Data protection and privacy
This Privacy Policy establishes the terms under which No More Bullying uses and protects the information provided by its users when using our services. This platform is committed to the security of its users' data.
Effective date: January 27, 2025
Last update: July 28, 2025
Data controller: KO Bully - Child Protection Platform
a) Conversation content: We record all messages exchanged between the user and our artificial intelligence system.
b) Session metadata: Date, start and end time, duration of conversations.
c) Generated responses: All responses provided by our AI system.
SPECIAL PROTECTION: When names of minors are mentioned, our system automatically proceeds to anonymize them, replacing them with generic terms in all our records.
a) Connection information: IP address, browser type, operating system.
b) Device data: Type of device used to access the service.
c) Technical cookies: Only those strictly necessary for the functioning of the service.
No More Bullying does not collect or store:
Provide personalized and contextually relevant responses through our AI system.
Maintain continuity and coherence in conversations during a session.
Improve the quality and accuracy of the artificial intelligence system's responses.
Ensure service security and prevent malicious use.
Conduct aggregated and anonymized statistical analysis for research.
Comply with legal obligations and requirements from competent authorities.
Exercise or defend rights in legal proceedings.
Given the nature of our services, we apply enhanced protection measures for any information that may relate to minors:
Any reference to minors' proper names is automatically replaced with generic terms in our storage systems.
Access to conversations involving minors is limited exclusively to authorized personnel with specific training in child protection.
Conversations involving minors are automatically deleted within a maximum period of 90 days, less than the general retention period.
End-to-end encryption of all communications using TLS 1.3 protocols.
Data-at-rest encryption using AES-256 algorithms.
Intrusion detection and prevention systems (IDS/IPS).
Continuous monitoring of access and suspicious activities.
Multi-factor authentication for all personnel with data access.
Principle of least privilege access.
Regular security audits conducted by independent third parties.
Continuous staff training on data protection.
In accordance with the General Data Protection Regulation (GDPR) and applicable national legislation, users have the following rights:
Obtain confirmation about whether we are processing your personal data and, if so, access to such data.
Request the rectification of inaccurate data or the completion of incomplete data.
Request the deletion of your personal data when certain circumstances apply.
Request the suspension of processing of your data in certain circumstances.
Receive your data in a structured, commonly used and machine-readable format.
Object to the processing of your data for reasons related to your particular situation.
To exercise any of these rights, users can contact us through:
Email: hello@kobully.com
Response time: Maximum 30 calendar days from receipt of the request.
| Data Category | Retention Period | Legal Basis |
|---|---|---|
| General conversations | 6 months | Service improvement |
| Conversations with minors | 90 days | Special protection |
| Technical data | 12 months | Security and prevention |
| Security logs | 24 months | Legal compliance |
| Anonymized data | Indefinite | Research |
For any inquiries related to this Privacy Policy or the processing of your personal data, you can contact us: