Skeldurik logo
Skeldurik
Movement Practice Online

Security Policy

Last Updated: November 11, 2025

At Skeldurik, we are committed to protecting the security and integrity of your personal information and data. This Security Policy outlines the measures we take to safeguard your information when you use our online workshop platform and services.

1. Information Security Overview

We implement comprehensive security measures designed to protect your data from unauthorized access, disclosure, alteration, and destruction. Our security practices are continuously reviewed and updated to address emerging threats and maintain the highest standards of data protection.

1.1 Our Commitment

We treat the security of your information as a fundamental priority. Our team works diligently to maintain secure systems and protect the confidentiality of all data entrusted to us through our contemporary dance workshop platform.

2. Technical Security Measures

2.1 Data Encryption

We employ industry-standard encryption protocols to protect data both in transit and at rest:

Transmission Security: All data transmitted between your device and our servers is encrypted using Transport Layer Security (TLS) protocol with strong cipher suites. This ensures that information exchanged during your sessions remains confidential and protected from interception.

Storage Security: Sensitive data stored on our systems is encrypted using advanced encryption standards. This includes personal information, payment details, and any confidential content you share through our platform.

2.2 Access Controls

We implement strict access control mechanisms to ensure that only authorized personnel can access your information:

Authentication: User accounts are protected by secure password requirements and authentication mechanisms. We encourage users to create strong, unique passwords and update them regularly.

Authorization: Access to internal systems and databases is granted on a need-to-know basis. Employees and contractors receive access only to information necessary for their specific roles and responsibilities.

Multi-Factor Authentication: Where available, we implement multi-factor authentication options to provide additional layers of security for account access.

2.3 Infrastructure Security

Our technical infrastructure incorporates multiple layers of protection:

Firewalls: Network firewalls monitor and control incoming and outgoing traffic based on predetermined security rules, preventing unauthorized access to our systems.

Intrusion Detection: We deploy intrusion detection and prevention systems to identify and respond to potential security threats in real-time.

Regular Updates: All systems, applications, and software are regularly updated with the latest security patches to address known vulnerabilities.

Secure Hosting: Our services are hosted on secure, professionally managed servers with physical and digital security controls in place.

3. Organizational Security Measures

3.1 Staff Training and Awareness

All employees and contractors with access to user data receive comprehensive security training covering:

Data Protection Principles: Understanding the importance of safeguarding user information and maintaining confidentiality.

Security Best Practices: Following established protocols for handling sensitive data, recognizing social engineering attempts, and responding to potential security incidents.

Incident Response: Procedures for identifying, reporting, and addressing security concerns promptly and effectively.

3.2 Confidentiality Obligations

All personnel with access to user information are bound by strict confidentiality agreements. These agreements remain in effect even after employment or contractual relationships end.

3.3 Background Checks

Where legally permitted and appropriate, we conduct background checks on employees and contractors who will have access to sensitive user data.

4. Data Protection Practices

4.1 Data Minimization

We collect and retain only the information necessary to provide our services effectively. Unnecessary data is not collected, and information no longer needed for legitimate purposes is securely deleted.

4.2 Secure Data Disposal

When data is no longer required, we ensure its secure destruction using methods appropriate to the sensitivity and format of the information. This includes secure deletion of digital files and destruction of physical documents.

4.3 Backup and Recovery

We maintain regular backups of critical data to ensure business continuity and data recovery in case of system failures or incidents. Backup data is encrypted and stored securely with appropriate access controls.

5. Third-Party Security

5.1 Vendor Management

When we engage third-party service providers who may process or access user data, we carefully evaluate their security practices and require them to maintain appropriate safeguards through contractual agreements.

5.2 Payment Processing Security

Payment transactions are processed through reputable payment service providers who comply with industry standards for payment card data security. We do not directly store complete payment card information on our systems.

5.3 Third-Party Audits

We may conduct or require security assessments of third-party vendors to verify their compliance with our security requirements and industry standards.

6. Application Security

6.1 Secure Development Practices

Our development team follows secure coding practices to minimize vulnerabilities in our applications:

Code Reviews: Regular code reviews identify and address potential security issues before deployment.

Security Testing: Applications undergo security testing, including vulnerability assessments and penetration testing, to identify and remediate weaknesses.

Input Validation: All user inputs are validated and sanitized to prevent injection attacks and other common vulnerabilities.

6.2 Session Management

User sessions are managed securely with appropriate timeout settings, secure session identifiers, and protection against session hijacking attacks.

7. Monitoring and Incident Response

7.1 Continuous Monitoring

We continuously monitor our systems for unusual activity, security events, and potential threats. Automated alerts notify our security team of suspicious behavior requiring investigation.

7.2 Security Incident Response

We maintain a comprehensive incident response plan that includes:

Detection and Analysis: Identifying and assessing potential security incidents quickly and accurately.

Containment: Taking immediate action to limit the scope and impact of security incidents.

Eradication and Recovery: Removing threats from our systems and restoring normal operations securely.

Post-Incident Review: Analyzing incidents to identify lessons learned and implement improvements to prevent recurrence.

7.3 Breach Notification

In the event of a data breach that may affect your personal information, we will notify affected users promptly in accordance with applicable legal requirements. Notifications will include information about the nature of the breach, data affected, and steps being taken to address the incident.

8. User Responsibilities

8.1 Account Security

While we implement robust security measures, protecting your account also requires your participation:

Password Protection: Create strong, unique passwords for your account and keep them confidential. Do not share your password with others.

Account Activity: Monitor your account for unauthorized activity and report any suspicious behavior immediately.

Logout: Always log out of your account when using shared or public devices.

Software Updates: Keep your devices, browsers, and security software up to date to protect against known vulnerabilities.

8.2 Reporting Security Concerns

If you discover a security vulnerability or have concerns about the security of our platform, please report it to us immediately at support@skeldurik.com. We take all security reports seriously and will investigate promptly.

9. Physical Security

Our offices and facilities where data is processed or stored implement physical security measures including:

Access Control: Restricted access to facilities with authentication requirements for entry.

Surveillance: Monitoring systems to detect and deter unauthorized physical access.

Equipment Security: Secure storage and disposal of hardware containing sensitive data.

10. Compliance and Certifications

We strive to align our security practices with recognized industry standards and frameworks. Our security program is designed to meet or exceed requirements for protecting user data and maintaining service integrity.

10.1 Regular Assessments

We conduct periodic security assessments and audits to evaluate the effectiveness of our security controls and identify areas for improvement.

10.2 Continuous Improvement

Security is an ongoing process. We continuously review and update our security measures to address evolving threats, incorporate new technologies, and maintain alignment with industry best practices.

11. Limitations and Disclaimers

While we implement comprehensive security measures, no system can be completely secure. We cannot guarantee absolute security of data transmitted over the internet or stored on our systems. Users acknowledge that they provide information at their own risk.

We are not responsible for security breaches resulting from:

User Actions: Sharing passwords, falling victim to phishing attacks, or failing to maintain the security of personal devices.

Third-Party Services: Security failures of external services or platforms not under our direct control.

Force Majeure: Events beyond our reasonable control including natural disasters, acts of war, or widespread infrastructure failures.

12. Updates to This Policy

We may update this Security Policy periodically to reflect changes in our practices, technologies, legal requirements, or other operational considerations. The "Last Updated" date at the top of this policy indicates when it was most recently revised.

Material changes to this policy will be communicated through prominent notices on our website or direct communication with users. Continued use of our services after such changes constitutes acceptance of the updated policy.

13. Contact Information

For questions, concerns, or reports regarding security matters, please contact us:

Skeldurik Security Team
Email: support@skeldurik.com
Phone: +380635693582
Signal: https://signal.me/#p/+380635693582
Address: Zhukovs'koho St, 26/28, Odesa, Odessa Oblast, Ukraine, 65000

We are committed to responding to security inquiries and concerns promptly and thoroughly.

This Security Policy is effective as of the last updated date and applies to all users of Skeldurik services and platforms.

Privacy Preferences

We use tracking technologies to enhance your experience. Choose which categories you consent to below.

Security

Essential protection and authentication services

Statistics

Anonymous usage analytics and performance monitoring

Advertising

Targeted content and promotional tracking

Preferences

Remember your settings and customizations