Privacy Policy
Last Updated: December 22, 2024
Introduction
Kvantuus ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, process, and protect your personal data when you access our AI learning platform, membership services, and related content. This policy is designed to comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Controller Information
Kvantuus is the data controller for the purposes of the General Data Protection Regulation (GDPR).
Contact: [email protected]
Registered Office: Tallinn, Estonia
Information We Collect
We may collect and process the following types of personal data:
- Contact Information: Name and email address provided through our contact form
- Account Information: Name, email address, and other information provided when creating a membership account
- Membership Information: Details about your selected membership plan, payment information, and subscription status
- Communications: Messages and correspondence sent to us
- Usage Data: Information about how you interact with our website and services, including access times, browser type, and navigation paths
How We Collect Information
We collect personal data in the following ways:
- Directly from you when you voluntarily provide information through our contact form
- When you create an account and provide information for membership access
- When you subscribe to our membership plans and provide payment information
- Through your interactions with our website and services, including usage data
Purposes and Legal Basis for Processing
We process your personal data for the following purposes, with the corresponding legal basis:
- To provide and maintain our services: Processing is necessary for the performance of a contract or to take steps at your request prior to entering into a contract (GDPR Article 6(1)(b))
- To manage your membership account: Processing is necessary for the performance of a contract (GDPR Article 6(1)(b))
- To process payments for membership: Processing is necessary for the performance of a contract (GDPR Article 6(1)(b))
- To communicate with you: Processing is necessary for the performance of a contract or to take steps at your request prior to entering into a contract (GDPR Article 6(1)(b))
- For legitimate business interests: Processing is necessary for the purposes of legitimate interests pursued by us, such as improving our services and website functionality, and understanding how our services are used (GDPR Article 6(1)(f))
- To comply with legal obligations: Processing is necessary for compliance with a legal obligation to which we are subject (GDPR Article 6(1)(c))
- With your consent: Where we have obtained your consent for specific processing activities (GDPR Article 6(1)(a))
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.
Contact form data is retained for a period of 2 years from the date of submission unless a longer retention period is required by law.
Membership account data is retained for as long as your account remains active. After account termination, we retain certain information as necessary for legitimate business interests, legal obligations, and dispute resolution.
Data Sharing and Disclosure
We may share your personal data with:
- Service Providers: Third-party service providers who assist us in operating our website, conducting business, or serving our users, under confidentiality agreements
- Legal Requirements: When required by law or to protect our rights, privacy, safety, or property, or that of others
We do not sell, trade, or otherwise transfer your personal data to outside parties for marketing purposes.
International Data Transfers
Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction. However, we ensure that appropriate safeguards are in place to protect your personal data in accordance with applicable data protection laws.
Your Rights Under GDPR
Under the GDPR, you have the following rights regarding your personal data:
- Right of Access: You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data
- Right to Rectification: You have the right to obtain rectification of inaccurate personal data
- Right to Erasure ("Right to be Forgotten"): You have the right to obtain erasure of personal data in certain circumstances
- Right to Restrict Processing: You have the right to obtain restriction of processing in certain circumstances
- Right to Data Portability: You have the right to receive the personal data concerning you in a structured, commonly used, and machine-readable format
- Right to Object: You have the right to object to processing based on legitimate interests or the performance of a task in the public interest
- Rights Related to Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing
Exercising Your Rights
To exercise any of your rights under the GDPR, please contact us at [email protected]. We will respond to your request within one month of receiving it. This period may be extended by two months where necessary, taking into account the complexity and number of the requests. We will inform you of any such extension within one month of receiving your request.
Data Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage. However, no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.
Third-Party Links
Our website may contain links to third-party websites. We have no control over and are not responsible for the privacy practices or content of these third-party sites. We encourage you to review the privacy policies of any third-party sites before providing personal information.
Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page with an updated "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.
Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact us:
Email: [email protected]
Address: Tallinn, Estonia
Complaints
If you believe that our processing of your personal data infringes applicable data protection laws, you have a right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.