Data Privacy FAQ

Learn about how Komo handles your data.


Any data you collect on the Komo platform is owned by you, not Komo - we do not place any rights or claims on your data. We do everything within our power to keep your data safe and secure at all times.

Data Ownership and Access

Who owns the data?

Any data captured on the Komo platform is owned by you, not Komo. We do not place any rights on the data other than what is required to deliver the service.

Can Komo staff access our data?

Komo staff can access your data, but only to provide support.

Does Komo share my data with anyone else?

Yes, but only with trusted third parties and only where required to provide the services covered under the Term of Service.

What trusted third parties does Komo share my personal information with?

In order to provide, improve, protect, and promote our Services, Komo shares your personal information with trusted third parties.

Trusted third parties are companies or individuals that Komo engages to provide, improve, protect, and promote Komo Services. For example, trusted third parties may access your information to provide data storage services, IT services, or customer support services, but will only do so to perform tasks on Komo’s behalf. Komo remains responsible for the handling of your information per our instructions. 

Trusted third parties include:
  • Google LLC
  • Dropbox Inc.
  • HubSpot
  • DataDog
  • Microsoft Corporation
  • Stripe Inc.


Where can I find your privacy policy?

Our Privacy Policy can be found here:

Where can I find your Terms of Service?

Our Terms of Service can be found here:

Do you have a physical data security policy?

Yes, we have several policies covering physical access and control of data and IT systems. This includes the following policies: IT Asset Register, IT Asset Decommissioning Policy, Physical Data policy and Technology Equipment Agreement.

Are Komo staff under an NDA?

Yes, when starting, all Komo staff are required to commit to an NDA to ensure no customer data is ever shared or exposed to any other party other than the Service providers required to deliver the service.


Do you regularly conduct penetration tests?

Yes, Komo engages 3rd party security experts to conduct penetration tests against our software. In addition to this, we also have our code reviewed and conduct grey box testing.

Cookies and Consent

Can we show a data and privacy consent form on a hub?

Yes, you can enable a consent form when a user first loads the hub.

Does Komo use cookies?

Yes, we use cookies for the following purposes:
  • Remember users when returning to the hub
  • Remember users, if they create an account so they don’t have to re-enter their information when entering competitions
  • Remember where a user got up to in a given game
  • Remember when a user has consented to a data and privacy consent form


Are you GDPR compliant?

Yes, we are compliant with EU GDPR laws.

Are you California Consumer Protection Act (CCPA) compliant?

Yes, we are compliant with the California Consumer Protection Act (CCPA) law.

Does Komo integrate with any Cookie Consent providers?

Yes, we have direct integration with OneTrust’s Cookie Consent product. Komo is also open to exploring integrating with other providers.

Is Komo willing to sign a Data Processing Agreement (DPA)?

Yes, Komo is happy to sign a DPA - please send any agreements through to for review.

Whom do I contact for questions regarding data and privacy?

Please email