Kodux
Menu

Kodux Legal

Privacy Policy

Last updated: May 14, 2026

This page is provided for general informational purposes and should be reviewed by legal counsel before production use.

Introduction

Kodux is operated by SosaDesign Enterprise SA de CV. This Privacy Policy explains how personal data may be collected, used, stored, protected, and, where applicable, transferred when organizations evaluate or use the Kodux enterprise learning platform.

For users in Mexico, this notice is intended to align with the general structure of an aviso de privacidad under the Ley Federal de Protección de Datos Personales en Posesión de los Particulares.

Data Controller

The data controller responsible for personal data collected through this website and related commercial communications is SosaDesign Enterprise SA de CV. Privacy requests may be sent to soporte@sosadesign.com.

Personal Data We Collect

We may collect identification and contact information such as name, work email, company, role, phone number, message content, and other information provided through forms, emails, platform evaluation, sales conversations, or support communications.

If a customer organization uses Kodux for learning operations, the platform may process learner account data, course enrollment, progress, evaluations, attendance, certificate status, company affiliation, and platform activity records.

Sensitive Personal Data

Kodux is designed for clinical and professional education, but the public marketing website is not intended to collect sensitive personal data. Customers should avoid submitting health, clinical, biometric, or other sensitive data through the public contact form or general email channels.

Primary Purposes of Processing

Personal data may be used to respond to inquiries, provide information about Kodux, evaluate customer needs, operate customer relationships, provide support, maintain platform security, manage accounts, deliver learning functionality, track course progress, issue certificates, and comply with applicable legal or contractual obligations.

Secondary Purposes

We may use limited contact and usage information for service improvement, analytics, product planning, and relevant business communications. Where required by applicable law, users may object to these secondary purposes by contacting us.

Learning Data

Learning data may include enrollment, completion, assessment, live event attendance, certificate, and analytics records. When Kodux is used by an organization, that organization may determine the learning program, participant access, record retention, and permitted use of learning data.

Cookies and Analytics

The website may use essential cookies and limited analytics technologies to support site functionality, security, performance measurement, and visitor engagement analysis. More information is available in the Cookie Policy.

Data Transfers and Processors

We may share personal data with trusted service providers that help operate hosting, security, analytics, communication, support, and business operations. These providers should process data only for authorized purposes and under appropriate confidentiality and security obligations.

We may also disclose information when required by law, legal process, customer instruction, corporate transaction, or to protect rights, security, and service integrity.

Data Retention

Information is retained only as long as reasonably necessary for the purposes described in this notice, unless a longer period is required or permitted by contract, law, dispute resolution, audit, security, or legitimate business need.

Security

We use administrative, technical, and organizational practices intended to protect personal data from unauthorized access, misuse, loss, alteration, or disclosure. No internet-based service can guarantee absolute security, but Kodux is designed with enterprise security expectations in mind.

ARCO Rights in Mexico

In Mexico, personal data holders may exercise ARCO rights: Access, Rectification, Cancellation, and Opposition. These rights allow a person to request access to their personal data, request correction of inaccurate or incomplete data, request cancellation when legally appropriate, or oppose certain processing of their data.

To exercise ARCO rights, send a request to soporte@sosadesign.com with your full name, contact email, the right you wish to exercise, a clear description of the personal data involved, and information reasonably necessary to verify your identity or legal representation. For rectification requests, please include the correction requested and supporting documentation where applicable.

Revocation of Consent and Limiting Use

Where processing is based on consent, users may request to revoke consent or limit the use or disclosure of their personal data by contacting soporte@sosadesign.com. Certain information may still be processed when required for legal, contractual, security, or operational reasons.

International Users

Information may be processed in countries where Kodux, its customers, infrastructure providers, or service providers operate. When information is processed internationally, we aim to use appropriate contractual and security safeguards.

Changes to This Notice

We may update this Privacy Policy as Kodux evolves, legal requirements change, or operational practices are refined. Updates will be posted on this page with the applicable last updated date.

Contact

Privacy, data protection, and ARCO requests may be sent to soporte@sosadesign.com.