Koralivexum Logo
Koralivexum
E-Commerce SEO Insights

General Data Protection Regulation (GDPR) Compliance

Last Updated: July 29, 2025

Koralivexum ("we," "us," or "our") is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR). This policy explains how we collect, use, store, and protect your personal data in accordance with GDPR requirements.

1. Data Controller Information

Koralivexum acts as the data controller for personal information collected through our educational blog platform. You can contact us regarding data protection matters:

  • Email: support@koralivexum.world
  • WhatsApp: https://wa.me/27670064202
  • Website: koralivexum.world

2. Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: You have given clear consent for us to process your personal data for specific purposes (e.g., newsletter subscriptions, account creation)
  • Contractual Necessity: Processing is necessary to fulfill our service obligations to you
  • Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our services and preventing fraud
  • Legal Obligation: Processing is required to comply with applicable laws and regulations

3. Personal Data We Collect

3.1 Information You Provide Directly

  • Name and contact information (email address, phone number)
  • Account credentials (username, password)
  • Profile information and preferences
  • Communication content (comments, inquiries, support messages)
  • Payment and billing information (when applicable)

3.2 Information Collected Automatically

  • Device and browser information (IP address, browser type, operating system)
  • Usage data (pages visited, time spent, navigation patterns)
  • Cookies and similar tracking technologies
  • Location data (approximate geographic location based on IP address)

4. How We Use Your Personal Data

We use your personal data for the following purposes:

  • Providing and maintaining our educational blog services
  • Creating and managing your account
  • Sending educational content, newsletters, and updates (with your consent)
  • Responding to your inquiries and providing customer support
  • Improving and personalizing your user experience
  • Analyzing usage patterns and optimizing our platform
  • Preventing fraud, abuse, and security threats
  • Complying with legal obligations and enforcing our terms
  • Sending administrative notifications about service changes

5. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law:

  • Active Accounts: Data retained while your account remains active
  • Inactive Accounts: Data deleted or anonymized after 24 months of inactivity
  • Marketing Data: Retained until you withdraw consent or for 36 months, whichever is sooner
  • Legal Requirements: Some data may be retained longer to comply with legal, accounting, or regulatory requirements
  • Backup Systems: Data in backup systems deleted within 90 days following primary deletion

6. Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

6.1 Right to Access

You have the right to request a copy of the personal data we hold about you. We will provide this information in a structured, commonly used, and machine-readable format.

6.2 Right to Rectification

You can request correction of inaccurate or incomplete personal data we hold about you.

6.3 Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data when:

  • The data is no longer necessary for the purposes it was collected
  • You withdraw consent and there is no other legal basis for processing
  • You object to processing and there are no overriding legitimate grounds
  • The data has been unlawfully processed
  • Deletion is required to comply with legal obligations

6.4 Right to Restrict Processing

You can request restriction of processing when:

  • You contest the accuracy of the data
  • Processing is unlawful but you prefer restriction over deletion
  • We no longer need the data but you need it for legal claims
  • You have objected to processing pending verification of our legitimate grounds

6.5 Right to Data Portability

You have the right to receive your personal data in a portable format and transmit it to another controller where technically feasible.

6.6 Right to Object

You can object to processing of your personal data based on legitimate interests or for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests.

6.7 Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.

6.8 Automated Decision-Making and Profiling

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

7. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us at:

  • Email: support@koralivexum.world
  • WhatsApp: https://wa.me/27670064202

We will respond to your request within 30 days. In complex cases, we may extend this period by an additional 60 days and will inform you of such extension.

8. Data Sharing and Transfers

8.1 Third-Party Service Providers

We may share your personal data with trusted third-party service providers who assist us in operating our platform, including:

  • Hosting and infrastructure providers
  • Email and communication services
  • Analytics and performance monitoring tools
  • Payment processors (when applicable)
  • Customer support platforms

These providers are contractually obligated to process data only as instructed and to maintain appropriate security measures.

8.2 International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When such transfers occur, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions recognizing equivalent data protection standards
  • Binding Corporate Rules for transfers within corporate groups

8.3 Legal Disclosure

We may disclose your personal data when required by law, legal process, or to protect our rights, property, or safety, or that of our users or the public.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

  • Encryption of data in transit and at rest
  • Regular security assessments and vulnerability testing
  • Access controls and authentication mechanisms
  • Employee training on data protection practices
  • Incident response and breach notification procedures
  • Regular backup and disaster recovery protocols

10. Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will:

  • Notify the relevant supervisory authority within 72 hours of becoming aware of the breach
  • Inform affected individuals without undue delay if the breach poses a high risk
  • Provide clear information about the nature of the breach, likely consequences, and measures taken
  • Document all breaches, including facts, effects, and remedial actions

11. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete such information promptly.

12. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. You can manage cookie preferences through your browser settings. For detailed information, please refer to our Cookie Policy.

Types of cookies we use:

  • Essential Cookies: Required for basic site functionality
  • Performance Cookies: Help us understand how visitors use our site
  • Functional Cookies: Remember your preferences and settings
  • Marketing Cookies: Track your activity for targeted advertising (with consent)

13. Data Protection Officer

You may contact our Data Protection Officer regarding any questions or concerns about our data processing practices:

  • Email: support@koralivexum.world

14. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your habitual residence, place of work, or place of alleged infringement, if you believe our processing of your personal data violates GDPR.

15. Changes to This Policy

We may update this GDPR policy periodically to reflect changes in our practices, legal requirements, or operational needs. We will notify you of material changes by:

  • Posting the updated policy on our website with a revised "Last Updated" date
  • Sending email notifications for significant changes (if you have an account)
  • Requiring renewed consent where legally required

Continued use of our services after changes become effective constitutes acceptance of the updated policy.

16. Contact Information

For any questions, concerns, or requests regarding this GDPR policy or our data processing practices, please contact us:

  • Company: Koralivexum
  • Email: support@koralivexum.world
  • WhatsApp: https://wa.me/27670064202
  • Website: koralivexum.world

This GDPR policy is designed to comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016. We are committed to transparency and protecting your privacy rights under applicable data protection laws.