Compliance v2.1
Privacy Protocol
This document outlines how Kina Digital Studio intercepts, processes, and secures your digital identity within the Kina OS ecosystem.
Data Collection & Interception
We collect "Signals" (personal data) through our booking terminals and Karina AI. This includes: • Identity Data: Name, business name, and job title. • Contact Data: Email address and telephone number. • Technical Data: IP address, browser type, and location data for security monitoring. • Usage Data: Information about how you use our OS and interact with our AI strategist.
AI & Automated Processing
Kina Digital uses Google Gemini 3 Flash to facilitate real-time strategy. • Logic: The AI analyzes your inputs to qualify your business for our services. • Rights: You have the right to contest any automated decision-making that produces legal effects. • Security: We utilize "Siloed Intelligence"—your inputs are encrypted and are not used to train public models.
Legal Basis for Processing
Under UK GDPR, we process your data based on: • Consent: Given when you interact with Karina or submit a form. • Contract: Necessary to take steps at your request before entering into a contract (e.g., a Strategy Session). • Legitimate Interests: For studio security and service improvement.
Data Retention & The 'Vault'
We do not keep data longer than necessary. Signals are stored in our Firebase Vault for 24 months from the last point of contact, unless a request for deletion is made. Technical logs are purged every 90 days.