Privacy Policy

1. General Provisions

1.1. This Privacy and Personal Data Processing Policy (hereinafter referred to as the "Policy") defines the rules for collecting, using, storing, and protecting personal data received by the Kurslog online platform (hereinafter referred to as the "Platform"), operating at https://kurslog.com (hereinafter referred to as the "Site"). The document also regulates the Platform's interaction with third parties and the procedure for accessing personal information.

1.2. The Platform respects the privacy of every User of the Site (an individual or legal entity visiting https://kurslog.com, hereinafter referred to as the "User") and strives to guarantee safe and comfortable use of the service by ensuring an appropriate level of personal data protection.

1.3. The Policy is developed in accordance with the Constitution of Ukraine, the Law of Ukraine "On Personal Data Protection", other regulatory acts of Ukraine, as well as GDPR requirements in the case of processing data of European Union residents.

1.4. The current version of the Policy is a public document and is available on the Site under the "Privacy Policy" link.

1.5. The Platform is not responsible for the privacy policy and content of external resources, hyperlinks to which may be placed on the Site.

1.6. By using the Site, the User confirms their agreement with the terms of this Policy. In case of disagreement with any clause of the Policy, the User is obliged to stop using the Site.

1.7. For issues related to the realization of User rights regarding personal data, please contact: support@kurslog.com.

2. Collection and Use of Personal Data

2.1. The Platform processes Users' personal data for the purpose of the correct functioning of the Site, improving the quality of services, conducting statistical analysis, as well as for sending informational, service, or technical messages.

2.2. This Policy describes the processing of personal data of persons who:

• visit the Site;
• view information about exchange rates, subscribe to notifications, or interact with the Platform's functionality;
• may be counterparties or persons whose data is processed within the scope of the Platform's activities.

2.3. The Platform may process the following categories of personal data:

• identification data: user name or company/service name;
• contact details: email;
• technical information: IP address, browser type, OS version, device identifiers, interface language;
• Site usage data: viewed pages, activity logs, session timestamps;
• cookies and analytical data (more details in clause 2.6).

2.4. Data may come from the following sources:

• from the User — when filling out forms, subscribing, or making inquiries;
• automatically — during the use of the Site (cookies, analytical tools, event logs).

2.5. The Platform does not process financial, payment, banking, or KYC data of Users.

2.6. Use of Cookies and Analytical Tools

2.6.1. The Site uses "cookie" technology (small text files stored on the User's device) to save settings, authorization, and analyze traffic.

2.6.2. To analyze user behavior and optimize the operation of the Site, the web analytics service Google Analytics provided by Google LLC is used.

2.6.3. Information generated by the cookie about the use of the Site (including the IP address, but without direct personal identification) is transmitted to Google servers and stored there. This data is used to compile reports on activity on the Site.

2.6.4. The User can prohibit the saving of cookies in their browser settings. Also, the User can prohibit Google from collecting data by installing the official plugin: Google Analytics Opt-out Browser Add-on.

2.6.5. By continuing to use the Site without changing browser settings, the User agrees to the use of cookies and data processing by Google in the manner and for the purposes indicated above.

3. User Rights

3.1. The User has the right to:

• receive information about how and for what purpose their personal data is processed;
• request access to their personal data;
• request correction or deletion of personal data;
• restrict processing or express an objection to it within the limits of applicable law;
• withdraw consent to the processing of personal data;
• file a complaint with authorized bodies for personal data protection.

3.2. To exercise their rights, the User can contact: support@kurslog.com.

4. Processing of Personal Data

4.1. Processing of personal data is carried out on servers and in data centers that ensure the operation of the Platform.

4.2. The Platform implements organizational and technical measures to prevent unauthorized access, loss, alteration, or destruction of personal data.

5. Retention Period

5.1. Personal data is stored for the period necessary to achieve the purpose of its processing, or until the User withdraws consent, unless otherwise provided by law.

6. Disclosure of Personal Data

6.1. The Platform may transfer personal data to third parties exclusively in cases of:

• compliance with legal requirements or decisions of state bodies;
• obtaining direct consent from the User;
• transferring data to providers of technical or analytical services (including Google LLC) provided they maintain confidentiality.

6.2. Third parties receiving access to personal data are required to comply with this Policy and applicable laws.

7. Protection of Personal Data

7.1. Kurslog applies a complex of technical and organizational measures for the security of personal information, in particular:

• access control to server infrastructure;
• data encryption during transmission;
• regular audit of security processes;
• physical protection of equipment.

The Platform strives to minimize risks as much as possible, however, it cannot guarantee absolute protection against threats beyond its influence.

7.2. The User must independently ensure the confidentiality of their authorization data (email, access to third-party services, etc.). In case of suspicion of data compromise, the User must immediately notify the Platform.

8. Disclosure of Confidential Information

8.1. The Platform is released from confidentiality obligations if the User has independently made their data public.

8.2. The Platform may disclose personal data if such information is of public significance and the public interest outweighs potential harm.

8.3. Transfer of personal data is possible based on the User's written permission.

8.4. The Platform does not transfer personal data to third parties, except for cases directly specified in this Policy or by legal requirements.

8.5. The Platform may provide access to personal data to its employees, partners, contractors, or advisors — solely for the purpose of performing their duties and subject to confidentiality.

8.6. There may be external links on the Site. After following a link to a third-party resource, this Policy does not apply. Users are recommended to familiarize themselves with the separate policies of such resources.

9. Changes to the Policy

9.1. The Platform may make changes to this Policy without prior notice to Users.

9.2. The updated version of the Policy will be published on the Site and will enter into force from the moment of posting. Continued use of the Site means the User's agreement with the new terms.

9.3. Date of last update: November 29, 2025.