Kimolian Academy Data Protection Policy


This data protection policy outlines the measures that our social enterprise Kimolian Academy takes to ensure the protection of personal data collected and processed through our online community platform. This policy applies to all personal data processed by our organization, whether it’s collected directly from users or from third-party sources. We take our obligations under the General Data Protection Regulation (GDPR) and the Data Protection Act 2018 seriously and are committed to protecting the privacy and security of personal data.

What is personal data?

Personal data is any information that relates to an identified or identifiable individual. This includes names, email addresses, phone numbers, and other identifying information. How do we collect personal data? We collect personal data through our online community platform when users register to use the platform or when they interact with the content on the platform. We may also collect personal data from third-party sources, such as social media platforms, in order to improve our marketing efforts. We may also collect personal data related to our volunteers, such as their names, contact information, and volunteer preferences.

How do we use personal data?

We use personal data to provide our online community platform to users, to communicate with users about our services, and to improve our marketing efforts. We also use personal data related to our volunteers to manage their involvement with our organization, to communicate with them about volunteer opportunities, and to recognize their contributions to our organization. We may also use personal data to comply with legal obligations or to protect our legal interests.

Who has access to personal data?

We limit access to personal data to those employees, volunteers, and contractors who have a legitimate business need to access it. We may also share personal data with third-party service providers who assist us in providing our services or who help us improve our marketing efforts. We will only share personal data with third parties who have appropriate data protection measures in place.

How do we protect personal data?

We take appropriate technical and organizational measures to protect personal data from unauthorized access, disclosure, or destruction. We use secure servers, encryption, and access controls to protect personal data. We also regularly review and update our data protection measures to ensure that they remain effective.

How do we manage personal data?

We manage personal data by limiting access to it only to those employees, volunteers, and contractors who have a legitimate business need to access it. We also maintain accurate and up-to-date records of personal data, and we securely store and dispose of personal data in accordance with our data retention policy.

How long do we keep personal data?

We retain personal data for as long as it’s necessary to provide our services or to comply with legal obligations. When personal data is no longer needed, we securely delete or destroy it.

User rights

Users have the right to access, correct, or delete their personal data. Users can also object to the processing of their personal data or request that it be transferred to another organization. We will respond to these requests in a timely manner and will work to resolve any issues that arise.

Contact information

If you have any questions or concerns about our data protection policy, please contact us at [email protected].


Last updated: April 2024