LEGAL_DOCUMENT

> Data Protection Policy

EFFECTIVE:
UPDATED:

UPDATE: Added data deletion instructions and government data request policy

1. Our Commitment

Kausora Technologies is committed to protecting the personal data of our clients, partners, and website visitors. We comply with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Protection Principles

We process personal data in accordance with the following principles:

  • Lawfulness, Fairness, and Transparency: We process data lawfully, fairly, and transparently
  • Purpose Limitation: We collect data for specified, explicit, and legitimate purposes
  • Data Minimization: We collect only data that is necessary for our purposes
  • Accuracy: We keep personal data accurate and up to date
  • Storage Limitation: We retain data only as long as necessary
  • Security: We implement appropriate technical and organizational measures

3. Your Rights

Under GDPR, you have the following rights:

  • Right to be informed about data processing
  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing

4. How to Request Deletion of Your Data

Email contact@kausora.com with the subject line "Data Deletion Request", including the WhatsApp phone number (or account email) the request concerns. If you contacted one of our business clients through Kausora Connect, you may also ask that business directly: as the data controller, it can instruct us to delete your conversation history. We verify each request, delete the associated records from our active systems, and confirm completion within 30 days. Backup copies expire on our standard retention schedule.

5. Data Security

We implement industry-standard security measures including encryption, access controls, secure data storage, and regular security assessments to protect your personal data from unauthorized access, disclosure, alteration, or destruction.

6. Government and Law Enforcement Requests

Kausora Technologies adopted the following Government Data Request Policy on 6 July 2026. It governs how we handle any request from a public authority for user personal data.

  1. Legality review. Any request from a public authority for user personal data is reviewed for legal validity (jurisdiction, legal basis, proper service) before any response, with external counsel engaged where needed.
  2. Challenge provision. Requests assessed as unlawful, overbroad, or improperly served will be rejected or challenged through available legal channels.
  3. Data minimization. If a valid request must be honored, Kausora discloses only the minimum data legally required, scoped to the specific users, data categories, and time ranges named in the request.
  4. Documentation. Every request, Kausora's assessment, legal reasoning, response, and the parties involved are recorded in a request register retained for at least five years.
  5. Customer notification. Where lawful, affected business customers will be notified of requests concerning their data.

Government and law enforcement requests must be served to contact@kausora.com or to our registered address.

7. Contact Our Data Protection Officer

For data protection inquiries or to exercise your rights, contact us at:

Email: contact@kausora.com

Phone: +971-50-153-7164