Privacy Policy

Effective date: April 6, 2026 | Version: 2026.04

KadiKonnect is a dual-platform event coordination system. Proposal and service requests are submitted through the web platform, while event owners and committees manage event operations through the mobile application. This policy explains how personal, operational, and financial data is collected, used, protected, and retained across both channels.

1. Scope and Platform Flow

  • Web Platform: Proposal intake, account registration, secure login, and operations dashboard.
  • Mobile App/API: Event management, attendance operations, guest and contribution tracking, and budget actions.
  • Data subjects include organizers, owners, committee members, guests, and contributors whose data is processed by authorized users.

2. Data Categories We Process

  • Identity and Contact Data: names, email addresses, phone numbers, usernames, organizational details.
  • Event Records: event details, guest lists, invitations, participation and check-in records.
  • Financial/Contribution Data: pledged amounts, paid amounts, transaction references, contribution notes.
  • Security and Access Data: login metadata, IP, user agent, role-based actions, 2FA status, secure token usage, audit logs.
  • Support and Proposal Data: service requests, package preferences, business follow-up history.

3. Purposes and Legal/Operational Basis

  • To deliver requested services and run event operations end-to-end.
  • To secure accounts and protect platform integrity (including 2FA and suspicious access controls).
  • To generate event reports, accountability records, and compliance evidence.
  • To fulfill consented proposal communication and customer support.

4. Consent and Mandatory Checkpoints

KadiKonnect enforces consent checkpoints in critical workflows including proposal submission, account registration, account login, and protected mobile API write actions. Consent acknowledgements are logged for traceability with metadata such as timestamp, scope, request path, and security fingerprint where applicable.

5. Security Controls

  • Encryption in transit via HTTPS/TLS.
  • Secure authentication with OTP/TOTP-based second factor for privileged flows.
  • Role-based access control (owners, committees/staff, administrators) and least-privilege operations.
  • Request protection measures including CSRF checks, anti-automation controls, and rate limiting.
  • Audit and activity logging for security, accountability, and incident response.

6. Data Storage, Retention, and Protection at Rest

  • Operational data is stored in managed system databases and service storage configured by administrators.
  • Sensitive records are protected through access control, environment-level secret management, and backup procedures.
  • Retention is limited to operational, financial, legal, and audit requirements, then data is archived or removed.

7. Sharing and Boundaries

  • KadiKonnect does not sell personal data.
  • Data is shared only with authorized platform roles and trusted service providers required for operations.
  • Cross-use beyond event operations, compliance, security, and approved support is restricted.

8. Data Subject and User Rights

  • Users may request access, correction, or deletion where legally and operationally applicable.
  • Organizers/owners are responsible for ensuring lawful source and processing of participant data they upload.
  • Requests are handled through designated support and compliance contacts.

9. Regulatory Alignment

KadiKonnect is designed to align with applicable data privacy, cybersecurity, and accountability principles, including consent capture, purpose limitation, access control, auditability, and secure processing expectations for institutional, NGO, and social event operations.

10. Contact and Updates

Policy updates are versioned and published on this page. Continued platform use after effective updates indicates acknowledgement of revised terms, subject to legal requirements for renewed consent where necessary.

11. Public Search Visibility and SEO

Public pages (for example home, portfolio, and legal pages) may be indexed by search engines to improve discoverability of KadiKonnect services. These pages include SEO metadata and structured data for search clarity. Operational dashboards, account-restricted pages, and protected event records are not intended for public indexing and remain access-controlled.

Processing...