GDPR Policy

This GDPR Policy applies to users in the European Economic Area (EEA) and the United Kingdom. It explains your rights under the General Data Protection Regulation (EU) 2016/679 and how nekopoi.pk complies with them.

Who this applies to

The GDPR grants specific data protection rights to individuals in the EEA and UK. Even though nekopoi.pk is operated independently and primarily serves global users interested in anime-related content and online streaming information, we respect and comply with GDPR obligations for any EEA or UK visitor to our site.

Who is the data controller

The data controller for nekopoi.pk is the website operator. This means we decide what personal data is collected, why it is collected, and how it is used.

For any GDPR-related enquiries, contact us through the website’s contact page.

What personal data we process

When you visit nekopoi.pk, we may process the following personal data:

  • IP address and approximate location (derived from IP)
  • browser type, device type, and operating system
  • pages visited, session duration, and click behaviour (analytics)
  • advertising interaction data (cookies and impressions)
  • traffic source and referral data
  • name and email address (only if submitted via contact form)

Lawful basis for processing

Under GDPR Article 6, we process your data only where we have a valid lawful basis:

Legitimate interests (Art. 6(1)(f)) — operating and securing the website, improving content performance, analyzing traffic trends, and preventing spam or abuse.

Consent (Art. 6(1)(a)) — analytics and advertising cookies. You may withdraw consent at any time via browser settings.

Performance of a contract (Art. 6(1)(b)) — where you contact us, we process your name and email solely to respond to your request.

Data retention

We retain personal data only for as long as necessary:

  • Server logs — deleted after 90 days
  • Contact form messages — deleted after 12 months
  • Analytics data — retained for 26 months in anonymised form
  • Advertising cookie data — governed by third-party retention policies (typically up to 13 months)

Your rights under GDPR

As an EEA or UK resident, you have the following rights. You can exercise any of them by contacting us through the website contact page. We will respond within 30 days at no cost to you.

Right of access (Art. 15) — request a copy of the personal data we hold about you.
Right to rectification (Art. 16) — request correction of inaccurate data.
Right to erasure (Art. 17) — request deletion of your data where no lawful basis exists.
Right to restriction (Art. 18) — request temporary limitation of processing.
Right to data portability (Art. 20) — receive your data in structured format.
Right to object (Art. 21) — object to processing based on legitimate interests.
Right to withdraw consent — withdraw cookie consent at any time.
Right not to be subject to automated decisions — we do not make automated decisions with legal effects.

Third-party processors

We may use trusted third-party services that process data on our behalf:

  • Google Analytics — traffic and usage analytics
  • Google AdSense — advertising delivery and measurement
  • Hosting providers — server infrastructure and security
  • CDN services — performance optimization

We do not sell personal data to any third party.

International data transfers

Data may be transferred outside the EEA. Where this occurs, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) and approved data protection frameworks.

Cookies and consent

We use cookies to:

  1. analyze traffic
  2. improve site performance
  3. measure user engagement
  4. deliver advertising

Users can manage or disable cookies via browser settings. Non-essential cookies are only used with consent.

Children

We do not knowingly collect personal data from users under the age of 16. If such data is identified, it will be deleted immediately.

Complaints

If you believe your rights have been violated, you may contact:

  1. EEA users — your local Data Protection Authority
  2. UK users — Information Commissioner’s Office (ICO)

Updates to this policy

We may update this GDPR Policy at any time due to legal, technical, or operational changes. The latest version will always be available on this page.

Contact us

For GDPR-related requests or privacy concerns, please use the website contact page.