Privacy Policy
This Global Privacy Policy describes how Coorridors (“we,” “us,” “our,” or the “Company”), collects, uses, and protects your personal data. We view data protection as a cornerstone of the trust and confidentiality that defines our relationship with you.
This policy applies to all individuals (“Data Subjects”) whose personal data is collected or processed by the Company, including visitors to our websites, users of our services, and any individual who interacts with us (“you”).
We have defined key terms that are used throughout this document. These definitions are designed to be comprehensive, incorporating principles from major global data protection laws.
“Personal data” means any data that relates directly or indirectly to a living individual, from which it is practicable to ascertain the identity of that individual, and which exists in a form from which access to or processing of the data is practicable. To reflect global practices, personal data includes, without limitation:
“Identifiers” means This encompasses real or legal names, aliases, nicknames, pseudonyms, postal addresses (physical, mailing, and billing), unique personal identifiers (such as account numbers or reference numbers), online identifiers (user IDs, cookies, device IDs), national identification numbers (e.g. Identity Card numbers, passport numbers), and any government-issued ID numbers where their collection is permitted or required by law.
“Electronic Identifiers” means IP addresses (both IPv4 and IPv6), Media Access Control (MAC) addresses, universal device identifiers (UDID), International Mobile Equipment Identity (IMEI) numbers, Subscriber Identity Module (SIM) numbers, cookies, web beacons, and pixel identifiers that can, alone or in combination with other data, enable the identification or tracking of an individual across websites or devices.
“Contact and Financial Information” means Telephone numbers (landline, mobile, fax), any messaging IDs (WhatsApp, Signal, Telegram), email addresses, billing/shipping addresses, bank account details, payment card details (including full or truncated card numbers, expiry dates, and security codes), billing account names, and records necessary to process and verify transactions.
“Commercial Information” means Detailed transaction histories, records of products or services purchased or subscribed to, purchase values, subscription types (e.g., one-time), loyalty program enrolment data, and transactional preferences or shopping habits derived from membership programs.
“Internet or Other Electronic Network Activity Information” means Browser type and version, language settings, time-zone settings, operating system and platform, clickstream data, search keywords, browsing history, session start/end times, timestamps of page views, referring/exit pages, online advertising impressions or interactions, and other metadata regarding interactions with our websites and advertisements.
“Communications Data” means Content and metadata from emails, chat logs, recorded phone calls, transcripts, complaint forms, survey responses, and customer service inquiries.
“Geolocation Data” means Broad geographic information inferred from IP addresses or device settings (city/region), and, where voluntarily provided or explicitly consented to, more precise geolocation data (e.g., GPS coordinates) collected by mobile apps or location-enabled services.
“Inferences” means Inferences drawn from any of the above categories to create a profile or dossier about an individual’s preferences, behaviours, psychological trends, attitudes, or predispositions, including predictive or analytic scores (e.g. propensity to purchase, credit scores, or marketing segments).
“Sensitive Personal Data (or Special Categories of Personal Data)” means This subset requires heightened protection because misuse could significantly harm an individual. Examples in many data‑privacy regimes include information about a person’s health, genetic or biometric identifiers, racial or ethnic background, religious or philosophical beliefs, political or trade‑union affiliations, and sexual orientation.
“Data Controller / Data User” means A Data Controller is the person or entity that, alone or jointly with others, decides why and how personal data are processed. For the purposes of this policy, Company is the Data Controller/Data User because it determines the purposes and methods of processing the personal data described above.
“Data Processor / Service Provider” means A natural or legal person or other body that processes personal data on behalf of the Data Controller/Data User. Examples include cloud-hosting providers, payment processors, delivery couriers, analytics vendors, marketing agencies, or IT-support companies that handle data based on our instructions. Data Processors are contractually bound to follow our instructions and to implement appropriate security measures; under some laws, they may also have direct statutory obligations.
“Processing” means Any activity performed on personal data, whether by automated means or manual means. This includes collection, receipt, access, handling, organization, structuring, storage, adaptation, modification, retrieval, consultation, analysis, use, reproduction, transmission, dissemination, or otherwise making available, alignment or combination, blocking, restriction, erasure, destruction, and any other operation that can be carried out on personal data. Even simple actions such as viewing a record, deleting a file, sorting or aggregating data, or combining data from two sources constitute processing.
Core Privacy Notice
We collect personal data lawfully and fairly and limit it to what is necessary for the purposes described.
What We Collect depends on your interactions with us. We may collect: Basic identifiers and contact information such as your name (or chosen alias) and contact details (e.g., billing address and email). Financial details such as transaction‑related information (e.g, payment card details) are processed for us by third‑party payment service providers. Usage and technical data, such as IP address, browser type, operating system, and general information about how you interact with our website or services. Marketing preferences detail your choices regarding receiving marketing or other communications from us.
The above categories are not exhaustive; we may collect additional information as necessary to achieve the purposes described below or to comply with legal obligations. We may update these categories without prior notice.
We collect your personal data in three primary ways: (i) Directly from you when you provide it voluntarily (e.g. by making a purchase, completing a form, or communicating with us); (ii)Automatically when you interact with our website or digital services, through cookies and similar technologies that record usage and technical data; and (iii) From third‑party sources, such as payment processors or service providers that support our operations, who may supply us with transactions or account information.
Purposes for Processing
We use personal data only for purposes that are lawful, directly related to our business functions, and reasonably necessary for those purposes. These include: (i) Service Provision: To process applications, register clients, provide our services, manage accounts, and process payments through authorized third-party providers. (ii) Relationship Management: To administer our relationship with clients, including communications about updates to our terms, policies, or services. (iii) Service Optimization: To conduct data analysis (on an aggregated or pseudonymized basis where possible) to maintain, safeguard, and enhance our website and services. (iv) Marketing Communications: To provide promotional or informational materials only where we are legally permitted to do so, and where you have not exercised your right to opt-out or object. (v) Legal and Regulatory Compliance: To meet obligations under applicable laws, regulations, or governmental requests, including record-keeping and dispute resolution.
Our Policies on Data Sharing and Disclosure
We may disclose personal data to third parties where it is necessary, appropriate, or legally required in connection with the purposes described in this Policy. (i) Service Providers (Data Processors): Third parties engaged to perform services on our behalf, including but not limited to payment processors, IT support, cloud hosting, and data storage providers. (ii) Professional Advisors: Such as auditors, legal counsel, financial institutions, or consultants engaged in legitimate business operations. (iii) Regulators and Authorities: Where disclosure is required under applicable law, regulation, court order, or government request.
Where personal data is transferred to service providers, we take steps (including contractual or other measures, where reasonably practicable) to require them to handle data securely, confidentially, and only for authorized purposes.
Data Security and Integrity
We use security measures that are appropriate to the nature of the data and the harm that could result from a breach. These measures may include physical, technical, and administrative safety measures. While we endeavor to protect personal data, no method of transmission or storage is completely secure; therefore, we cannot guarantee absolute security.
Data Accuracy and Retention
We rely on you to provide accurate and complete information and to keep it up to date. We take reasonable steps to maintain accuracy and may suspend use of data that we discover to be materially inaccurate until corrected
We retain personal data for as long as necessary to fulfil the purposes for which it was collected or for other legitimate business or legal purposes. We require any third‑party processors to delete or return personal data when it is no longer needed for the processing tasks we have assigned. Exact retention periods may vary depending on the nature of the data and our legal obligations.
Access and Correction of Your Personal Data
If local law provides you with such rights, you may submit a written request using the contact details below. We may require verification of your identity and, where permitted by law, charge a reasonable fee to cover administrative costs. We may also refuse requests in circumstances (e.g., where disclosure would prejudice security or where exemptions apply).
Marketing Communications and Consent
Where required by law, we will obtain your consent before sending marketing communications. In other jurisdictions, we may rely on our legitimate interests to send you information about our products or services. You can opt out of marketing communications at any time by following the instructions in the communication or contacting us. Opting out of marketing messages will not prevent us from sending you administrative or transactional communications relating to your account or services.
Use of Cookies and Other Tracking Technologies
We use cookies and similar technologies to operate, secure, and improve our services. Some cookies are strictly necessary for our website or app to function; others enable us to understand usage patterns or personalize content. You can manage cookies or disable them entirely through your browser settings. Please note that blocking or deleting cookies may affect the functionality and performance of our services. We do not provide a cookie‑consent banner; instead, you should refer to your browser’s help menu for instructions on how to adjust cookie settings.
Changes to this Policy
We may update this Privacy Policy. We encourage you to review the policy periodically to stay informed about how we collect and process personal data.