Privacy Policy

LOREMMokka Studios is the data controller for personal data processed through Kora. Postal address, registration number, VAT number, and DPO contact (if appointed) live on the Imprint page.

LOREMCategories of personal data: authentication identifiers (email, OAuth tokens), profile data (name, age, gender, photos, bio, interests, lifestyle answers), location and device data, booking and chat data, payment metadata via Stripe, and usage/diagnostic data.

LOREMMerchants additionally provide business identifiers, IBAN, and Stripe Connect verification documents.

LOREMEach processing purpose has a documented GDPR Art. 6 legal basis: contract performance (authentication, bookings, payment), legitimate interest (anti-fraud, product analytics), legal obligation (tax, AML), and consent (cookies + marketing).

LOREMSub-processors: Supabase (auth + database + storage + realtime), Stripe (payments + Connect onboarding), Resend (transactional email), Amplitude (product analytics — only when analytics cookies are accepted), Sentry (error monitoring), Expo / EAS (mobile push), Google / Apple (SSO providers).

LOREMSome processors are US-based. Transfers are covered by Standard Contractual Clauses or equivalent safeguards. The full list of sub-processors and their hosting jurisdictions will be published before service launch.

LOREMAccount data is retained for the lifetime of the account plus the period required by Italian and Romanian tax/AML law. On account deletion, personal identifiers are anonymized while accounting records are kept for the legally-required period.

LOREMUnder GDPR you have the right to access, rectify, erase, port, restrict, and object to the processing of your personal data. Exercise these rights via the contact form at /contact under the topic “Legal / Privacy.” We respond within one month.

LOREMAccount deletion is also possible directly from the user app and merchant portal Settings (the merchant deletion path is reviewed by Mokka).

LOREMDetails about the cookies set by the marketing site live in our Cookie Policy. You can update your consent at any time from the Manage cookies link in the site footer.

LOREMKora is not intended for users under 18. We do not knowingly collect data from minors. If you believe a minor has registered, contact us and we will delete the account.

LOREMYou have the right to lodge a complaint with the Romanian Data Protection Authority (ANSPDCP) or the supervisory authority of your country of residence.