CPR training updated for 2025 AHA Guidelines. Save 25% with CPR25 code. Limited-time offer.
    Pulse Medical Certification Logo

    Privacy Policy

    Last updated: May 28, 2026

    Pulse Medical Certification ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy is issued by Pulse Medical Certification LLC, a Delaware limited liability company with a registered address at 1111B S Governors Ave #57746, Dover, DE 19904, USA. It explains how we collect, use, share, and safeguard your information when you use our website at pulsemedcert.com and our services. It also describes the rights available to residents of the European Union, United Kingdom, California, and other jurisdictions with applicable privacy laws.

    1. Information We Collect

    Information You Provide

    • Account Information: Name, email address, and password when you create an account.
    • Professional Information: Employer name and license number (optional), used for certificate generation.
    • Payment Information: Payment details are processed by our e-commerce partner (Shopify) and are never stored on our servers.

    Information Collected Automatically

    • Usage Data: Pages visited, course progress, exam results, and interaction patterns.
    • Device Information: Browser type, operating system, and IP address.

    2. How We Use Your Information

    • To provide and manage your course access and certifications.
    • To generate and deliver certificates with your name and credentials.
    • To send transactional emails (account setup, certificates, order confirmations).
    • To enable certificate verification by third parties using your credential ID.
    • To measure marketing performance and conversions.
    • To improve our courses and user experience.
    • To respond to support requests.
    • To comply with legal, tax, and accounting obligations.

    3. Certificate Verification

    When a certificate is issued, the following information is made publicly verifiable through our credential verification system: your full name, the course title, the date of issuance, the expiration date, and the credential ID. This allows employers and institutions to confirm the validity of your certification.

    4. Information Sharing & Subprocessors

    We do not sell your personal information for money. We share limited data with the following categories of recipients:

    • Subprocessors: See Section 5 for the list of vendors that process data on our behalf.
    • Legal Requirements: When required by law, regulation, subpoena, or legal process, or to protect our rights or the safety of others.
    • Business Transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred, subject to the protections of this policy.

    5. Subprocessors

    We rely on the following service providers to operate our platform. Each is contractually bound to protect your information:

    • Shopify — checkout and payment processing.
    • Resend — transactional email delivery (welcome emails, magic links, certificates, order confirmations).
    • Google (Analytics & Ads) — analytics, conversion tracking, and advertising performance measurement.
    • Cloud hosting & database providers — for application hosting, database, authentication, and file storage (hosted in the United States).

    6. Cookies & Tracking Technologies

    We use the following categories of cookies and similar technologies:

    • Essential cookies: Required for session management, authentication, shopping cart, and security. These cannot be disabled.
    • Analytics: We use Google Analytics 4 (deployed via Google Tag Manager) to measure page views, course progress events, and conversion events.
    • Advertising & conversion tracking: We use Google Ads conversion tracking, fired through the Shopify Google & YouTube sales channel on checkout completion. First-party identifiers such as _ga, _gcl_aw, and _gclid persist across pulsemedcert.com and our Shopify-hosted checkout to attribute conversions.

    You can opt out of Google Analytics via the Google Analytics opt-out browser add-on and manage Google Ads personalization at Google Ads Settings. You may also block or delete cookies through your browser settings.

    7. International Data Transfers

    Our services are operated from the United States, and your data is processed there. If you access our services from the European Union, United Kingdom, or another region with data-protection laws, your information will be transferred to and processed in the United States. For such transfers, we and our subprocessors rely on appropriate safeguards, including the European Commission's Standard Contractual Clauses (SCCs) or equivalent mechanisms.

    8. Data Security

    We implement industry-standard security measures to protect your data, including encrypted connections (HTTPS), secure authentication, row-level access controls, and least-privilege internal access. However, no method of electronic transmission or storage is 100% secure.

    9. Data Retention

    • Account & profile data: retained while your account is active, plus up to 24 months after your last activity.
    • Certificate records (name, course, credential ID, issuance and expiration dates): retained indefinitely to support third-party verification, which is a core service function.
    • Order and payment records: retained for 7 years to comply with tax and accounting obligations.
    • Analytics data: retained per Google Analytics retention settings (currently 14 months by default).

    10. Your Privacy Rights

    General Rights

    Depending on your jurisdiction, you may have the right to:

    • Access the personal information we hold about you.
    • Request correction of inaccurate information.
    • Request deletion of your account and associated data.
    • Request portability of your data.
    • Object to or restrict certain processing.
    • Opt out of non-essential communications.

    To exercise any right, email support@pulsemedcert.com with the subject "Privacy Request". Note that certificate records may be retained in an anonymized form to preserve the integrity of the public verification system.

    EU / UK / EEA Residents (GDPR)

    If you are located in the European Economic Area, United Kingdom, or Switzerland, the controller of your personal data is Pulse Medical Certification LLC, 1111B S Governors Ave #57746, Dover, DE 19904, USA. We process your personal data on the following legal bases:

    • Contract — to deliver the courses, certifications, and account services you purchase.
    • Legitimate interest — to secure our platform, prevent fraud, and measure aggregate usage.
    • Consent — for non-essential marketing and advertising cookies (where required).
    • Legal obligation — to meet tax, accounting, and record-keeping requirements.

    You have the right to lodge a complaint with your local supervisory authority if you believe we have not handled your data lawfully.

    California Residents (CCPA / CPRA)

    In the past 12 months, we have collected the following categories of personal information: identifiers (name, email, IP address), commercial information (purchases), internet/network activity (usage and analytics data), and professional information (employer, license number — if you choose to provide it).

    You have the right to:

    • Know what personal information we collect, use, and disclose.
    • Request deletion or correction of your personal information.
    • Opt out of the "sale" or "sharing" of your personal information for cross-context behavioral advertising.
    • Limit the use of sensitive personal information.
    • Be free from discrimination for exercising these rights.

    "Do Not Sell or Share My Personal Information". We do not sell personal information for money. However, our use of Google Ads conversion and remarketing tags may qualify as "sharing" under the California Privacy Rights Act (CPRA). To opt out, email support@pulsemedcert.com with the subject "Do Not Share" or disable advertising cookies via your browser and Google Ads Settings.

    11. Children's Privacy

    Our services are intended for individuals 18 years of age or older. We do not knowingly collect information from children under 18.

    12. Changes to This Policy

    We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date.

    13. Contact Us

    For privacy questions or to exercise any of your rights, please contact us at support@pulsemedcert.com with the subject "Privacy Request", or by mail at:

    Pulse Medical Certification LLC
    1111B S Governors Ave #57746
    Dover, DE 19904
    USA