General Data Protection Regulation (GDPR) Compliance

Last Updated: December 11, 2025

Serikdun ("we," "our," or "us") is committed to protecting your personal data and respecting your privacy rights under the General Data Protection Regulation (GDPR). This policy explains how we collect, use, store, and protect your personal information when you use our webinar platform and related services.

1. Data Controller Information

Company Name: Serikdun

Address: Zarichanska St, 3/1, Khmelnytskyi, Khmelnytskyi Oblast, Ukraine, 29000

Email: support@serikdun.com

Phone: +380677390729

2. Legal Basis for Processing Personal Data

We process your personal data under the following legal grounds:

Consent: You have given clear consent for us to process your personal data for specific purposes, such as newsletter subscriptions or marketing communications.

Contract Performance: Processing is necessary to fulfill our contractual obligations to you, including providing access to webinars and educational content.

Legal Obligation: Processing is necessary to comply with legal requirements, such as tax regulations or accounting obligations.

Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our services, fraud prevention, and system security, provided these interests do not override your fundamental rights.

3. Types of Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Identity and Contact Information

Name, email address, phone number, username, and profile information you provide during registration.

3.2 Account and Registration Data

3.3 Technical and Usage Data

IP address, browser type, device information, operating system, webinar attendance records, interaction data, and platform usage patterns.

3.4 Communication Data

Messages sent through our platform, chat logs during webinars, questions submitted to presenters, and support correspondence.

3.5 Payment Information

Billing address, payment method details (processed securely by third-party payment processors), and transaction history.

4. How We Use Your Personal Data

We use your personal data for the following purposes:

Service Delivery: To provide access to webinars, process registrations, manage your account, and deliver educational content.

Communication: To send webinar notifications, updates, confirmations, technical notices, and respond to your inquiries.

Platform Improvement: To analyze usage patterns, improve user experience, develop new features, and enhance service quality.

Security and Fraud Prevention: To protect our platform, detect unauthorized access, prevent fraudulent activities, and ensure system integrity.

Marketing: To send promotional materials, newsletters, and information about upcoming webinars, only with your explicit consent.

Legal Compliance: To fulfill legal obligations, respond to legal requests, and enforce our terms and conditions.

5. Your Rights Under GDPR

As a data subject, you have the following rights:

5.1 Right to Access

You have the right to request confirmation of whether we process your personal data and obtain a copy of your data.

5.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

5.3 Right to Erasure

You have the right to request deletion of your personal data under certain circumstances, including when data is no longer necessary for its original purpose or you withdraw consent.

5.4 Right to Restriction of Processing

You have the right to request limitation of how we process your data in specific situations.

5.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and transmit it to another controller.

5.6 Right to Object

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

5.7 Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal.

5.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated.

6. How to Exercise Your Rights

To exercise any of your rights under GDPR, please contact us using the following methods:

Email: support@serikdun.com

Phone: +380677390729

Mail: Zarichanska St, 3/1, Khmelnytskyi, Khmelnytskyi Oblast, Ukraine, 29000

We will respond to your request within one month of receipt. In complex cases, we may extend this period by two additional months and will inform you of any extension.

7. Data Sharing and Third-Party Processors

We may share your personal data with the following categories of recipients:

7.1 Service Providers

Third-party vendors who provide hosting services, payment processing, email delivery, analytics, customer support, and technical infrastructure.

7.2 Webinar Presenters and Hosts

Educational experts and instructors who conduct webinars may receive limited participant information necessary for delivering their sessions.

7.3 Legal Authorities

Government agencies, law enforcement, or regulatory bodies when required by law or to protect our legal rights.

7.4 Business Transfers

Potential buyers or investors in the event of a merger, acquisition, or sale of company assets.

All third-party processors are required to implement appropriate technical and organizational measures to protect your personal data and process it only as instructed by us.

8. International Data Transfers

Your personal data may be transferred to and processed in countries outside your country of residence. When we transfer data internationally, we ensure appropriate safeguards are in place, including:

Standard Contractual Clauses: Approved by the European Commission to ensure adequate protection.

Adequacy Decisions: Transfers to countries recognized by the European Commission as providing adequate data protection.

Appropriate Safeguards: Other legally recognized mechanisms to protect your data during international transfers.

9. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

Active Accounts: Data is retained while your account remains active and for a reasonable period afterward to facilitate account reactivation.

Legal Obligations: Data required for tax, accounting, or legal compliance is retained according to applicable retention periods.

Legitimate Interests: Data may be retained to defend against legal claims or resolve disputes.

After the retention period expires, we securely delete or anonymize your personal data.

10. Data Security Measures

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

Encryption: Data transmission and storage encryption using industry-standard protocols.

Access Controls: Restricted access to personal data on a need-to-know basis with authentication requirements.

Security Monitoring: Regular monitoring for security vulnerabilities and unauthorized access attempts.

Employee Training: Staff training on data protection principles and secure handling practices.

Incident Response: Procedures for detecting, reporting, and responding to data breaches.

11. Automated Decision-Making and Profiling

We may use automated processing to personalize your experience, such as recommending relevant webinars based on your interests and past attendance. You have the right to:

Request human intervention in automated decision-making processes.

Express your point of view regarding automated decisions.

Contest decisions made solely by automated means that produce legal effects or significantly affect you.

12. Cookies and Tracking Technologies

Our platform uses cookies and similar tracking technologies. For detailed information about our cookie practices, please refer to our Cookie Policy. You can control cookie preferences through your browser settings or our cookie consent management tool.

13. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly.

14. Data Breach Notification

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. If the breach poses a high risk, we will also notify affected individuals without undue delay.

15. Changes to This Policy

We may update this GDPR Compliance Policy periodically to reflect changes in our practices, legal requirements, or operational needs. We will notify you of material changes by:

Posting the updated policy on our website with a new "Last Updated" date.

Sending email notifications to registered users for significant changes.

Requesting renewed consent where required by law.

Your continued use of our services after policy changes constitutes acceptance of the updated terms.

16. Contact Information

For questions, concerns, or requests regarding this GDPR Compliance Policy or our data processing practices, please contact us:

Email: support@serikdun.com

Phone: +380677390729

Address: Zarichanska St, 3/1, Khmelnytskyi, Khmelnytskyi Oblast, Ukraine, 29000

17. Supervisory Authority

If you believe your data protection rights have been violated and are not satisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority.

Effective Date: This policy is effective as of December 11, 2025, and applies to all personal data processing activities conducted by Serikdun.