Privacy Policy
This Privacy Policy explains how Loko Technologies collects, uses, stores, and discloses personal information when you visit our website or engage our services. Loko is committed to protecting personal data and respecting privacy. This policy describes the types of information we process, the legal bases for processing, how we protect data, your rights, and how to contact us about privacy matters. Please read this policy carefully. By using our website or contacting us, you agree to the terms described here. If you require more detail on a specific project, contractual terms will specify data handling and retention unique to that engagement. Our principal business address and contact information are listed at the bottom of this page for verifiable requests and formal notices.
Information We Collect
We collect information that you provide directly to us and information collected automatically. Information you provide may include contact details such as name, email address, phone number, organization, and message content submitted through contact or subscription forms. For service engagements we may collect project-specific data, billing information, and contractual documents. Automatically collected data includes technical details such as IP addresses, browser and device identifiers, page navigation events, and aggregated usage statistics. When needed and permitted by law, we may also collect limited identifiers for fraud prevention and to maintain service integrity. For on-device or edge deployments, we prioritize on-device processing when possible and design systems to minimize central collection. We do not collect sensitive personal data without explicit consent and contractual safeguards. Any third-party data sources we use are vetted and governed by data processing agreements that require appropriate protections and limited use restrictions.
How We Use Data
We use collected information to provide, maintain, and improve our services, to communicate with you, and to fulfill contractual obligations. Uses include responding to inquiries, delivering curated case materials, performing discovery and audits, and managing billing and legal requests. We analyze aggregated technical data to improve performance and reliability, to tune latency and energy characteristics of deployed systems, and to inform design decisions for dark-first interfaces that meet accessibility standards. When lawful bases require it, we rely on consent, legitimate interest, or contractual necessity for processing personal data. We do not sell personal information. Where sharing is necessary for service delivery, we limit disclosures to trusted vendors and contractors under written agreements that restrict use to contracted purposes. For any research or case material release, we anonymize or aggregate data to reduce re-identification risk and implement privacy safeguards such as local sketching or differential privacy techniques when appropriate.
Cookies and Tracking Technologies
We use minimal cookies and similar technologies to support website functionality, secure sessions, and basic analytics. Essential cookies are required for site navigation and form submissions. Non-essential cookies are used for aggregated analytics to understand site performance and to improve content and layout, including our dark-theme experience. You can accept or reject non-essential cookies using the cookie preference control displayed on the site. If you reject non-essential cookies, analytics data will be reduced and certain personalization features may be disabled. We do not place advertising cookies or use cross-site tracking for targeted advertising. For embedded or third-party components required for specific features, we limit integration and document any third-party cookie usage in project-level agreements. Cookie preferences are stored locally on your device and respected unless changed or cleared by the user.
Data Security and Retention
We implement administrative, technical, and physical safeguards to protect personal data against unauthorized access, disclosure, alteration, and destruction. Safeguards include encrypted transport for data in transit, access controls, least-privilege policies, and routine vulnerability assessments. For deployed systems we recommend and support cryptographic attestation and hardware-backed key storage where available. Retention periods depend on the purpose of collection and contractual obligations. Contact data from general inquiries is typically retained for up to 3 years unless a longer retention period is required by contract or law. Case materials and benchmark artifacts are either anonymized and retained for research purposes or stored under contract-specific retention schedules. If you request deletion, we will take reasonable steps to remove personal data from active systems and to de-identify records while respecting legal and operational constraints such as recordkeeping obligations for financial transactions or compliance audits.
Your Rights and How to Contact Us
Depending on your jurisdiction, you may have rights regarding your personal data, including access, correction, deletion, restriction of processing, portability, and the right to object to certain processing operations. For residents of the European Economic Area, we process data in line with applicable data protection laws and will respond to requests consistent with the General Data Protection Regulation. California residents may exercise rights under the California Consumer Privacy Act. To exercise any rights, to request a copy of the data we hold, or to raise a privacy concern, contact our privacy mailbox at [email protected] or send a written request to our corporate address below. For verifiable requests we may require additional information to confirm your identity and to prevent unauthorized disclosures. We will respond within the timeframes required by applicable laws and will provide information about any actions taken. If you remain unsatisfied after contacting us, you have the right to lodge a complaint with a supervisory authority in your jurisdiction.
Changes to This Policy
We may update this Privacy Policy to reflect changes in our practices or legal requirements. When material changes occur we will post an updated policy with a revised effective date. For minor changes that do not materially affect how we process personal data, we may update this document without prior notice. We encourage visitors and clients to review this page periodically. For contractual engagements, specific data handling provisions in the signed agreement take precedence over this general policy where they expressly differ. If you have questions about how changes affect your data or need confirmation of the currently effective policy for procurement or legal review, contact our privacy mailbox at [email protected] and we will provide a dated copy of the policy in effect.