Kuinji Logo
🔒Compliance

GDPR Compliance

Last updated: April 10, 2025

Introduction

At Kuinji, we are committed to protecting the privacy and security of your personal data. This GDPR Compliance Statement explains how we collect, use, and protect your personal information in accordance with the General Data Protection Regulation (GDPR).

Data Controller

Kuinji Ltd. is the data controller for the personal information we process. We are responsible for determining the purposes and means of processing personal data in compliance with the GDPR.

Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity Data: including first name, last name, title, and company position.
  • Contact Data: including email address, telephone numbers, and business address.
  • Technical Data: including internet protocol (IP) address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.
  • Usage Data: including information about how you use our website, products, and services.
  • Marketing and Communications Data: including your preferences in receiving marketing from us and our third parties and your communication preferences.

Legal Basis for Processing

We process your personal data on the following legal bases:

  • Consent: Where you have given us explicit consent to process your personal data for a specific purpose.
  • Contract: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.

Your Rights Under GDPR

Under the GDPR, you have the following rights:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
  • Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organisation, or directly to you, under certain conditions.

Data Security

We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data where appropriate
  • Regular testing, assessing, and evaluating the effectiveness of our security measures
  • Ensuring the ongoing confidentiality, integrity, availability, and resilience of processing systems
  • Procedures for restoring access to personal data in a timely manner in the event of a physical or technical incident

International Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA). Whenever we transfer your personal data outside the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
  • Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
  • Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.

Data Retention

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the details set out below:

Email: [email protected]
Postal address: Kuinji Ltd., 123 Business Street, London, UK, EC1A 1AA

Complaints

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

Changes to This GDPR Compliance Statement

We may update this GDPR Compliance Statement from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this GDPR Compliance Statement periodically to stay informed about how we are protecting your personal data.