Privacy Policy
Last Updated: January 15, 2025
At Kelvoxar, we take your privacy seriously. This document explains how we collect, use, and protect your personal information when you interact with our culinary education platform.
We operate under Bulgarian data protection laws and the EU General Data Protection Regulation (GDPR). You have specific rights regarding your data, and we're committed to honoring them.
Data Controller: Kelvoxar
Address: 9027 Индустриална зона
- Планова, Varna, Bulgaria
Email: help@revert.finance-app.co.com
Phone: +35973884260
Information We Collect
When you use our platform, we gather different types of information. Some you provide directly, others we collect automatically as you navigate our site.
Information You Provide
- Name, email address, and phone number when you create an account
- Payment details when enrolling in courses (processed securely through third-party providers)
- Profile information including culinary experience level and interests
- Communication preferences and feedback you share with us
- Course progress, completed assignments, and certification achievements
Automatically Collected Data
- Device information including browser type, operating system, and screen resolution
- IP address and general location data (city/region level, not precise coordinates)
- Pages visited, time spent on each section, and navigation patterns
- Cookies and similar tracking technologies (see our Cookie Policy for details)
- Technical data about how you interact with course materials
How We Use Your Information
Your data helps us run the platform and improve your learning experience. Here's what we do with it:
Educational Services: We use your information to provide access to courses, track your progress, issue certificates, and personalize your learning journey.
Communication: We send course updates, important announcements, and respond to your inquiries. You can opt out of promotional emails anytime.
Platform Improvement: We analyze usage patterns to understand what works and what doesn't, helping us create better content.
- Managing your account and authentication
- Processing payments and maintaining transaction records
- Delivering course content and tracking completion
- Sending educational materials and program updates
- Responding to support requests and technical issues
- Conducting research to enhance our teaching methods
- Ensuring platform security and preventing fraud
- Complying with legal obligations and protecting our rights
Legal Basis for Processing
Under GDPR, we need a lawful reason to process your data. Here's what applies to different activities:
| Processing Activity | Legal Basis |
|---|---|
| Account creation and course delivery | Contract fulfillment |
| Payment processing | Contract fulfillment and legal obligation |
| Marketing communications | Your consent (can be withdrawn) |
| Platform analytics and improvement | Legitimate business interests |
| Security and fraud prevention | Legitimate interests and legal obligation |
Data Sharing and Third Parties
We don't sell your data. Period. But we do share it with specific partners who help us operate the platform.
Service Providers We Work With
- Payment processors who handle transactions securely
- Cloud hosting services that store course materials and data
- Email service providers for sending course communications
- Analytics tools to understand how people use our platform
- Customer support software to manage inquiries efficiently
All third parties are contractually bound to protect your data and use it only for the purposes we specify. We vet them carefully and ensure they meet GDPR standards.
When We Must Disclose Information
Sometimes the law requires us to share data. This happens when we receive valid legal requests from authorities, need to protect our legal rights, or prevent harm. We only provide the minimum information necessary.
International Data Transfers
We primarily store data within the European Economic Area. Some service providers may process data in other countries. When this happens, we ensure adequate protection through:
- Standard contractual clauses approved by the European Commission
- Adequacy decisions confirming the country has strong data protection
- Privacy Shield certification (where applicable)
- Other legally approved transfer mechanisms
Your Privacy Rights
Under Bulgarian law and GDPR, you have significant control over your personal data. Here's what you can do:
Access: Request a copy of all personal data we hold about you. We'll provide it in a readable format within one month.
Correction: Ask us to fix inaccurate or incomplete information. You can update most details directly in your account settings.
Deletion: Request that we erase your data, subject to certain legal exceptions like financial records we must keep.
Objection: Object to how we process your data, particularly for marketing purposes or when based on legitimate interests.
Restriction: Ask us to limit how we use your information while we resolve concerns you've raised.
Portability: Get your data in a structured, machine-readable format to transfer to another service.
Withdraw Consent: Stop processing based on consent anytime, though this doesn't affect past lawful processing.
How to Exercise Your Rights
Send requests to help@revert.finance-app.co.com with "Privacy Request" in the subject line. We'll verify your identity before processing any request. Most requests are handled free of charge, though we may charge a reasonable fee for excessive or repetitive requests.
If you're not satisfied with how we handle your data, you have the right to file a complaint with the Bulgarian Commission for Personal Data Protection or your local data protection authority.
Data Security Measures
Protecting your information is a priority. We implement multiple layers of security:
- Encryption in transit using TLS/SSL protocols
- Encryption at rest for sensitive data stored on our servers
- Access controls limiting who can view personal information
- Regular security audits and vulnerability assessments
- Employee training on data protection best practices
- Secure backup systems with redundancy
- Incident response procedures for potential breaches
No system is completely secure, though. While we work hard to protect your data, we can't guarantee absolute security. You play a role too by keeping your password confidential and logging out on shared devices.
Data Retention
We keep your information only as long as necessary for the purposes outlined in this policy.
| Data Type | Retention Period | Reason |
|---|---|---|
| Account information | Duration of account plus 2 years | Service provision and legal requirements |
| Course progress and certificates | 10 years after completion | Verification purposes and educational records |
| Payment records | 7 years | Tax compliance and accounting requirements |
| Marketing consent | Until withdrawn or 3 years of inactivity | Communication preferences management |
| Website analytics | 26 months | Platform improvement and research |
After retention periods expire, we securely delete or anonymize your data. Some information may be retained longer if required by law or for legitimate legal purposes like defending claims.
Cookies and Tracking
We use cookies and similar technologies to make the platform work properly and understand how people use it. These fall into several categories:
- Essential Cookies: Required for login, security, and basic functionality. You can't opt out of these.
- Performance Cookies: Help us understand site usage and improve performance. These are anonymous.
- Functional Cookies: Remember your preferences and settings for a better experience.
- Analytics Cookies: Track how you navigate and interact with content to help us improve.
You can manage cookie preferences through your browser settings. Blocking certain cookies may affect platform functionality. We don't use advertising or tracking cookies from third-party ad networks.
Children's Privacy
Our platform is designed for adults interested in advanced culinary techniques. We don't knowingly collect information from anyone under 16 years old.
If you're under 16, please don't create an account or provide personal information. If we discover we've collected data from a minor without proper parental consent, we'll delete it promptly.
Changes to This Policy
We update this policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you by email or through a prominent notice on the platform.
The "Last Updated" date at the top shows when we most recently revised this policy. Continued use of our services after changes take effect means you accept the updated terms.
California Privacy Rights
While we primarily serve the Bulgarian and European markets, California residents have specific rights under the California Consumer Privacy Act (CCPA). If this applies to you, you can request information about data collection and sales (though we don't sell data), and opt out of certain sharing practices.