Viktor

This Privacy Policy describes how the “LLC KEVYCH (сompany number: 45380060, legal address: 176, Khmelnytskoho B. St., Lviv, 79024, Ukraine, office 604)” (hereinafter - the “Team”, “We”, “Our” and “Us”) may use your personal data, and provides information about your rights in relation to personal data (hereinafter - the “Privacy Policy”) in a situation when you:

We are the owner and operator of Our website:https://kevychsolutions.com/(hereinafter - the “Website”). We are the “Controller” of the User(s) personal data in the following cases:

Please review this Privacy Policy carefully to understand how We collect, use, store, share, protect, and otherwise manage Your personally identifiable information in connection with Our Website.

Note: Our Website may include links to external websites that are not operated by Us. If a User clicks on a third-party link, they will be redirected to that third party's website. We strongly advise all Users to read the privacy policies of any website they visit. We are not responsible for, and have no control over, the content, privacy policies, or practices of third-party websites or services outside Our Website.

The terms used, such as “controller”, “processor”, “third-party”, “personal data breach”, “personal data” or their “processing”, etc. refer to the definitions in Article 4 of the GDPR.

The term “User(s)” covers all categories of persons affected by data processing. These include our business partners, customers, potential customers, employees, contractors, subcontractors, service providers, etc., and other visitors to Our Website. The terms used, such as “User(s)” are to be understood gender-neutral.

Any process of User(s) personal data is performed only in accordance with this Privacy Policy, the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (OJEU No L 119 of 4 May 2016) (hereinafter - the “General Data Protection Regulation” and the “GDPR”), the UK Data Protection Act of 2018 (hereinafter - the “UK DPA”), and other regulatory acts.

We process personal data of User(s) only in compliance with the relevant data protection regulations. This means that Users’ data will only be processed if we have a legal permit. That is, especially if the data processing for the provision of Our Services is required or required by law, the consent of the user exists, as well as Our legitimate interests (i.e., interest in the analysis, optimisation and economic Operation and security of Our Services offer within the meaning of Art. 6 (1) lit. GDPR).

Please note that: (1) the legal basis for the consent is Art. 6 para. 1 lit. a. and Art. 7 GDPR; (2) the legal basis for processing for the purpose of fulfilling our services and implementing contractual measures is Art. 6 para. 1 lit. b. GDPR; (3) the legal basis for processing for the purpose of fulfilling our legal obligations is Art. 6 para. 1 lit. c. GDPR; (4) the legal basis for the processing to safeguard our legitimate interests is Art. 6 para. 1 lit. f. GDPR, etc.

In the event that the User(s) is a resident of Poland, the User(s) has certain privacy rights under Poland law, including the Personal Data Protection Act of 10 May 2018; The Law on the Provision of Electronic Services of 18 July 2002.

In the event that the User(s) is a resident of Ukraine, the User(s) has certain privacy rights under Ukrainian law, including the Law of Ukraine (Law of Ukraine of 01.06.2010 No.2297-VI on Personal Data Protection).

If any of the Users is a resident of the United States, the User(s) has rights under the following state-specific law, which We are committed to comply with (the name of the document refers to the state): (i.) the California Consumer Privacy Act of 2018 (hereinafter - the “CCPA”), (ii.) the Colorado Consumer Privacy Act (hereinafter - the “CPA”), (iii.) the Connecticut Data Privacy Act of 2023 (hereinafter - the “CTDPA”), (iv.) the Delaware Personal Data Privacy Act (hereinafter - the “DPDPA”), (v.) the Florida Digital Bill of Rights (hereinafter - the “FDBR”), (vi.) the Biometric Information Privacy Act (hereinafter - the “BIPA”), (vii.) the Consumer Data Protection Act (hereinafter - the “CDPA”), (viii.) the Iowa Consumer Data Protection Act (hereinafter - the “ICDPA”), (ix.) the Montana Consumer Data Privacy Act (hereinafter - the “MCDPA”), (x.) the Oregon Consumer Privacy Act (hereinafter - the “OCPA”), (xi.) the Nevada Privacy of Information (hereinafter - the “Senate Bill 220” or the “SB 220”), (xii.) the Utah Consumer Privacy Act (hereinafter - the “UTCPA”), (xiii.) the Tennessee Information Protection Act (hereinafter - the “TIPA”), (xiv.) the Texas Data Privacy and Security Act (hereinafter - the “TDPSA”), (xv.) the Virginia Consumer Data Protection Act (hereinafter - the “VCDPA”), etc. If You are a U.S. federal government end User, Our Service is a “Commercial Item” as that term is defined at 48 C.F.R. §2.101.

The User(s) directly provide Us with most of the personal data we collect. We collect, process, etc. the following personal data:

When the User uses Our Website, browses Our Services, and uses the available systems (in particular, to create contact requests sent via the contact form), so-called “ cookies”* are created when the User browses these web pages.

As of the last date of updating this Privacy Policy, We use the following cookies on the Website:

This information is used for administrative and statistical purposes and aimed at improving Our Website and enhancing User's user experience. In addition, this automatically processed data may be used to analyse the behaviour of the content User(s) on Our Website (e.g., time spent on the Website) or to personalise the content of the Website's web pages, in particular by providing online advertising.

Note: The User(s) are not obliged to accept cookies (the User(s) may agree to the use of cookies by clicking the appropriate button on our Website or by making the appropriate settings in your Web browser), but this may result in Our Website not functioning fully properly.

We also use social media buttons and/or plugins on the Website that allow you to connect with Our social network. In order for them to work, they set Cookies on Our Website that can be used to improve your profile on their website or to supplement the data they store for various purposes specified in their respective privacy policies and cookies policies.

Our Services are not directed to anyone under the age of 18 (hereinafter - the “ Children”). We do not knowingly collect personal data from anyone under the age of 18. In case the User(s) is a parent or guardian and knows that your Children have provided Us with the personal data, please contact us (see “Contact Us” section). If We become aware that We have collected personal data from Children without parental consent, We take steps to delete this personal data from Our servers (taking into account the relevant provisions of Our Terms of Use).

We use appropriate methods of personal data collection, storage, processing and share, as well as security measures to protect against unauthorised access, alteration, disclosure, or destruction of personal data of the User(s) and data stored on Our Website. We do not share personal data of the User(s) with third parties, except for Our affiliates, Our employees and/or contractors and/or subcontractors and/or recruitment service providers for Us, which have agreed in written consent not to collect, store, process and transfer the personal data of Our User(s) to other third parties without Our prior written permission, as well as to third parties described in the “APPLICABLE TERMS” section with whom We have signed their terms of use (offer agreement) or service agreement, and privacy policy when We registered for their services. We may (and do) enter into agreements (i.e., master service agreement and non-disclosure agreements, etc.) with each User(s) with whom we cooperate in various business areas that define the protection of Our confidential information, which includes the personal data of the User(s), and the liability for violation of these requirements.

Notice: We do not currently sell any personal data we collect from Users to third parties. If we do so in the future, we will update this Privacy Policy and provide all of Our Users with notice of this with an opportunity to opt-in or opt-out of the sale of their personal data.

We may be required to disclose all or any part of the User(s) personal data if required to do so by law or at the request of a governmental or regulatory organization/authority, or if We believe in good faith that such disclosure is necessary to:

We securely store your data in Our internal Customer Relationship Management system (hereinafter - the “CRM”), that includes Gmail (from Google Mail).

The data retention period that we receive from the User(s) is calculated for each moment of cooperation individually in compliance with all relevant regulations, which are confirmed by this Privacy Policy. However, in general, the period is from 6 (six) months from the first collection of such data to the maximum period allowed by applicable law, taking into account such circumstances as whether the User continues to use Our Services or whether We cooperate with the User, etc. Retention periods from other recipients (owners of other websites outside of Our Website) are set exclusively by them in their privacy policies.

Notice: In case the User(s) requests that We do not store personal data by sending Us a request to office@kevychsolutions.com , We will take all reasonable measures to delete all personal data about such User(s). However, with the explicit consent of the User, we may retain a streamlined version of their profile, including their email address, for future purposes, enabling us to keep the User informed about our recruitment campaigns or marketing offers.

The User(s) has (have) the following rights in connection with the processing of personal data by Us (the exercise of each of the following rights is carried out at the request of the User(s)):

The User(s) does not need to pay for access to personal data (or for exercising any other rights). However, We may charge a reasonable fee if the User(s)' request for access is manifestly unfounded or excessive, and in such circumstances We may refuse to grant the request.

Notice: In the event that the User(s) wish to review, verify, correct or request deletion of personal data, object to the processing of personal data or request that We transfer a copy of personal data to another party, please contact Us at office@kevychsolutions.com in writing.

The User's personal data is transferred to (or within) third countries if the Services provided by Us will also be provided in the territory of a third country. The personal data of the User(s) may also be transferred to entities that provide tax, legal, and audit advice to Us if they operate in or outside the territory of a third country. In each of the above cases, We protect the processing of the User's personal data, in particular, by entering into confidentiality agreements and processing personal data in a manner that complies with the provisions of generally applicable EU and UK data protection laws, as well as on terms designed to ensure the security of the processing of the User's personal data. We do not transfer personal data of the User(s) to international organizations. We also do not transfer personal data of the User(s) to third countries, if such transfer is impossible or prohibited by generally accepted legislation.

Note: By accepting Our Privacy Policy, You agree and authorize Us to transfer Your data as described in this section, subject to applicable law. If You wish to withdraw this authorization, please contact Us at office@kevychsolutions.com

We may partner with third-party companies and individual entrepreneurs to facilitate the operation of our Services, to provide Services on Our behalf, or to assist Us in the analysis of how Our Services and/or Our Website are used for the purpose of improving it, etc. (collectively, “Service Providers”). Such third parties have access to the Personal Data of the User(s) only to perform the tasks provided directly by Us and are obliged not to disclose or use them for any other purpose, except as provided in the customized cooperation agreement (as described below) or in the terms of use (offer agreement) and privacy policy on the websites of such third parties. Such cooperation with third parties must be documented by the necessary documents (including the master service agreement and non-disclosure agreements and/or terms of use (offer agreement) and privacy policy, etc.) with appropriate penalties for breach of obligation, but the User(s) approve by granting Us consent to the processing etc. of personal data that We are not responsible (including solidary responsibility) for the unlawful use of the User's personal data by such Service Providers (please note that each Service Provider manages personal data in accordance with the personal terms of use (offer agreement) and privacy policy on the Service Providers' websites).

Offering a solution is encouraged, but not required, to report a vulnerability. Lack of detailed vulnerability explanation may result in delays in our response and subsequent potential actions on the finding.

We have the right to periodically change, update and supplement the Privacy Policy to ensure the security of Personal Data, notify the User(s) of changes in the use of Personal Data and comply with the requirements of GDPR, CCPA, UA legislation, etc.

In the event of significant changes regarding personal data, We notify the User(s) of such changes by posting news on the Website before the changes become effective and update the “Last update” at the top of Our Privacy Policy and/or by means of an e-mail newsletter. We recommend that the User(s) periodically review the Privacy Policy to obtain information about how We use the User's personal data.

In case the User(s) have opted out of emails in which We inform the User(s) of changes in legal documentation, the User(s) are still responsible for familiarizing Yourself with them.

After making changes to the Privacy Policy, We have the right to request the Users' re-consent to the updated Privacy Policy. Changes to the current Privacy Policy shall become effective 30 (thirty) calendar days from the date of publication of the new, amended version of the Privacy Policy.

Our electronic or otherwise stored copies of the Privacy Policy shall be deemed to be the true, complete, valid and enforceable version of this Privacy Policy in effect at the time of the User(s) interaction with Our Website.

By continuing to interact with Our Website, the User(s) confirm the User's acceptance of the changes made to this Privacy Policy.

This Privacy Policy is written in English, and if You use a web browser translator or any other translation tool, We are not responsible for the accuracy and quality of such translation.

In the event that the User(s) has any questions about Our Privacy Policy, the data We hold about the User(s), or the User(s) would like to exercise one of the data protection rights, please contact Us by sending an email to office@kevychsolutions.com