9.0 Niner Online Review

Legal

Privacy Policy

Your privacy matters to us. This policy explains, in plain English, what information 9.0 Niner Online Review collects, how we use it, who helps us process it, and the choices and rights you have. Last updated June 2026.

Overview

Who we are

9.0 Niner Online Review (“9.0 Niner,” “we,” “us,” or “our”) provides IELTS, OET, and PTE review courses, live and recorded lessons, mock exams, and one-on-one coaching through this online platform.

We collect only the information we need to run your courses and coaching, we are transparent about the trusted service providers who help us, and we protect your data with modern security practices. This policy is written to comply with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173).

What we collect

Information you share with us

We collect the following so we can enroll you, deliver your courses, and support your exam preparation.

Account information

Your name, email address, and the password you use to sign in. This lets us create your account, secure it, and send you essential service messages such as registration confirmations and progress updates.

Enrollment & proof of payment

The course or package you enrolled in, your enrollment status, and any receipt, deposit slip, or screenshot you upload as proof of payment so our team can verify and activate your access.

ID photo

A photo you provide for your digital ID card and for verifying your identity at exams and live sessions. We use it only for these purposes and do not share it for marketing.

Learning progress

Which lessons and videos you have viewed, your quiz results, and how far you have moved through a course. This powers your dashboard and helps your coaches support you.

Coaching bookings

The coaching sessions you book, the times you choose, and the notes needed to run your one-on-one sessions over Google Meet.

Basic technical data

Standard information your browser sends — such as device type and IP address — used to keep your session secure and to keep the platform running reliably.

How we use it

Why we process your data

We use your information only for the purposes below, and never sell your personal data.

  • To create and secure your account and let you sign in.
  • To verify your payment and activate or renew your enrollment.
  • To deliver your courses, videos, quizzes, and learning materials.
  • To track your learning progress and show it back to you on your dashboard.
  • To schedule and run your one-on-one coaching sessions.
  • To issue your digital ID card and verify your identity where required.
  • To send you essential service emails about your account, enrollment, and progress.
  • To respond to your questions and provide support.
  • To protect the platform against fraud, abuse, and unauthorized access.

Built to keep your data safe

Encryption in transit, strict per-learner access controls, and signed links for your videos and files — security is designed into the platform, not bolted on.

Service providers

Who helps us process your data

We rely on a small set of trusted providers to run the platform. Each only processes the data needed to deliver its service, under its own security and privacy commitments.

Supabase (Postgres, Auth & Storage)

Hosts our database, handles sign-in, and stores uploaded files such as proof of payment and ID photos. Access is enforced with row-level security so each learner can only reach their own records.

Bunny Stream

Delivers our course videos quickly and reliably. Video access is served through short-lived signed links rather than public URLs.

Google Workspace (Gmail API & Google Meet)

Sends our account and service emails and hosts your one-on-one coaching sessions over Google Meet.

PayMongo

Processes online payments securely. Card and payment details are handled by PayMongo under their own security standards; we do not store your full card numbers.

Security

How we protect your information

We take reasonable and appropriate organizational, physical, and technical measures to protect your data.

  • All traffic between you and our platform is encrypted in transit using TLS (HTTPS).
  • Row-level security in our database ensures you can only access your own data.
  • Course videos and uploaded files are served through short-lived signed URLs, not open public links.
  • We follow least-privilege access: staff and services only receive the minimum access needed to do their job.
  • Payments are processed by PayMongo; we do not store your full card details.

No method of transmission or storage is ever completely secure, but we work continuously to safeguard your data and to limit who can access it.

Cookies & sessions

Cookies and your login session

We use cookies that are essential to the platform — primarily a secure session cookie that keeps you signed in as you move between pages. Without it, you would not be able to stay logged in.

These cookies are not used to sell your data or to build advertising profiles. Most browsers let you manage or clear cookies, though disabling essential cookies may prevent you from signing in.

Data retention

How long we keep your data

We keep your personal data for as long as your account is active and for as long as needed to provide your courses and coaching. We also retain certain records, such as proof of payment, for the period required by tax, accounting, and legal obligations.

When your data is no longer needed, we securely delete or anonymize it. You may ask us to delete your data sooner, as described below, subject to any records we are legally required to keep.

Your rights

Your rights under the Data Privacy Act

Under Republic Act No. 10173, you have the right to:

  • Be informed about how your personal data is collected and used.
  • Access the personal data we hold about you.
  • Request correction of inaccurate or outdated information.
  • Request deletion or blocking of your data, subject to our legal and operational obligations.
  • Object to certain processing and withdraw consent where it applies.
  • Lodge a complaint with the National Privacy Commission.

To exercise any of these rights — including requesting access to or deletion of your data — email us at help@nineronlinereview.com. We will verify your identity and respond within a reasonable time.

Compliance

Philippine Data Privacy Act

9.0 Niner Online Review is committed to handling your personal data in accordance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173), its Implementing Rules and Regulations, and the issuances of the National Privacy Commission. We process your data lawfully, fairly, and only for the legitimate purposes described in this policy.

Updates

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or the law. When we do, we will revise the “last updated” date above. We encourage you to review this page periodically.

Questions

Have questions about your privacy?

We’re happy to help. Reach our team about anything in this policy, or to make a data request.

Email help@nineronlinereview.com Contact Us

This policy was reviewed by counsel before launch.