 1100, Kelowna, BC, Canada V1Y 0B5 (“MSMGrad”, “we”, “us”, or “our”).
MSMGrad forms part of the Laul Global education and technology ecosystem and may leverage technology infrastructure and affiliated platforms, including MSM Unify, for digital service delivery.
We are committed to protecting the privacy and security of personal information of our users, learners, faculty members, institutional partners, and visitors (“you” or “User”).
This Privacy Policy explains how we collect, use, disclose, process, store, and safeguard your personal information when you access our website, enroll in our programs, or interact with our services.
By using MSMGrad’s website or services, you acknowledge and agree to the practices described in this Policy.
This Policy applies when you:
- Access or browse our website or digital platforms
- Register for or enrol in academic or certification programs
- Participate in webinars, counseling sessions, or assessments
- Interact with customer support or partner-integrated services
This Policy does not apply to:
- Third-party websites or platforms linked from MSMGrad
- Independent academic institutions or certification bodies acting as separate data controllers
M Square Business Solutions Inc. complies with:
- The Personal Information Protection and Electronic Documents Act (PIPEDA) (Canada)
- Applicable provincial privacy laws in Canada
- International data protection laws where applicable, including GDPR (where relevant to users located in the European Economic Area)
Where required by local laws, additional rights and protections may apply.
For purposes of this Policy:
- “Personal Information” means information about an identifiable individual, including but not limited to name, contact information, identification numbers, academic records, IP address, device identifiers, and online activity data.
- “Processing” means any operation performed on Personal Information, including collection, use, storage, disclosure, transfer, or deletion.
- “Data Controller” means the entity determining the purposes and means of processing personal information. For the purposes of this Policy, M Square Business Solutions Inc. acts as the Data Controller unless otherwise specified.
- “Consent” means voluntary agreement to the collection and processing of personal information for specified purposes.
We collect the following categories of information to provide and enhance our services:
a) Personal Information
- Full name, gender, date of birth
- Email address, phone number, postal address, identity proof
- Government-issued identification (where required for admission)
- Academic records and certifications
- Employment history (for executive programs)
- Nationality, visa status
b)Technical andUsage Information
We automatically collect certain technical and usage-related information when you access our website or digital platforms, including:
- IP address and approximate geographic location (derived from IP)
- Browser type, device type, and operating system version
- Device identifiers and session information
- Pages visited, time spent on pages, clickstream activity, and referral URLs
- Log data relating to system interactions and performance
This information is collected through cookies, analytics tools, and similar technologies to improve platform functionality, security, and user experience.
c) Financialand Transactional Information
Where you enroll in paid programs, we may collect:
- Payment details processed through secure third-party payment gateways (e.g., card information, digital wallet details)
- Billing address and transaction history
- Invoices, receipts, and tax-related records (where applicable under relevant laws)
MSMGrad does not store full payment card details on its servers unless expressly stated and secured in accordance with industry standards.
d) Communicationand SupportRecords
We may collect and retain:
- Email, chat, and customer support correspondence
- Call recordings (where legally permitted and disclosed)
- Feedback submissions, surveys, and testimonials
- Records of inquiries, complaints, or dispute resolution interactions
We collect and process personal information only for legitimate business purposes, including:
- Processing admissions, enrollments, and certification issuance
- Delivering educational content, digital services, and academic tracking
- Verifying eligibility, identity, and compliance requirements
- Communicating program updates, deadlines, and administrative notifications
- Enhancing platform performance, analytics, and user experience
- Providing academic guidance, mentoring, and career support services
- Ensuring platform security, fraud prevention, and system integrity
- Complying with applicable legal, regulatory, tax, and accreditation obligations
Where required by law, processing is based on your consent, contractual necessity, legitimate business interests, or compliance with legal obligations.
We disclose personal information only where necessary for legitimate operational, contractual, or legal purposes. We do not sell, rent, or trade personal information to third parties for commercial gain.
Personal information may be shared in the following circumstances:
a) Academic & Certification Partners
We may share relevant personal information with accredited academic institutions, certification bodies, or educational partners:
- For admissions processing, program delivery, assessments, mentorship, and academic evaluation
- For issuance of transcripts, certificates, diplomas, or degree documentation
- For compliance with accreditation or regulatory requirements
Such entities may act as independent data controllers in relation to academic records under applicable laws.
b) Service Providers & Technology Vendors
We may engage trusted third-party service providers to support platform operations, including:
- Learning Management Systems (LMS)
- Cloud hosting and storage providers
- Analytics and assessment platforms
- Payment processors and financial service providers
- Communication and customer engagement tools
These providers act as data processors and are contractually bound through data processing agreements to:
- Process data only on our documented instructions
- Maintain confidentiality
- Implement appropriate technical and organizational security measures
- Comply with applicable privacy laws
c) Career & Placement Facilitation
With your explicit consent, we may share limited personal information with employers, recruiters, or placement partners for the purpose of:
- Internship facilitation
- Interview coordination
- Employment opportunities
- Career networking initiatives
You may withdraw such consent at any time.
d) Legal & Regulatory Authorities
We may disclose personal information:
- To comply with applicable laws, court orders, regulatory directives, or lawful government requests
- To protect our legal rights, enforce agreements, or defend against legal claims
- To prevent fraud, misuse, or threats to platform security
e) Corporate Transactions
In the event of a merger, acquisition, restructuring, financing transaction, or sale of assets, personal information may be transferred as part of the business transaction, subject to appropriate confidentiality safeguards.
MSMGrad uses cookies and similar tracking technologies to enhance user experience, improve platform functionality, analyze usage patterns, and support security measures.
Cookies are small text files stored on your device when you access our website.
We use the following categories of cookies:
a) Essential Cookies
These cookies are necessary for the operation of the website and enable core functionalities such as:
- Secure login and session management
- Platform navigation and access to protected areas
- Fraud prevention and system security
Essential cookies cannot be disabled through our systems.
b) Performance & Analytics Cookies
These cookies collect aggregated and anonymized information about how users interact with the website, including:
- Pages visited
- Time spent on pages
- Device and browser characteristics
This helps us improve performance, content structure, and user experience.
Examples may include analytics tools such as Google Analytics or equivalent services.
c) Functional Cookies
These cookies enable enhanced functionality and personalization, such as remembering preferences and regional settings.
d) Marketing & Advertising Cookies
Where applicable, marketing cookies may be used to deliver relevant promotional content or measure campaign effectiveness. These cookies are deployed only with your prior consent, where required by applicable law.
e) Managing Cookie Preferences
You may manage or disable cookies through:
- Your browser settings
- Our cookie consent banner (where applicable)
Please note that disabling essential cookies may affect the functionality and accessibility of certain features of the platform.
We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, including to:
- Provide academic programs, certifications, and related services
- Maintain student records and verification documentation
- Comply with legal, tax, accounting, and regulatory obligations
- Resolve disputes, enforce agreements, and protect legal rights
- Support alumni services and certification verification processes
Retention periods may vary depending on the nature of the data and applicable legal requirements. For example:
- Academic records and certification data may be retained for extended periods to enable transcript validation and accreditation compliance.
- Financial and transactional records may be retained in accordance with applicable tax and accounting laws.
- Technical and analytics data may be retained for shorter periods, subject to operational necessity.
Where personal information is no longer required for the stated purposes, we will:
- Securely delete it,
- Anonymize it, or
- Archive it in restricted-access systems,
in accordance with industry-standard security protocols and applicable data protection laws.
MSMGrad implements appropriate technical, administrative, and organizational safeguards designed to protect personal information against unauthorized access, disclosure, alteration, loss, or misuse.
Our security framework includes, but is not limited to:
- Encryption of data in transit using industry-standard protocols (e.g., SSL/TLS)
- Secure payment processing through compliant third-party payment gateways
- Role-based access controls and least-privilege authorization policies
- Multi-factor authentication for administrative access
- Network firewalls and intrusion detection/prevention systems
- Regular vulnerability assessments, penetration testing, and security audits
- Secure cloud hosting environments with monitored infrastructure
- Confidentiality obligations for employees, contractors, and service providers
We require third-party service providers processing personal information on our behalf to implement comparable security standards through contractual safeguards.
Despite reasonable safeguards, no method of electronic transmission or storage is completely secure. While we strive to protect personal information, we cannot guarantee absolute security.
In the event of a security incident involving personal information, we will assess the risk and, where required by applicable law, notify affected individuals and relevant regulatory authorities within the timelines prescribed by law.
We will take appropriate remedial steps to mitigate the impact of any such incident.
Subject to applicable data protection laws, you may have the following rights regarding your personal information:
- Right of Access – To request confirmation of whether we process your personal information and obtain a copy of such information.
- Right to Correction – To request correction or updating of inaccurate or incomplete personal information.
- Right to Deletion – To request deletion of personal information where it is no longer necessary for the purposes collected, subject to academic, contractual, legal, or regulatory retention requirements.
- Right to Withdraw Consent – Where processing is based on consent, you may withdraw your consent at any time.
- Right to Object or Restrict Processing – Where permitted by law, you may request restriction or object to certain types of processing.
- Right to Opt-Out of Marketing Communications – You may unsubscribe from promotional communications at any time using the unsubscribe link or by contacting us directly.
Certain rights may be limited where processing is required:
- To comply with legal or regulatory obligations
- To maintain academic records and certification integrity
- To establish, exercise, or defend legal claims
Exercising Your Rights
To submit a privacy rights request, please contact:
Email: [email protected]
We may require reasonable verification of your identity before responding to your request to protect your information from unauthorized access.
We will respond within timelines prescribed under applicable privacy laws.
MSMGrad’s services are intended for individuals who are at least 16 years of age, or the minimum age required under applicable local laws to provide valid consent for data processing.
We do not knowingly collect personal information from children below the applicable age threshold without verifiable parental or legal guardian consent.
If we become aware that personal information has been collected from a child without appropriate consent, we will take reasonable steps to delete such information promptly.
Parents or legal guardians who believe that a child has provided personal information without consent may contact us at [email protected] to request review or deletion.
As MSMGrad operates globally, personal information may be transferred to, stored in, or processed in jurisdictions outside your country of residence, including Canada, India, or other countries where our affiliates, academic partners, or service providers operate.
- Where such cross-border transfers occur, we implement appropriate safeguards consistent with applicable data protection laws, including:
- Contractual data protection clauses (such as Standard Contractual Clauses, where applicable)
- Data Processing Agreements with service providers
- Security and confidentiality obligations
- Risk-based transfer assessments where required
By using our services, you acknowledge that your personal information may be transferred internationally in accordance with this Policy and applicable legal safeguards.
For any privacy-related grievances, please reach out to:
Data Protection Officer
MSMGrad (A division of Laul Global)
Corporate Office:
1631 Dickson Avenue, Suite 1100, Kelowna, BC, Canada V1Y 0B5
Email: [email protected]
Phone: +1 250 262 6686
This Policy is governed by the laws of British Columbia, Canada, and subject to the exclusive jurisdiction of the courts at British Columbia, Canada
This Privacy Policy may be updated periodically. All updates will be notified on the website and take effect immediately upon publication.
Your continued use of MSMGrad implies your acceptance of the revised policy.
