Поддержите проект
en

Data Processing Policy

We, Tallinna Grupiteraapia Keskus, are committed to protecting your personal data. This Data Processing Policy outlines what data we collect, how we use it, and the measures we take to safeguard it in compliance with the European Union’s General Data Protection Regulation (GDPR).

1. Data Collection

We collect the following categories of data:

  • Personal Data: Name, surname, email address, phone number.
  • Payment Data: Payment details if you use paid services.
  • Booking Data: Information about selected meetings, dates, and preferences.
  • Technical Data: IP address, browser information, cookies, and analytics data.

2. Purpose of Data Processing

We process your data for the following purposes:

  • Registration and management of user accounts.
  • Processing booking requests for group meetings.
  • Notifying you about booking statuses and updates.
  • Facilitating payments and managing refunds.
  • Improving user experience, including analytics and statistics.
  • Complying with legal obligations and regulatory requirements.

3. Legal Basis for Data Processing

We process your data based on the following legal grounds:

  • Consent: When you register or subscribe to newsletters.
  • Contract Performance: To manage bookings and process payments.
  • Legal Compliance: To fulfill obligations such as tax and accounting requirements.
  • Legitimate Interests: To enhance services, protect against fraud, and improve user experience.

4. Data Storage and Retention

We retain your data only for as long as necessary to fulfill the purposes outlined above or as required by law. Payment data is securely handled and not stored beyond what is required for transaction purposes.

5. Data Sharing

We may share your data with:

  • Payment Service Providers: For secure payment processing.
  • Analytics Providers: To improve user experience and website functionality.
  • Legal Authorities: When required to comply with applicable laws and regulations.

6. Your Rights

As a user, you have the following rights regarding your data:

  • Access: Request a copy of the data we hold about you.
  • Correction: Request corrections to inaccurate or incomplete data.
  • Deletion: Request the deletion of your data under certain circumstances.
  • Objection: Object to the processing of your data for specific purposes.
  • Data Portability: Request the transfer of your data to another organization.

To exercise your rights, please contact us at [contact email].

7. Security Measures

We implement appropriate technical and organizational measures to protect your data from unauthorized access, loss, or misuse. These measures include encrypted communications, secure storage systems, and access controls.

8. Changes to This Policy

We reserve the right to update this policy to reflect changes in our practices or legal requirements. Any updates will be published on our website, and significant changes will be communicated to you directly when applicable.

By using our services, you confirm that you have read and understood this policy.