PLEASE READ PRIVACY POLICY CAREFULLY BEFORE USING THIS WEBSITE
Ki Hana Limited is committed to protecting and respecting your privacy. Please read this privacy policy carefully. By visiting our website, www.ki-connect.me (Website) and using our web app, KI (Web App), you acknowledge that you have read, understood and consent to the practices described in this policy.
We are committed to safeguarding the privacy of the users of our Website and our Web App and any other services we may offer. This privacy policy makes it clear as to what personal data we collect, why we collect that personal data and how we handle it.
- Introduction
This privacy policy also refers to the following additional terms, which also apply to your use of our Website and our Web App:
(a) our Cookie Policy, which sets out information about the cookies on our Website [and our Web App]
(b) our Subscriber Terms [INSERT LINK TO APP SUBSCRIBER AGREEMENT] which sets out information about how you subscribe to use our Web App.
All of these documents set out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. It describes:
- who we are
- what personal information we collect about you
- how we obtain your personal information
- how we use your personal information
- on what basis we use your personal information
- how long we keep your personal information
- who we share your personal information with
- how we protect your personal information
- which countries we transfer your personal information to
- your rights regarding your personal information
- Who we are
We are Ki Hana Limited. We are a limited company registered in England and Wales company number 15827877. Our registered office address and our main place of business is at M.01 Tomorrow, Blue, Mediacityuk, Salford, United Kingdom, M50 2AB. In this privacy policy, Ki Hana Limited may also be referred to as “Ki Hana Ltd”, “we”, “us” or “our”, “Ki Hana”.
We own and operate the Website and Web App www.ki-connect.me.
You can contact us by email at enquiries@ki-connect.com, or by post to the address above.
- What data do we collect?
Personal data means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
The following two tables set out what personal data we may process, why we process that personal data and the legal basis for such processing:
Information you give to us:
| What personal data might be supplied to us | Why we process that personal data | Legal basis for processing that personal data |
|---|---|---|
| User Data: Information about you which relates to your account with us. This information may include your name, your postal address, your email address and your telephone and/or mobile number, and such other information as we determine is needed to verify the identity of our users. | To verify your identity, maintain your account with us, to provide our services, to communicate with you and to back up our database. The reason we process this data is to ensure the proper administration of the instructing user’s account and our business and, where you have entered into a contract with us, for the purposes of fulfilling our contract with you. | Our legitimate interests; or Fulfilment of our contract with you or the instructing user; or Complying with our legal obligations. |
| Registration Data: Information you provide when you register to use our Website and Web App, enter a competition, promotion or survey, or when you report a problem with our site. The information you give us may include your name, address, e-mail address and phone number. | So we can deal with your registration, or other communications or applications, or to address your query or concern. The reason we process this data is to ensure the proper administration of your registration and our business. | Our legitimate interests; or Consent. |
| Communication Data: If you communicate with us (through the Website and Web App, via email, phone, post or any other means of communication by which you choose to contact us), we will process the information contained in your communication. This information may include your name and contact information, the content of your communication and any metadata our Website and Web App generates where you communicate with us using our Website and Web App. | So we can correspond with you and keep records of such correspondence. | Our legitimate interests; or Consent. |
| Notification Data: Where you have purchased services from us, or where you subscribe to receive our email notifications and/or newsletters, we will process your data so that we can send such email notifications and/or newsletters to you. | Where you have purchased services from us or you have consented to us doing so. | Our legitimate interests; or Consent. |
| Regulatory Data: We may process your data if we need to do so in order to comply with our legal and/or regulatory obligations, and/or so that we can protect the vital interests of you or another natural person. | To protect the vital interests of you or another natural person, or in order to comply with our legal and/or regulatory obligations. | Compliance with our legal and regulatory obligations. |
Data we collect from other sources
| What personal data might we collect from other sources? | Why we process such personal data: | The legal basis for processing this personal data |
|---|---|---|
| Transaction Data: When a user instructs us to provide services, the user will need to provide certain information to us so that we can supply those services. The personal information which may be communicated to us in the course of supplying services to our users may include a data subject’s name, contact details, payment card details and other personal information relevant to a transaction. | In order to perform our contract with you and/or our user and to fulfil the transaction. To comply with our regulatory obligations when administering our business. | Performance of our contract with you or our instructing user; or Our legitimate interests. |
| Technical Data: Technical information relating to your use of our Website and Web App, including (1) the IP address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform. We may obtain this data through our analytics tracking system; and (2) information about your visit to our website, including the URL, clickstream to, through and from our website (including date and time), services you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page. | To monitor and analyse how our Website and Web App is used so we can improve our Website and Web App and our services. Theis helps us to administer our business and improve the services we offer. | Our legitimate interests. |
| Third Party Data: This is information we receive about you if you use our Website and our Web App. We work with third parties (including, for example, consultants, business partners, professionals, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers). We may receive personal data about you from these organisations. Those organisations will have their own privacy policies detailing how they process personal data. Please see paragraph 3 below for more information. | To properly administer our business. | Our legitimate interests. |
Special categories of personal data
Subject to the following paragraph, we ask that you not send us, and you not disclose, any sensitive personal data (e.g., national insurance details, social security numbers, information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) (Sensitive Personal Data) on or through our Website and Web App or otherwise to us.
If you send or disclose any Sensitive Personal Data to us when you submit your user-generated content to our Website and Web App, you consent to our processing and use of such Sensitive Personal Data in accordance with this policy and in accordance with applicable data protection laws. If you do not consent to our processing and use of such Sensitive Personal Data, you must not submit such user generated content.
If you fail to provide personal data
You can choose not to provide us with your personal data, but then you may not be able to take advantage of some of the features on our Website and Web App. In this case, we may have to cancel a service you have with us but we will notify you if this is the case at the time. If you are uncertain about what personal data is necessary, you are welcome to contact us.
- Cookies
Our Website and Web App uses cookies to distinguish you from other users of our Website and Web App. This helps us to provide you with a good experience when you browse our Website and Web App and also allows us to improve our site. For detailed information on the cookies we use and the purposes for which we use them see our Cookie Policy . You can set your browser to refuse all or some cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of the Website and Web App may become inaccessible or not function properly.
- When will we disclose your personal data to others?
We may share your personal data with certain selected third parties including:
(a) consultants / personnel to provide services on our behalf. We engage these people, and they need to process personal data on our behalf, in order to perform any contract we have with you and also to ensure the proper administration of our business
(b) service providers, including providers of hosting services, customer service vendors, cloud services, content delivery services, data warehouse services, support and safety monitoring services, email communication software, search engine providers, web analytics services, payment and transaction providers, and other information technology services providers. Pursuant to our instructions, these parties will access, process, or store your personal information only in the course of performing their duties for us
(c) any other services which we deem are necessary to properly manage our business and comply with our legal and regulatory obligations
We may also disclose your personal information to third parties in the following circumstances:
(a) if we choose to acquire, sell, transfer or merge parts of our business or our assets. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy policy
(b) if we are under a duty to disclose or share your personal data with government authorities or other third parties or if we believe in good faith belief that we need to do so to comply with a legal obligation
(c) to protect and defend our rights or property
(d) if we determine, in our sole discretion, that there is a violation of our terms, policies, or the law
(e) to detect or prevent fraud or other illegal activity
(f) to protect the safety, security, and integrity of our products, employees, or users, or the public
(g) to protect us against legal liability.
We may share your personal data where you have provided your consent to do so.
We require all third parties to respect the security of your personal data and to treat it in accordance with applicable data protection laws. We do not allow our third party providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
We use OpenAI (https://openai.com) to process your personal data and also any personal data which you may input to our Web App. OpenAI is a software application that incorporates AI technology. We use OpenAI to improve the efficiency, quality, and speed of our business processes and for the purpose of providing our Website and Web App. We may process personal data when using AI technology. For more information on data privacy and security of OpenAI, please visit OpenAI’s data privacy page here: https://openai.com/policies/eu-privacy-policy
We use Bubble (https://bubble.io) a service owned by Amazon to store your personal data. For more information on data privacy and security of Bubble, please visit Amazon Bubble’s data privacy page here: https://bubble.io/privacy.
- Automated decision making or profiling
We do not use your personal data for the purposes of automated decision-making. However, we may do so in order to fulfil obligations imposed by law, in which case we will inform you of any such processing and provide you with an opportunity to object.
- Billing and payments
We use Stripe, a third party payment processor, to process payments made via our Website and Web App. In connection with the processing of such payments, we do not retain any personally identifiable information or any financial information such as credit card numbers. Rather, all such information is provided directly to Stripe, whose use of your personal data is governed by their privacy policy, which may be viewed at https://stripe.com/us/privacy.
- Personal data transfers
We will transfer your personal data to recipients outside of the UK / EEA, for the purposes described in this privacy policy. If you are based in the UK / EEA and your personal data is transferred to a third country, that third country may not offer the same level of data protection as your home country. However, we only transfer personal data pursuant to applicable data protection laws.
To transfer your personal data outside of the UK / EEA, we rely on the European Commission’s adequacy decisions on certain countries and, for other jurisdictions, we rely on the Standard Contractual Clauses as approved by the European Commission for the transfer of data outside the UK / EEA or such other appropriate standards as are required from time to time by the European Commission or the UK Government.
You understand and acknowledge that your personal data will be processed and stored in facilities and servers in the United States and may be disclosed to our service providers in other jurisdictions.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our services, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not always secure. Although we will do our best to protect your personal data, and we will maintain appropriate technical and organisation measures to protect your personal data, we cannot guarantee the security of your data transmitted to our Website and Web App; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
For more information, please contact us at enquiries@ki-connect.me.
- Storage and deletion of personal data
We will retain and use your Personal Information for the period necessary to comply with our legal obligations, resolve disputes, and enforce our agreements unless a longer retention period is required or permitted by law.
How long we retain personal data will depend on a number of factors, such as:
- our purpose for processing the data (such as whether we need to retain the data to provide our services to you);
- the amount, nature, and sensitivity of the data;
- the potential risk of harm from unauthorized use or disclosure of the data;
- any legal requirements that we are subject to.
Any personal data that we process will be deleted from our systems once we have completed the purpose for which we were processing the personal data.
- Data security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
- Your legal rights
Under data protection laws you have the following fundamental rights:
(a) the right to access the personal data we hold about you
(b) the right to have your personal data corrected if there are errors or inaccuracies in it, or your personal data is incomplete
(c) the right to restrict the processing we carry out in relation to your personal data
(d) the right to object to the processing we carry out in relation to your personal data
(e) the right to have the personal data we hold about you provided to you in a useable format
(f) the right to complain to a supervisory authority (in the UK this is the Information Commissioner’s Office) about how and/or why we are processing your personal data
(g) the right to tell us you no longer consent to us processing your personal data. In practice you will usually agree in advance to us using your personal data for marketing purposes and if you no longer wish us to use your personal data for marketing purposes, you can opt out of receiving such marketing messages at any time. You can do this either by unsubscribing from the marketing messages we send you, notifying us in writing at enquiries@Ki-connect.me
Please note these rights may be limited, for example if fulfilling your request would reveal personal data about another person, or if you ask us to delete information that we are required by law or have compelling legitimate interests to keep.
You can ask us to provide you with details of any personal data we hold about you. You do not have to pay us a fee to access your personal data unless we believe your access request is unfounded, repetitive or excessive. In this case we may charge you a reasonable fee to access your personal data or we may decide not to comply with your request. We will notify you if this is the case. We will require you to provide appropriate evidence of your identity before we respond to your request. Typically this identification evidence will be a photocopy of your passport or photo driving licence, which is certified as being a true copy of the original and a copy of a recent utility bill detailing your current address. This is a security measure to ensure that your personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
Our Website and Web App may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
If you think that any of the data we hold about you is incorrect or inaccurate, you can contact us to correct such data. Please contact us at enquiries@ki-connect.me.
- Contacting the Information Commissioner’s Office
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance at enquiries@ki-connect.me.
- Changes to this privacy policy
We keep this privacy policy under regular review. This version was last updated in October 2024. Please check frequently to see any updates or changes to our privacy policy.
The personal data we hold about you must be accurate and current. Please keep us informed if your personal data changes during your relationship with us.
- Privacy of children
Our Website and our Web App is not intended for children and we do not knowingly collect data relating to children. If you have reason to believe that a child under the age of 18 has provided personal data to us, please contact us at enquiries@ki-connect.me.
- Contact details
Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to enquiries@ki-connect.me or you can contact us via post:
Data Protection Officer
Ki Hana Limited
M.01 Tomorrow, Blue, Mediacityuk
Salford, United Kingdom, M50 2AB