PRIVACY POLICY
Last updated: 06.03.2026
1. Introduction
C-kata ("we," "our," "us") values your privacy. This Policy explains how we collect, use, and protect your personal data under GDPR and applicable laws.
2. Data Controller
Controller: TECH HAVEN LIMITED
Reg. No: 14287322
Address: 72 Halliwick Road London N10 1AB
Contact: [email protected]
3. Data We Collect
Account data: email, password (hashed), optional phone, social login ID.
Payment metadata: order ID, CKC purchased, amount, transaction ID. (No card details stored.)
Progress data: XP, current rank, CKC balance and usage history.
Technical logs: IP, device, browser, errors.
Cookies: essential + optional analytics/marketing (with consent).
We do not collect or store users' source code beyond their personal account scope.
4. How We Use Data
We use your data to:
Create and secure your account.
Process payments and maintain CKC balance.
Track your training progress (XP, ranks).
Provide support and resolve disputes.
Compile anonymized statistics to improve the Service.
We do not use data for profiling or automated decisions with legal effect.
5. Data Sharing
Payment processors: secure, PCI-DSS compliant.
Hosting, email, and security providers.
Regulators/courts: if legally required.
We never sell or rent your personal data.
All subprocessors (hosting, analytics, email) are located in the EU or use Standard Contractual Clauses (SCCs) for data transfers.
6. Retention
Account data: until you delete your account.
Payment records: 7 years (legal requirement).
Logs: 30 days.
Progress data: stored until your account is deleted.
7. Training Materials & Sources
The Service provides training steps in C programming. Most are created and owned by C-kata.
Some exercises are adapted from http://exercism.org and are distributed under the http://opensource.org/license/MIT license. These materials remain open-source and are provided "as is," without warranty, as stated in the MIT License.
8. Your Rights
You may:
Access, correct, erase, or export your data.
Object to processing.
Withdraw cookie consent.
File complaints with [Supervisory Authority].
9. Security
TLS encryption. Data is encrypted both in transit (TLS 1.3) and at rest.
Hashed & salted passwords.
Limited staff access.
Regular audits and monitoring.
10. Children
The Service is for users 18+ only. We do not knowingly collect children's data.
11. Cookies
Essential cookies are always active.
Analytics/marketing cookies only with your consent.
Details are in our Cookie Policy.
12. Changes
We may update this Policy from time to time. The latest version is always available at ckata.com/privacy.