🇺🇸 English 🇨🇳 中文 🇮🇳 हिन्दी 🇪🇸 Español 🇫🇷 Français 🇸🇦 العربية 🇧🇩 বাংলা 🇧🇷 Português 🇷🇺 Русский 🇵🇰 اردو 🇯🇵 日本語 🇰🇷 한국어 🇩🇪 Deutsch 🇮🇩 Indonesia 🇻🇳 Tiếng Việt

GDPR Compliance

Your rights under the General Data Protection Regulation

✓ kiveo ai is fully GDPR compliant. We respect and protect the privacy rights of all users, including those in the European Economic Area (EEA).

Lawful Basis for Processing

Under GDPR, we process personal data based on one or more of the following lawful bases:

Consent

When you voluntarily provide information or opt-in to communications

Contractual Necessity

To provide our services and fulfill our agreement with you

Legitimate Interests

For improving our service, security, and fraud prevention

Legal Obligation

To comply with applicable laws and regulations

Your Data Subject Rights

🔍

Right of Access

Receive a copy of your personal data that we hold

✏️

Right to Rectification

Request correction of inaccurate or incomplete data

🗑️

Right to Erasure

Request deletion of your personal data ("right to be forgotten")

⏸️

Right to Restriction

Restrict processing of your data under certain conditions

📤

Right to Portability

Receive your data in a structured, machine-readable format

🚫

Right to Object

Object to processing based on legitimate interests

🔄

Right to Withdraw Consent

Withdraw previously given consent at any time

⚖️

Right to Lodge Complaint

File a complaint with your supervisory authority

Data We Store

Data Category Examples Retention Lawful Basis
Account Data Email, name, profile Until account deletion Contract
Usage Data Generated images, favorites 24 months Legitimate Interest
Analytics Data IP, browser, pages visited 26 months Consent
Support Data Support tickets, emails 3 years Legitimate Interest

International Data Transfers

kiveo ai uses Cloudflare and Supabase services which may process data outside the EEA. We ensure adequate safeguards are in place through Standard Contractual Clauses (SCCs) and data processing agreements with all sub-processors.

Submit a DSAR Request

To exercise any of your GDPR rights, please contact our Data Protection Officer:

📧 Email: [email protected]

🕐 Response Time: Within 30 days of verification

🔐 Note: We may request identity verification to process your request

Data Protection Officer (DPO)

Our DPO is responsible for overseeing GDPR compliance matters. Contact: [email protected]