Privacy Policy

Version 1.0 | Effective Date: April 13, 2026

Cobert Safety Professionals LLC, doing business as California Safe Driver, operates the website californiasafedriver.com and its subdomains. This Privacy Policy describes what information we collect, how we use it, who can access it and how you can contact us with questions.

Information We Collect

Information You Provide

When you create an account or enroll in a course, we collect:

• Account information: name (first, middle, last), email address, password, phone number and date of birth
• Mailing address: street address, city, state and ZIP code (used to mail your student workbook and certificate of completion)
• Enrollment information: which course you selected, reason for enrollment and referring court name if applicable
• Accessibility requests: if you request an accommodation under the Americans with Disabilities Act (ADA), we collect the details you provide so our instructors and staff can arrange appropriate accommodations
• Payment information: billing name and address. Your credit or debit card number is entered directly on Authorize.net's secure payment page and never reaches our server. We store a tokenized reference to your payment method (not your card number) so our team can process refunds or adjustments without asking you to re-enter your card.
• Contact form submissions: name, email and message content when you use our Contact Us form

Information Collected Automatically

When you visit our website, we automatically collect:

• Device and browsing data: IP address, browser type, referring website, pages visited and time spent on each page
• Cookies: small text files stored on your device. See the Cookies section below for details.
• Payment verification data: for each payment transaction, we record your IP address, the address verification result and the last four digits of your card number. This information helps us prevent fraud and resolve payment disputes.

How We Use Your Information

We use the information we collect to:

• Process your course enrollment and payment
• Mail your student workbook and certificate of completion
• Send you emails about your enrollment (confirmation, class reminders, shipping notifications)
• Provide ADA accommodations you have requested
• Allow court, probation and law enforcement professionals to verify student completion status through our Court Staff Portal
• Improve our website and services
• Comply with legal obligations
• Prevent fraud and protect against chargebacks

We do not use your information for marketing purposes. We do not send promotional emails.

Who Can Access Your Information

Our Staff and Instructors

Our administrative staff and course instructors have access to student information needed to operate our programs, including your name, enrollment details, mailing information and any ADA accommodation requests. We are a small organization and our staff members are trained to handle student information responsibly.

Third-Party Services

We use the following services to operate our website and programs. Each service receives only the data necessary for its function:

• Authorize.net – payment processing (billing name, address and card data entered on their secure page)
• Postmark – email delivery (email address and email content)
• Cloudflare – website security and performance (IP address and request data)
• Google Analytics (GA4) – website usage analytics (IP address and browsing behavior)
• Google Ads – conversion tracking (enrollment completion events, no personal details)
• Zoom – virtual classroom (name and email for meeting access)
• Pitney Bowes – shipping labels and tracking (name and mailing address)

National Safety Council (NSC) Streaming Courses

Some of our courses (DDC-4, TDIC and 20-minute modules) are delivered through the National Safety Council's online platform. When you enroll in one of these courses, you are redirected to the NSC website to complete the course. The NSC has its own privacy policy that governs the information they collect. We encourage you to review it before enrolling.

Court Staff Portal

Court, probation and law enforcement professionals may use our Court Staff Portal to look up student completion status by name and date of birth. The portal shows enrollment status, class date, completion status and whether a certificate has been mailed. It does not show financial information, mailing addresses or ADA accommodation details.

Legal Requirements

We may disclose your information if required by law, court order or legal process.

Cookies

We use cookies for the following purposes:

• sessionid – keeps you logged in (browser session, required)
• csrftoken – security protection against cross-site attacks (browser session, required)
• django_language – remembers your language preference (1 year, required)
• csd_cookie_consent – remembers your cookie consent choice (1 year, required)
• Google Analytics – website usage analytics (up to 2 years, optional)

When you first visit our site, a consent banner asks whether you accept optional cookies. If you decline, analytics cookies are not set. You can also disable cookies in your browser settings at any time.

Data Retention

• Student accounts and enrollment records: retained long-term for certificate verification, compliance and historical reference
• Payment records: retained as required by applicable tax and financial regulations
• Website browsing data and analytics: retained per Google Analytics default settings (14 months)
• Contact form submissions: retained for as long as needed to respond and for our records

Children's Privacy

Our courses serve students ages 16 and older. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will delete it.

Your Rights Under California Law

Under the California Online Privacy Protection Act (CalOPPA), you have the right to:

• Know what personal information we collect about you
• Request that we delete your personal information (subject to legal retention requirements)
• Know that we do not sell your personal information to anyone, for any reason

We do not sell, rent or trade your personal information.

Text Messages

We may send you text messages related to your course enrollment, such as class schedule changes or last-minute cancellations. We will not send promotional text messages. You may opt out of text messages at any time by replying STOP.

Security

We take reasonable measures to protect your information, including:

• Credit card data is processed on Authorize.net's PCI-certified secure servers and never stored on our systems
• Our website uses HTTPS encryption for all pages
• Database access is restricted to authorized personnel
• Payment verification (address matching and IP logging) helps prevent unauthorized transactions

No method of transmission over the Internet is completely secure. We cannot guarantee absolute security, but we work to protect your information using industry-standard practices.

Zoom Integration Data

California Safe Driver uses the Zoom API so our scheduling staff can create, update and delete Zoom meetings on behalf of instructors who have authorized our CSD-oauth app in the Zoom Marketplace. The instructor remains the host of every meeting we create.

Scopes We Request

When an instructor connects their Zoom account, we request only the scopes required to manage classroom meetings on their behalf:

• user:read:user – read the instructor's basic Zoom profile (user ID, email, display name and plan type) so we can confirm the correct account is linked
• meeting:write:meeting – create new Zoom meetings on the instructor's account for scheduled classes
• meeting:read:meeting – read meeting details we previously created (meeting ID, join URL, start time) so we can email them to enrolled students
• meeting:update:meeting – update meeting details when a class is rescheduled
• meeting:delete:meeting – delete a meeting when a class is cancelled

Data We Store From Zoom

• The instructor's Zoom user ID (a random Zoom-assigned string)
• The instructor's Zoom login email and display name (so we can confirm the correct account is linked)
• The instructor's Zoom plan type (1 = Basic, 2 = Licensed, 3 = On-Prem), used to display a 40-minute meeting-cap warning when a Basic account is linked
• OAuth access token and refresh token, encrypted at rest using Fernet (AES-128-CBC with HMAC-SHA256 authentication) via django-cryptography. The encryption key is held separately from the database and is rotated independently.
• For each meeting we create on the instructor's behalf: the Zoom meeting ID and join URL, so we can email them to enrolled students

Data We Do Not Store

Our CSD-oauth Zoom Marketplace app does not subscribe to recording, meeting-started, meeting-ended or participant-joined events. We do not store:

• Meeting passwords
• Meeting recordings
• Chat messages
• Participant lists
• Meeting-in-progress data

Transmission Security

All traffic between California Safe Driver and Zoom uses TLS 1.2 or higher. Incoming Zoom webhooks are verified using HMAC-SHA256 against a Secret Token known only to Zoom and our servers. Any webhook that fails signature verification is rejected.

Retention and Deletion on Deauthorization

Stored Zoom tokens persist only while the instructor keeps the integration connected. When the instructor removes our app from their Zoom account, Zoom sends an app_deauthorized webhook to our servers and we delete the stored tokens within seconds. After deauthorization, we can no longer create, update or delete meetings on that instructor's account. Any meetings we already created on the instructor's account remain on their Zoom account until the instructor deletes them there.

Third-Party Sharing

California Safe Driver does not share instructor Zoom data with any third party. Zoom data never leaves California Safe Driver servers.

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated version number and effective date. We encourage you to review this page periodically.

Contact Us

If you have questions about this Privacy Policy or your personal information, please contact us:

California Safe Driver
(a service of Cobert Safety Professionals LLC)
2108 N ST #10819
Sacramento, CA 95816

Email: info@californiasafedriver.com
Phone: 1-877-525-DRIVE (3748)
Office Hours: Monday through Friday, 9:00 AM to 5:00 PM Pacific Time