GDPR and COPPA Compliance

GDPR and COPPA Compliance

At KheloGram, we are committed to ensuring the privacy and protection of personal information. As part of this commitment, we comply with the relevant data protection regulations, including the General Data Protection Regulation (GDPR) for users in the European Union (EU) and the Children's Online Privacy Protection Act (COPPA)for users in the United States under the age of 13. This section provides an overview of how KheloGram meets the requirements of both GDPR and COPPA.

1. GDPR Compliance

The General Data Protection Regulation (GDPR) is a regulation in the European Union (EU) that governs the processing of personal data of individuals within the EU. GDPR aims to give individuals greater control over their personal data and imposes strict obligations on organizations that collect and process such data.

As a platform that may collect and process personal data from users in the EU, KheloGram complies with GDPR requirements to protect the privacy and rights of EU users.

Key GDPR Principles We Follow

  1. Lawful, Fair, and Transparent Processing:
    We collect personal data only when necessary and for specific, legitimate purposes. We inform users about the types of data we collect and how it will be used.

  2. Data Minimization:
    We ensure that the personal data we collect is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.

  3. Accuracy:
    We take steps to ensure that personal data is accurate and up-to-date. Users can access and update their data directly through their KheloGram account.

  4. Storage Limitation:
    We retain personal data only for as long as necessary to fulfill the purposes for which it was collected. Once data is no longer required, we securely delete it.

  5. Integrity and Confidentiality:
    We take appropriate technical and organizational measures to protect your data against unauthorized access, alteration, and destruction.

  6. Accountability:
    KheloGram is responsible for ensuring compliance with these principles and for documenting all data processing activities.

Your Rights Under GDPR

As an EU user, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can correct any inaccurate or incomplete personal data we hold about you.
  • Right to Erasure (Right to be Forgotten): You can request that we delete your personal data, subject to certain legal conditions.
  • Right to Restriction of Processing: You can ask us to limit how we use your personal data.
  • Right to Data Portability: You can request that we transfer your data to another service provider in a structured, commonly used format.
  • Right to Object: You can object to the processing of your personal data in certain circumstances.
  • Right to Withdraw Consent: If we process your data based on your consent, you can withdraw that consent at any time.

To exercise these rights, please contact us at [contact@khelogram.com]. If you believe that we have not properly handled your personal data, you have the right to lodge a complaint with your local data protection authority.

Legal Basis for Data Processing under GDPR

Under GDPR, we rely on the following legal bases for processing your personal data:

  • Consent: When you provide explicit consent to collect and process your data (e.g., when you register for an account, participate in events, or subscribe to our marketing communications).
  • Contractual Necessity: We process personal data to fulfill our contractual obligations, such as processing your registration for events or providing services related to your account.
  • Legitimate Interests: We process personal data based on legitimate interests, such as improving our Platform, analyzing user behavior, and enhancing user experience.
  • Legal Obligation: We may process personal data to comply with legal requirements, such as responding to a legal request or regulatory obligation.

2. COPPA Compliance

The Children's Online Privacy Protection Act (COPPA) is a U.S. federal law designed to protect the privacy of children under the age of 13 by regulating the collection of personal information from children. KheloGram takes children’s privacy seriously and complies with COPPA to ensure the safety and privacy of young users.

Collection of Information from Children

KheloGram does not knowingly collect personal information from children under the age of 13. Our services are intended for users who are 13 years of age or older. If we learn that we have inadvertently collected personal data from a child under 13, we will take steps to delete such information as soon as possible.

What Does COPPA Require?

COPPA requires that we:

  • Obtain parental consent: Before collecting personal information from children under 13, we must obtain verifiable parental consent.
  • Provide a clear privacy policy: We are required to post a privacy policy that describes our data practices, including the types of personal information we collect and how it is used.
  • Allow parents to access and control their child’s data: Parents have the right to review, modify, or delete their child’s personal information.

Since KheloGram does not knowingly collect information from children under 13, we do not collect or retain personal information from children without parental consent. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at [contact@khelogram.com]. We will take steps to remove the information and ensure compliance with COPPA.

3. Data Retention and Deletion

Under both GDPR and COPPA, we retain your personal data only for as long as necessary for the purposes it was collected. Once the data is no longer required, we will securely delete it or anonymize it. If you request to delete your account, we will ensure that all personal information associated with your account is removed in compliance with applicable laws.

4. Changes to GDPR and COPPA Compliance Policy

KheloGram may update this section of our Privacy Policy to reflect any changes to our practices or compliance with new laws. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your rights under GDPR and COPPA.

Contact Us

If you have any questions or concerns regarding our compliance with GDPR or COPPA, or if you would like to exercise your rights under these laws, please contact us at:

By using the KheloGram Platform, you acknowledge that you have read, understood, and agree to our GDPR and COPPA compliance practices.