← Back to Home

Privacy Policy

Last updated: 12/11/2025

1. Introduction

KoreKloud ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us, including:

  • Account information (name, email address, password)
  • Profile information
  • Content you create (courses, questions, answers)
  • Communications with us

2.2 OAuth Authentication

When you sign in using OAuth providers (Google, Microsoft, Facebook, Apple), we collect:

  • Your email address
  • Your name
  • Your profile picture (if available)
  • OAuth provider user ID

2.3 Automatically Collected Information

We automatically collect certain information when you use our Service:

  • Device information (IP address, browser type, operating system)
  • Usage data (pages visited, features used, time spent)
  • Authentication logs (login attempts, session information)
  • Approximate location (city, region, country) derived from your IP address for security and analytics purposes

2.4 IP Geolocation

We use IP geolocation services to derive your approximate location (city, region, and country) from your IP address. This information is used for:

  • Security monitoring and fraud detection
  • Audit logging and compliance
  • Analytics and service improvement

Important: We do NOT collect or store precise GPS coordinates or exact location data. The location information we derive from your IP address is approximate and limited to city-level granularity. This is not considered personally identifiable information (PII) and does not require explicit consent under GDPR and CCPA.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Provide, maintain, and improve our Service
  • Process your authentication and manage your account
  • Send you technical notices and support messages
  • Respond to your comments and questions
  • Detect, prevent, and address security issues
  • Monitor and analyze usage patterns and trends
  • Personalize your experience

4. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Passwords are hashed using bcrypt with 12 rounds
  • Email verification codes are hashed with HMAC-SHA256
  • HTTPS/TLS encryption for data in transit
  • Secure session management with HTTP-only cookies
  • Regular security audits and logging
  • Access controls and authentication measures

5. Data Sharing and Disclosure

We do not sell your personal data. We may share your information only in the following circumstances:

  • With your consent
  • To comply with legal obligations
  • To protect our rights and prevent fraud
  • With service providers who assist in operating our Service
  • In connection with a business transfer or acquisition

6. OAuth Provider Data

When you authenticate using OAuth providers (Google, Microsoft, Facebook, Apple), we only request the minimum necessary permissions (email and profile). We do not access or store your OAuth provider credentials. Your OAuth tokens are encrypted if stored and are used solely for authentication purposes.

7. Cookies and Tracking

We use HTTP-only, secure cookies to maintain your session. These cookies are essential for the Service to function and cannot be disabled without preventing you from using the Service.

8. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to processing of your data
  • Export your data
  • Withdraw consent at any time

To exercise these rights, please contact us at privacy@korekloud.com

9. Data Retention

We retain your personal data only for as long as necessary to provide you with the Service and for legitimate business purposes. When you delete your account, we will delete or anonymize your personal data, except where we are required to retain it for legal purposes.

10. Children's Privacy

Our Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. We ensure appropriate safeguards are in place to protect your data.

12. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Email: privacy@korekloud.com
Address: [Your Company Address]

← Terms & ConditionsSign Up →