Privacy Policy
Last updated 16 July 2026
SurgoClub is free to join, and you are not the product — we don't sell your data or run ad trackers. This page sets out exactly what we collect, what other members can see, and what stays private.
1. Who this covers
This policy explains what SurgoClub (“SurgoClub”, “we”, “us”) collects about you, why, and what you can do about it. It covers the SurgoClub website, your account, and the member dashboard.
SurgoClub is operated by Ecosystem Growth Partners Limited, Nairobi, Kenya. You can reach us any time at support@surgoclub.com.
2. What we collect
What you give us. To create an account: your name, email address, phone number, and a password. Your password is handled by our authentication provider and we never see or store it ourselves.
What you choose to add. Your profile is optional beyond the basics: a headline, bio, location, avatar, interests, experience level, and links to your LinkedIn, GitHub or X. You can edit or clear any of these from your profile at any time.
What we capture when you sign up. The IP address your signup request arrives from, and the country and city our hosting provider derives from it. If you arrived through a campaign or partner link, we store the tracking parameters on that link (source, medium, campaign, content, term).
What your use of the platform generates. Which courses you enrol in, which lessons you complete, quiz attempts, the EXP and achievements those earn you, when you were last active, notifications sent to you, and when you click a wallet download link.
Rewards. If you link a Tether wallet to claim a reward, we store that wallet handle, and for each claim we keep a snapshot of the handle, which reward it was for, and its status.
When you write to us or subscribe. The contact form sends us your name, email address and message so we can reply. The newsletter box keeps your email address on our mailing list until you unsubscribe. You don’t need an account for either, and neither is required to use SurgoClub.
3. What other people can see
Some of your profile is public — readable by anyone visiting SurgoClub, signed in or not. Please treat these fields as published:
- Your name, avatar, headline and bio
- Your location, interests and experience level
- Your LinkedIn, GitHub and X links
- Your role and the date you joined
The leaderboard shows your name alongside your completed lessons, achievements and EXP to other members.
These are never public. Your email address, phone number, Tether wallet handle, signup IP address, signup country and city, campaign parameters, and last-active time are restricted at the database level. Only you and our administrators can reach them, and only through access paths that check who is asking.
4. Why we use it
- To run your account — signing you in, verifying your email, letting you reset your password, and saving where you left off.
- To deliver the learning experience — tracking progress, awarding EXP, ranking the leaderboard, and sending notifications.
- To pay out rewards — matching a claim to the wallet handle you linked.
- To keep the platform honest — see fraud prevention below.
- To understand what works — counting signups per campaign or partner so we know which channels reach people. This is aggregate reporting, not profiling of you as an individual.
- To support you — answering you when you write in.
5. Fraud prevention
Because rewards have real value, we check for people farming them with fake accounts. Two things follow from that, and we would rather you hear them here than discover them:
- We compare the address accounts sign up from, and flag accounts that share one with others. A shared address is a signal, not a verdict — offices, universities, campuses and shared mobile networks legitimately produce them, and we do not suspend anyone on that basis alone.
- We check that the email address you sign up with belongs to a domain that can actually receive mail, and we block disposable-email domains. We also run a bot check on the signup form.
If we do act on an account, we keep an internal record of what was done and why. Warnings and suspensions are visible to you.
7. How long we keep it
We keep your account data for as long as your account exists. If you ask us to delete your account, we remove your profile and the records attached to it.
Two things outlive the account by design: records of rewards we actually paid out, which we keep because they are financial records, and moderation records where an account was suspended for abuse, which we keep so a banned account cannot simply be recreated. Both are kept to the minimum needed.
8. How we protect it
Access rules are enforced by the database itself rather than only by the app, so a bug in a page cannot hand out rows it should not. Sensitive columns — your email, phone, wallet handle and signup address — are withheld from the public interface entirely, and reachable only through paths that verify who is asking. Traffic is encrypted in transit.
10. Your rights
You can see and correct most of what we hold from your profile page. For anything else — a copy of your data, deleting your account, or a question about how we have used it — write to support@surgoclub.com and we will respond.
11. Children
SurgoClub is for adults. You must be 18 or over to create an account, and we do not knowingly collect personal information from anyone under 18.
If you believe someone under 18 has created an account, tell us at support@surgoclub.com and we will close it and delete what we hold.
12. Changes to this policy
When we change this policy we will update the date at the top of the page. If a change materially affects how we use your data, we will tell you directly rather than relying on you to notice.