Last Updated: 31 July 2025

1. Our Commitment to Your Privacy

Welcome to Kollox Limited ("we", "our", or "us"). We are a web design company based in Malta, dedicated to creating exceptional online experiences. Your privacy is of the utmost importance to us. This Privacy Policy outlines how we collect, use, protect, and handle your personal information when you visit our website, kollox.mt (the "Site"), or engage with our services, in compliance with the General Data Protection Regulation (GDPR) and Maltese law.

2. Who We Are (The Data Controller)

For the purpose of the GDPR, the data controller is:

Company Name: Kollox Limited
Company Number: C51783
Registered Address: Greystone, Flat 2, Sqaq San Isidoru, MÄ¡arr, MGR 1271, Malta
Email for privacy inquiries: privacy@kollox.mt

3. What Information We Collect and Why

We collect information to operate effectively and provide you with the best possible service.

a) Information You Provide Directly to Us

What we collect: When you fill out our contact form, send us an email, or call us, you may provide us with your name, email address, phone number, company name, and details about your project inquiry.

Purpose of use: To respond to your questions, provide you with a quote, and communicate with you about your project.

Legal Basis:

  • Legitimate Interest: We have a legitimate interest in responding to your inquiries.
  • Contractual Necessity: If you proceed with a project, we process this data to take steps towards entering into a contract with you.

b) Information We Collect Automatically (Technical Data)

What we collect: When you browse our Site, our servers automatically log technical data, including your IP address, browser type, operating system, access times, and referring URLs. We also use cookies and similar technologies.

Purpose of use: To ensure the security and proper functioning of our website, to analyse website traffic, and to improve the user experience.

Legal Basis:

  • Legitimate Interest: For securing our website and understanding its performance.
  • Consent: For non-essential cookies (like analytics or marketing cookies), we will ask for your explicit consent via our cookie banner.

4. Cookies and Tracking Technologies

Our Site uses cookies to enhance your experience. Cookies are small text files placed on your device.

  • Strictly Necessary Cookies: These are essential for the website to function and cannot be switched off.
  • Performance & Analytics Cookies: These help us understand how visitors interact with our website by collecting information anonymously. (e.g., Google Analytics).
  • Functional Cookies: These enable enhanced functionality and personalisation.

We will ask for your consent before placing any non-essential cookies on your device. You can manage your cookie preferences at any time through our cookie settings panel or by adjusting your browser settings.

5. How We Share Your Information

We do not sell, rent, or trade your personal information. However, we may share it with trusted third parties in the following limited circumstances:

  • Service Providers (Data Processors): We may share information with companies that provide services on our behalf, such as website hosting, analytics platforms (e.g., Google Analytics), and communication tools. These providers are contractually obligated to protect your data and can only use it for the specific services they provide to us.
  • Legal Obligations: We may disclose your information if required to do so by law or in response to a valid request from a public authority (e.g., a court or government agency).
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction. We will notify you of any such change.

6. Data Retention

We will only retain your personal data for as long as is necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Contact Inquiries: Data from contact forms is retained until your inquiry is resolved and for a reasonable period thereafter for follow-up purposes.
  • Client Data: If you become a client, we will retain your data for the duration of our business relationship and for a further period as required by Maltese law (e.g., for tax and company records).
  • Analytics Data: Anonymised analytics data may be retained for longer periods.

7. Data Security

We have implemented appropriate administrative, technical, and physical security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. These measures include SSL encryption for data transmitted to our Site and access controls within our organisation. However, please be aware that no method of transmission over the internet or electronic storage is 100% secure.

8. International Data Transfers

Some of our third-party service providers (such as Google Analytics) may be based outside the European Economic Area (EEA). When we transfer your data outside the EEA, we ensure a similar degree of protection is afforded to it by using safeguards like the European Commission's Standard Contractual Clauses (SCCs) or ensuring the provider is in a country deemed to have adequate data protection laws.

9. Your Data Protection Rights under GDPR

As a resident of the EEA, you have the following rights regarding your personal data:

  • The right to access: You can ask for copies of your personal data.
  • The right to rectification: You can ask us to correct inaccurate information or complete incomplete information.
  • The right to erasure ("right to be forgotten"): You can ask us to delete your personal data in certain circumstances.
  • The right to restrict processing: You can ask us to limit the use of your personal data in certain circumstances.
  • The right to object to processing: You can object to the processing of your data where we are relying on a legitimate interest.
  • The right to data portability: You can ask that we transfer the information you gave us to another organisation, or to you, in certain circumstances.
  • The right to withdraw consent: Where we rely on your consent to process data, you can withdraw that consent at any time.

To exercise any of these rights, please contact us at privacy@kollox.mt.

You also have the right to lodge a complaint with a supervisory authority. The lead supervisory authority in Malta is the Information and Data Protection Commissioner (IDPC). You can find their contact details at https://idpc.org.mt/.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by a "Last Updated" date at the top of this policy. We encourage you to review it periodically.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please do not hesitate to contact us:

Kollox Limited
Greystone, Flat 2
Sqaq San Isidoru
MÄ¡arr, MGR 1271
Malta
Email: support@kollox.mt

Disclaimer: This is a template and should not be considered legal advice. It is recommended to have this policy reviewed by a qualified legal professional in Malta to ensure full compliance with all applicable laws and regulations.