GDPR Policy
Last updated: 28 December 2025
Quiziva is committed to complying with the General Data Protection Regulation (GDPR) and ensuring the protection of your personal data. This policy outlines our practices regarding the collection, use, and protection of your personal data in accordance with EU Regulation 2016/679.
Data Controller
Quiziva is the data controller for the personal data you provide on our website. Our registered address and contact details are available at info@quiziva.com. For all data protection inquiries, please contact us at info@quiziva.com
Data Collection
We collect and process personal data when you:
- Pre-register on our website (name, email, organization, role).
- Subscribe to our newsletter (email address).
- Contact us via the provided contact forms (name, email, phone number, message content).
- Use our platform and services (usage data, IP address, browser information).
Legal Basis for Processing
We process your personal data based on the following legal grounds:
- Consent (Article 6(1)(a) GDPR): When you subscribe to our newsletter or contact forms.
- Legitimate interests (Article 6(1)(f) GDPR): For managing pre-registrations, improving our services, and responding to inquiries.
- Contractual necessity (Article 6(1)(b) GDPR): To provide services you have requested.
- Legal obligation (Article 6(1)(c) GDPR): To comply with applicable laws and regulations.
Data Usage
Your personal data is used exclusively for the following purposes:
- Managing your pre-registration and communicating product updates and launch information.
- Sending newsletters and marketing communications (only if you have opted in).
- Providing customer support and responding to your inquiries within 24 hours.
- GDPR.ITEM8B
- Complying with legal obligations and preventing fraud or abuse.
Data Sharing and Third Parties
We do not sell, rent, or trade your personal data. We may share your data only with:
Data Retention
We retain your personal data only as long as necessary:
- Active users: Data retained while your account is active and for 12 months after last activity.
- Newsletter subscribers: Until you unsubscribe or for a maximum of 3 years of inactivity.
- Contact form inquiries: Retained for 2 years from the date of inquiry.
- Legal compliance: Some data may be retained longer to comply with legal obligations (e.g., tax records for 7 years).
Your Rights Under GDPR
You have the following rights regarding your personal data:
- Right of Access (Article 15): Request a copy of your personal data we hold.
- Right to Rectification (Article 16): Request correction of inaccurate or incomplete data.
- Right to Erasure (Article 17): Request deletion of your personal data ('right to be forgotten').
- Right to Restriction (Article 18): Request limitation of processing your data.
- Right to Data Portability (Article 20): Receive your data in a structured, machine-readable format.
- Right to Object (Article 21): Object to processing based on legitimate interests or for direct marketing.
- Right to Withdraw Consent (Article 7(3)): Withdraw consent at any time without affecting prior processing.
- Response Time: We will respond to your requests within 5 working days and provide the requested data within 30 days (extendable by 60 days for complex requests). To exercise these rights, please contact us at info@quiziva.com with proper identification.
Data Protection Officer
We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance and handle data protection inquiries. You can contact our DPO directly at dpo@quiziva.com or via our general contact email info@quiziva.com
Data Security Measures
We implement appropriate technical and organizational measures to protect your data:
- Encryption of data in transit (SSL/TLS) and at rest (AES-256).
- Regular security audits and penetration testing.
- Access controls and authentication mechanisms (multi-factor authentication).
- Employee training on data protection and confidentiality obligations.
- Incident response procedures with breach notification within 72 hours if required.
International Data Transfers
Your data is primarily stored and processed within the EU/EEA. If we transfer data outside the EU/EEA, we ensure adequate protection through:
- European Commission adequacy decisions.
- Standard Contractual Clauses (SCCs) approved by the European Commission.
- Binding Corporate Rules or other approved mechanisms.
Complaints and Supervisory Authority
If you believe your data protection rights have been violated, you have the right to lodge a complaint with the supervisory authority:
- In Romania: Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP).
- You may also contact the supervisory authority in your EU member state.
- However, we encourage you to contact us first at info@quiziva.com so we can address your concerns promptly.
Automated Decision-Making and Profiling
We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.
Children's Privacy
Our services are not directed to children under 16 years of age. We do not knowingly collect personal data from children. If you are a parent or guardian and believe we have collected data from a child, please contact us immediately at info@quiziva.com.
Changes to This Policy
We may update our GDPR Policy as necessary to reflect changes in our practices or legal requirements. We will notify you of any material changes by:
- Posting the updated policy on our website with a new 'Last Updated' date.
- Sending an email notification to registered users (for significant changes).
- Providing a 30-day notice period before changes take effect where required by law.
Contact Information
For any questions, concerns, or requests regarding this GDPR Policy or your personal data, please contact us at info@quiziva.com. We are committed to resolving any complaints or concerns you may have about our data processing practices.
Copyright 2026 Quiziva. All Rights Reserved