KidunplugKidunplug

Privacy Policy

Last updated: March 2026

1. Who We Are

Kidunplug ("we," "us," "our") operates the website kidunplug.com. This privacy policy explains how we collect, use, and protect your personal data in compliance with the EU General Data Protection Regulation (GDPR) and applicable Romanian data protection law. Our data controller is SC 100 Lemons SRL, Romania.

2. What Data We Collect

Email address: When you complete the quiz or create an account. Used for authentication, sending quiz results, and protocol access.

Quiz responses: Your quiz answers are processed in your browser only. We store only your calculated screen balance profile result — not individual answers — unless you explicitly save them.

Purchase information: Payment processing is handled by Stripe, Inc. We receive order confirmations and store your email, purchase tier, and billing cycle for the purpose of granting access. We never see or store your payment card details. Stripe may collect additional data as described in their privacy policy at stripe.com/privacy.

Usage data: We collect anonymized analytics data to understand how visitors use the site. See the "Tracking Technologies" section below for full details.

IP address and technical data: Collected automatically by our servers for security and abuse prevention purposes. Not used for profiling.

3. Legal Basis for Processing

We process your data under the following legal bases: (a) Contract performance — to deliver the protocol you purchased and provide access to your account; (b) Legitimate interest — to improve our service, prevent fraud, and measure aggregate usage; (c) Consent — for marketing emails and advertising tracking cookies (where required).

4. How We Use Your Data

  • To deliver your quiz results and protocol content
  • To send transactional emails (access links, purchase confirmations, invoices)
  • To send marketing emails (only with your consent — you can unsubscribe anytime)
  • To measure advertising effectiveness and improve our campaigns
  • To generate invoices as required by Romanian tax law (SmartBill)

5. Tracking Technologies & Third-Party Services

Plausible Analytics — A privacy-first, cookieless analytics tool. Plausible does not use cookies, does not collect personal data, does not track users across sites, and is fully GDPR-compliant by design. No consent is required for Plausible. Learn more at plausible.io/privacy.

Meta Pixel (Facebook/Instagram) — Used for advertising conversion tracking and audience building. The Meta Pixel collects data about actions taken on our website and sends it to Meta Platforms, Inc. We also use Meta's Conversions API (server-side) for improved accuracy. Activated with your consent. Meta's data policy: facebook.com/policy.

TikTok Pixel & Events API — Used for advertising conversion tracking on TikTok. We also use TikTok's Events API for server-side tracking. Activated with your consent. TikTok's privacy policy: tiktok.com/legal/privacy-policy.

Google Ads Conversion Tag (gtag.js) — Used to measure conversions from our Google Ads campaigns (tag ID: AW-1015732827). Activated with your consent. Google's privacy policy: policies.google.com/privacy.

6. Data Sharing

We share data only with the following third parties, to the extent necessary:

  • Brevo (Sendinblue) — Email delivery service.
  • Stripe, Inc. — Payment processing.
  • SmartBill — Romanian invoicing software.
  • Meta Platforms, Inc. — Advertising analytics (with consent).
  • TikTok Inc. — Advertising analytics (with consent).
  • Google LLC — Advertising analytics (with consent).
  • Plausible Analytics — Cookieless, anonymized traffic analytics (no personal data shared).

We never sell your personal data to any third party.

7. Your Rights (GDPR)

You have the right to: access your data, rectify inaccurate data, erase your data ("right to be forgotten"), restrict processing, data portability, object to processing, and withdraw consent at any time. Contact us at [email protected] to exercise these rights. You also have the right to lodge a complaint with Romania's data protection authority (ANSPDCP) at dataprotection.ro.

8. Cookies & Consent

We use the following cookies:

  • Essential (always active): kidunplug_session (login session, 30 days) and kidunplug_consent (consent preferences, 1 year). Strictly necessary — cannot be disabled.
  • Cookieless analytics: Plausible Analytics uses no cookies and collects no personal data. No consent required.
  • Advertising tracking (consent required): Meta Pixel (up to 180 days), TikTok Pixel (up to 13 months), and Google Ads tag (up to 90 days). Only activated if you accept via our cookie banner. We also use Meta and TikTok server-side APIs for conversion tracking.

You can withdraw consent at any time by clearing your browser cookies or contacting [email protected]. To opt out of interest-based ads: facebook.com/ads/preferences · adssettings.google.com · TikTok → Ad Settings.

9. Data Retention

Account and purchase data is retained as long as your account is active or as required by Romanian accounting law (minimum 5 years for invoice records). You may request deletion of your personal data at any time.

10. International Transfers

Some of our third-party providers (Stripe, Meta, TikTok, Google) are based in the United States. Data transfers to the US are made under Standard Contractual Clauses (SCCs) approved by the European Commission.

11. Contact

For privacy inquiries or to exercise your rights: [email protected]