+380637487727 support@molkertud.com
Mol Kertud

General Data Protection Regulation (GDPR) Compliance Policy

Last Updated: September 24, 2025

1. Introduction and Scope

Mol Kertud ("we," "us," or "our") is committed to protecting the privacy and personal data of all individuals who interact with our online educational platform. This GDPR Compliance Policy outlines how we collect, process, store, and protect personal data in accordance with applicable data protection regulations, including the General Data Protection Regulation.

This policy applies to all users of our services, including students, instructors, visitors to our website, and anyone whose personal data we process in connection with our educational management platform.

2. Data Controller Information

Mol Kertud acts as the data controller for personal data processed through our platform.

Contact Information:

Mol Kertud
Myru Ave, 11, оф. 30
Rivne, Rivne Oblast, 33016
Ukraine

Email: support@molkertud.com
Phone: +380 63 748 77 27

3. Legal Basis for Processing

We process personal data based on one or more of the following legal grounds:

Consent: You have given clear consent for us to process your personal data for specific purposes, such as marketing communications or optional platform features.

Contractual Necessity: Processing is necessary to fulfill our contract with you, including providing educational services, managing your account, and facilitating interactions between learners and instructors.

Legal Obligation: Processing is necessary to comply with legal requirements, such as tax regulations or record-keeping obligations.

Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our services, ensuring platform security, or conducting internal analytics, provided these interests do not override your fundamental rights and freedoms.

4. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

4.1 Identity and Contact Data

Name, email address, phone number, postal address, username, and password.

4.2 Profile and Educational Data

Learning preferences, educational background, course enrollments, progress tracking, assessment results, personalized learning paths, and instructor feedback.

4.3 Communication Data

Messages exchanged through our platform, live session interactions, support inquiries, and feedback submissions.

4.4 Technical Data

IP address, browser type, device information, operating system, login timestamps, and usage patterns on our platform.

4.5 Payment and Transaction Data

Billing information, payment method details, transaction history, and purchase records (payment processing may be handled by third-party processors).

4.6 Marketing and Communications Preferences

Your preferences regarding receiving promotional materials, newsletters, and other communications from us.

5. Purposes of Data Processing

We process personal data for the following purposes:

Service Delivery: To provide access to our educational platform, facilitate group and individual sessions, create personalized learning paths, enable live interactions with instructors, and manage your account.

Communication: To respond to inquiries, provide customer support, send service-related notifications, and communicate important updates about our platform.

Personalization: To tailor educational content and recommendations based on your learning preferences and progress.

Platform Improvement: To analyze usage patterns, conduct research, test features, and enhance the overall user experience.

Security and Fraud Prevention: To protect our platform, detect and prevent unauthorized access, ensure account security, and maintain system integrity.

Legal Compliance: To comply with applicable laws, regulations, and legal processes.

Marketing: To send promotional materials, newsletters, and information about new courses or features, where you have consented to receive such communications.

6. Data Sharing and Disclosure

We may share personal data with the following categories of recipients:

6.1 Service Providers

Third-party vendors who assist us in operating our platform, including hosting providers, payment processors, email service providers, analytics tools, and customer support platforms. These providers process data on our behalf and under our instructions.

6.2 Instructors and Educational Partners

Instructors who deliver courses may have access to certain student data necessary for teaching and assessment purposes.

6.3 Legal and Regulatory Authorities

We may disclose personal data to law enforcement, regulatory bodies, or other authorities when required by law or to protect our legal rights.

6.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the acquiring entity, subject to the same privacy protections outlined in this policy.

7. International Data Transfers

Our platform operates across multiple regions. Personal data may be transferred to and processed in countries outside your country of residence. When we transfer data internationally, we implement appropriate safeguards to ensure adequate protection, including:

Standard contractual clauses approved by relevant data protection authorities.

Ensuring recipients are located in countries with adequate data protection laws.

Implementing additional security measures and binding corporate rules where applicable.

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

8.1 Right of Access

You have the right to request confirmation of whether we process your personal data and to obtain a copy of such data.

8.2 Right to Rectification

You may request correction of inaccurate or incomplete personal data.

8.3 Right to Erasure (Right to be Forgotten)

You may request deletion of your personal data under certain circumstances, such as when data is no longer necessary for the purposes for which it was collected, or when you withdraw consent.

8.4 Right to Restriction of Processing

You may request that we limit the processing of your personal data in specific situations, such as when you contest the accuracy of the data or object to processing.

8.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

8.6 Right to Object

You may object to processing based on legitimate interests or for direct marketing purposes. We will cease processing unless we can demonstrate compelling legitimate grounds.

8.7 Right to Withdraw Consent

Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing based on consent before withdrawal.

8.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated.

9. Exercising Your Rights

To exercise any of the rights described above, please contact us using the information provided in Section 2. We will respond to your request within one month, though this period may be extended by two additional months for complex requests. We may require verification of your identity before processing your request.

10. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law. Retention periods vary based on the type of data and the purpose of processing:

Account Data: Retained for the duration of your active account and for a reasonable period thereafter to comply with legal obligations and resolve disputes.

Educational Records: Retained in accordance with educational record-keeping requirements and legitimate business needs.

Marketing Data: Retained until you withdraw consent or opt out of communications.

Technical and Log Data: Typically retained for security and system maintenance purposes for limited periods.

11. Data Security Measures

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

Encryption of data in transit and at rest.

Access controls and authentication mechanisms to limit data access to authorized personnel only.

Regular security assessments, vulnerability testing, and monitoring.

Employee training on data protection and security best practices.

Incident response procedures to address and mitigate data breaches.

While we take reasonable steps to protect your data, no system is completely secure, and we cannot guarantee absolute security.

12. Automated Decision-Making and Profiling

We may use automated processing to personalize your learning experience, such as recommending courses or creating adaptive learning paths based on your progress and preferences. These automated processes are designed to enhance your educational experience and do not produce legal effects or similarly significant impacts on you. You have the right to request human intervention, express your point of view, and challenge automated decisions.

13. Children's Privacy

Our platform is not directed to individuals under the age of 16. We do not knowingly collect personal data from children without appropriate parental or guardian consent. If we become aware that we have collected data from a child without proper consent, we will take steps to delete such information promptly.

14. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our platform. For detailed information about the types of cookies we use, their purposes, and how you can manage cookie preferences, please refer to our separate Cookie Policy.

15. Third-Party Links and Services

Our platform may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any external sites or services you access.

16. Changes to This Policy

We may update this GDPR Compliance Policy from time to time to reflect changes in our practices, legal requirements, or platform features. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this policy and, where appropriate, providing additional notice through email or prominent platform notifications. Your continued use of our services after such changes constitutes acceptance of the updated policy.

17. Contact and Data Protection Officer

If you have questions, concerns, or requests regarding this policy or our data processing practices, please contact us:

Email: support@molkertud.com
Phone: +380 63 748 77 27
Address: Myru Ave, 11, оф. 30, Rivne, Rivne Oblast, 33016, Ukraine

For matters specifically related to data protection, you may direct your inquiry to our designated data protection contact at the email address above.

18. Supervisory Authority

If you believe your data protection rights have been violated and wish to lodge a complaint, you may contact your local data protection supervisory authority. We are committed to working with authorities to resolve any concerns regarding our data processing practices.

We use cookies to improve your experience on our site. Some are essential for functionality, others help us understand how you use the platform.

This website uses cookies to enhance user experience and analyze site traffic. Essential cookies are required for basic site functions. Analytics cookies help us understand visitor behavior and improve our services.

You can choose to accept or decline cookies. Most browsers automatically accept cookies, but you can modify your settings to decline them if you prefer.