none

Ukrainian Startup Association

Privacy Policy

Updated: April 26, 2026

PUBLIC UNION “UKRAINIAN ASSOCIATION OF STARTUPS”
English name: UKRAINIAN ASSOCIATION OF STARTUPS
EDRPOU code: 44806870
Address: 16 Cherkaska Street, Apt. 3, Petropavlivska Borshchahivka village, Bucha District, Kyiv Region, 08129, Ukraine
Email for privacy requests: [email protected]

1. General Provisions

This Privacy Policy explains how the PUBLIC UNION “UKRAINIAN ASSOCIATION OF STARTUPS” processes personal data of website users, as well as individuals who contact us through website forms, within partnerships, communications, events, and other related activities.

We aim to process personal data lawfully, fairly, transparently, and only for specified purposes. This policy is prepared with due regard to the requirements of Regulation (EU) 2016/679 (GDPR) and the Law of Ukraine “On Personal Data Protection”.

2. Who Controls Your Personal Data

The controller of personal data for the purposes of applicable law is:

PUBLIC UNION “UKRAINIAN ASSOCIATION OF STARTUPS”
Email: [email protected]

At this time, no separate data protection officer (DPO) has been appointed. For any questions regarding personal data processing, access, correction, or deletion, you may contact us at: [email protected].

3. What Data We May Collect

Depending on how you interact with the website and with us, we may collect the following categories of data:

3.1. Data you provide through the contact form

  • name;
  • email address;
  • phone number;
  • message content.

3.2. Data collected automatically when you use the website

  • IP address;
  • browser and device technical data;
  • date, time, and pages visited;
  • technical access logs;
  • cookies and similar technologies;
  • aggregated or statistical website usage data.

3.3. Data processed in connection with third-party services

The website may use:

  • embedded YouTube videos;
  • analytics tools;
  • links to social media;
  • third-party forms or materials, where published in news, announcements, or partner-related content.

4. Why We Process Personal Data

We may process personal data for the following purposes:

  • to respond to your message or request;
  • to maintain further communication with you;
  • to administer and technically support the website;
  • to ensure information security, backups, and protection against abuse;
  • to analyse website performance and improve its functionality;
  • to display embedded or third-party content where you interact with such content;
  • to comply with legal obligations, where required.

5. Legal Bases for Processing

We may process personal data on the following legal bases:

  • your consent — for example, when you voluntarily submit a request through a form or consent to certain cookies or third-party content;
  • steps taken at your request — for example, when you contact us regarding partnership, participation, cooperation, or another request;
  • legitimate interest — for website security, stable operation, basic analytics, administration, and protection against technical abuse;
  • legal obligation — where processing is required by law.

6. How We Obtain Data

We obtain personal data:

  • directly from you when you complete a form on the website;
  • automatically when you use the website;
  • through WordPress, Fluent Forms, hosting, and related website administration tools;
  • through third-party services if you interact with embedded content or follow external links.

7. With Whom We May Share Data

We do not sell your personal data. Within the stated purposes, we may share or grant access to data with the following categories of recipients:

  • hosting providers;
  • email service providers;
  • the Fluent Forms service and WordPress technical components;
  • website technical administrators, where necessary to support the resource;
  • analytics or embedded service providers, within the scope of their functionality;
  • public authorities or other persons, only where explicitly required by law.

Where third-party content or forms are published on the website, further processing by such services is governed by their own privacy policies.

8. International Data Transfers

As of the date of this policy, we do not intend to carry out any separate, deliberate transfer of personal data outside Ukraine as part of our own website communication processes.

At the same time, certain third-party services integrated into the website or accessible through it may technically process certain data outside Ukraine. In such cases, data processing is governed by the rules and policies of the relevant third-party service.

9. Data Retention Period

We retain personal data no longer than necessary for the purposes for which it was collected, unless a longer period is required by law or by the terms of a specific project.

Messages submitted through the contact form may be stored for up to 12 months from the date of the last interaction, unless a longer retention period is required for:

  • compliance with legal requirements;
  • protection of rights and legitimate interests;
  • maintaining an archive of requests within the organisation’s activities;
  • implementation of a specific initiative or project.

After the retention period expires, data may be deleted or anonymised.

10. Where Data May Be Stored

Data submitted through the form may:

  • be delivered to [email protected];
  • be stored in the WordPress / Fluent Forms administration panel;
  • be included in website backups as part of standard technical maintenance.

11. Cookies and Similar Technologies

The website may use:

  • necessary cookies — for the proper functioning of the website;
  • analytics cookies — to understand user interaction with the website;
  • third-party cookies — including from services such as YouTube or other integrated tools;
  • marketing cookies — where such tools are actually used on the website.

A separate Cookie Policy may further specify the list, categories, retention periods, and consent management mechanism after implementation of a CMP / cookie banner.

12. Embedded Content and Third-Party Services

Certain pages of the website may contain:

  • embedded YouTube videos;
  • external links to social media;
  • links to or embeds of third-party forms and partner materials.

If you interact with such content, the third-party service may independently collect technical data and use cookies or other tracking technologies. We do not control the privacy policies of third parties and recommend reviewing their terms separately.

13. Rights of the Data Subject

You have the right to:

  • be informed about the sources, location, and purpose of processing of your data;
  • access your personal data;
  • request correction of inaccurate or incomplete data;
  • request deletion of data where provided by law;
  • request restriction of processing;
  • object to processing where permitted by law;
  • withdraw your consent at any time where processing is based on consent;
  • receive your data in a structured format where applicable;
  • lodge a complaint with a competent authority or apply to a court.

14. How to Exercise Your Rights

To exercise your rights, please contact us at: [email protected]

Your request should preferably include:

  • your name;
  • your contact details;
  • the nature of your request;
  • where possible, the page, form, or circumstances related to the request.

We may ask for additional information to verify your identity where necessary to protect your data from unauthorised access.

15. Complaints

If you believe that the processing of your personal data violates applicable law, you may:

  • contact us at [email protected];
  • file a complaint with the Ukrainian Parliament Commissioner for Human Rights;
  • apply to a court;
  • where GDPR applies, also contact the competent data protection authority in the relevant jurisdiction.

16. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects concerning you or similarly significantly affects you.

17. Children’s Data

The website is not intended for the targeted collection of children’s personal data. If you believe that a child has provided personal data without a proper basis, please contact us at [email protected], and we will consider deleting such data.

18. Data Security

We take reasonable technical and organisational measures to protect personal data, including the use of SSL connection and backups. However, no method of transmission or storage over the internet can guarantee absolute security.

19. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in website operation, legislation, or our data processing practices. The current version is always published on this page with the date of the latest update.

20. Contact Information

For all questions related to this Privacy Policy or the processing of personal data, please contact:

PUBLIC UNION “UKRAINIAN ASSOCIATION OF STARTUPS”
Email: [email protected]