1. General Provisions
1.1. This Privacy Policy (the “Policy”) is prepared in accordance with the Law of Georgia on Personal Data Protection (No. 3144/2023) and other applicable legislation of Georgia regulating the processing and protection of personal data (“Georgian Data Protection Law”).
1.2. This Policy explains how Kvaligate LLC (the “Company”, “we”) processes and protects personal data of users of the website available at https://kvaligate.com/privacy-policy and other pages under the kvaligate.com domain (the “Website”).
1.3. By accessing and using the Website, the user (“User” or “Data Subject”) confirms that he/she has read this Policy and agrees with the rules of processing described here. If the User does not agree with this Policy, he/she must stop using the Website.
2.Categories of Personal Data
2.1. The Company may process the following personal data provided directly by the User:
name and surname;
contact details (e-mail address, telephone number);
company name, position and other business details (if provided in forms);
any other information voluntarily submitted by the User via Website forms or by contacting the Company.
2.2. When the User visits the Website, the Company may automatically collect certain technical and usage data, including: IP address, browser type and version, device information, cookie identifiers, date and time of access, visited pages, referral source and similar technical data. Such data may be processed in anonymised or pseudonymised form for security and analytics purposes.
3. Purposes of Processing
3.1. The Company processes personal data only for specific and legitimate purposes, including:
providing access to the Website and its content;
responding to User requests, inquiries and feedback;
sending service-related messages and important technical or legal updates;
improving the Website, user experience, security and performance based on aggregated statistics;
fulfilling legal obligations under the laws of Georgia;
sending informational or marketing communications (news, updates, offers) where allowed by Georgian law and subject to the User’s right to object or unsubscribe.
4. Legal Grounds
4.1. The Company processes personal data only where at least one of the legal grounds under Georgian Data Protection Law is present, including:
the User’s consent to one or more specific purposes;
necessity for the performance of a contract or pre-contractual steps at the User’s request;
necessity for compliance with legal obligations of the Company under the legislation of Georgia;
necessity for the purposes of the Company’s legitimate interests (such as Website security, service improvement), provided that such interests do not override the rights and freedoms of the User.
5. Processing and Transfer of Data
5.1. Personal data are processed lawfully and fairly, only to the extent necessary to achieve the purposes specified in this Policy, and are not kept longer than required by those purposes or by Georgian legislation.
5.2. Access to personal data is limited to Company employees and service providers who need such data to perform their duties and who are bound by confidentiality obligations.
5.3. The Company may transfer personal data to third parties in the following cases:
the User has given explicit consent;
the transfer is necessary to provide services to the User (for example, hosting providers, analytics tools, communication platforms);
the transfer is required by Georgian law or by a lawful request of competent authorities;
the data are provided in anonymised or aggregated form for statistics and analytics, without identifying the User.
5.4. If personal data are transferred outside Georgia, the Company will ensure that such transfer is carried out in compliance with Georgian Data Protection Law and, where required, with appropriate safeguards.
6. User Rights
6.1. The User has the rights granted by Georgian Data Protection Law, including the right:
to receive information on the processing of his/her personal data;
to request correction or update of inaccurate or incomplete data;
to request suspension, blocking or deletion of personal data in cases provided by law;
to object to processing for direct marketing or, in certain cases, based on legitimate interests;
to withdraw consent at any time, without affecting the lawfulness of processing before withdrawal;
to lodge a complaint with the Personal Data Protection Service of Georgia or a competent court if the User believes that his/her rights have been violated.
7. Data Security
7.1. The Company takes reasonable technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, loss or destruction, in accordance with Georgian Data Protection Law.
7.2. Despite these measures, no method of transmission over the Internet or method of electronic storage is completely secure. The Company cannot guarantee absolute security of data but undertakes to react to incidents in accordance with legal requirements
8. Cookies and Analytics
8.1. The Website may use cookies and similar technologies to ensure correct operation of the Website, remember User preferences and perform analytics. Some cookies are strictly necessary; other cookies may be used only with the User’s consent if required by Georgian law.
8.2. By continuing to use the Website, the User agrees to the use of cookies according to this Policy and the settings of his/her browser or device. The User can disable or limit cookies in browser settings; however, some functions of the Website may not work properly.
9. Retention Period
9.1. Personal data are stored for as long as necessary to achieve the purposes described in this Policy, unless a longer or shorter retention period is required by applicable Georgian legislation (for example, limitation periods or statutory storage obligations).
9.2. After the retention period expires, personal data are deleted, anonymised or securely archived, in line with internal procedures and legal requirements.
10. Amendments
10.1. The Company may update this Policy from time to time to reflect changes in legislation or in the way the Website operates. The updated version will be published at https://kvaligate.com/privacy-policy.
10.2. Unless otherwise stated, changes become effective upon publication on the Website. Continued use of the Website after publication of an updated Policy means acceptance of such changes. If the User does not agree with the updated Policy, he/she should stop using the Website.
11. Contact Information
If you have any questions or requests regarding this Privacy Policy, please contact us:
Company name: Kvaligate LLC
Email: hello@kvaligate.com
Address: Georgia, Kutaisi, 88 Avtomshenebeli St. (SIZ)
Registration number: 412798153
