PERSONAL DATA PROTECTION POLICY (GDPR)
Last update: 14/05/2024
Our Policy Summary:
We collect limited personal data only to provide you with our services more effectively.
By using our website and/or application, you accept this Policy and you also accept that you may receive a Login Confirmation and Welcome email from us and, only if you wish, you will continue to receive Educational and/or promotional emails about new services, offers or products that we will continuously create.
You can, of course, in a very simple way, i.e. by going through the relevant options in your profile settings, change or stop receiving emails and/or accepting relevant advertisements in social networks and/or accessing your data that we hold and/or proceed to their total deletion with a single click.
​
Our Policy in detail:
The website www.myballetworld.com (hereinafter referred to as "The Website") and My Ballet World app (hereinafter referred to as "The App"), which is an electronic application for use via a mobile phone, tablet, smart watch or other device that can support the use of the app, are the property of the company called "Mindflow FZ-LLC", Licence No 47009139, (referred to herein as the "Company" / contact details: W12-SO11 Shed No.23, Al Hulaila Industrial Zone-FZ RAK, United Arab Emirates, tel: 00302102202702, e-mail: info@myballetworld.com).
​
Our Company is responsible for the collection and management of your personal data, i.e. it is the "Data Controller".
Our Company is committed to protecting and respecting your personal data when you use our website, www.myballetworld.com our application or our other products, services and features (all of the above are referred to herein as "Our Products").
This policy governs what data we collect from you when you use our Products, the purpose and process of collecting and processing it and, most importantly, your rights.
Please read carefully for your understanding of the practices we use to collect, use and protect your personal data.
If you have any questions, comments or complaints in relation to this policy, you may contact us directly at our contact details above. In any case, you may consult the legal framework governing the protection of personal data and, in particular, the General Data Protection Regulation (GDPR or GDPR), which can be found on the websites of the Data Protection Authority (https://www.dpa.gr/el/enimerwtiko/nomothesia/proswpikon_dedomenon) and the European Union (https://europa.eu/youreurope/business/dealing-with-customers/data-protection/data-protection-gdpr/index_el.htm).
​
What personal data we collect from you and how:
​
Α. Mandatory data collected
​
For the smooth use of our Products, as well as to safeguard the Copyright of the content of our Application, both on our website and in our Application, it is necessary to enter your email address, to which we send you the verification message in order to log in and be able to use our services. After the initial activation, the Company may provide the possibility of logging in using a username and password, which you choose. Your email address and any username and password remain stored in our systems so that you can log in and use our services.
​
In order to ensure the proper functioning of our products, when using our services, we also collect the following data from you:
​
- The date of your initial registration.
​
- The date you last used our services.
​
- The total time you have used our services (such as, for example, the total minutes of meditation you have completed).
​
- The total number of times you have used our services.
​
- The type of device you use (e.g., computer or "smart" mobile phone).
​
Also, in order to ensure the proper and efficient operation of our products, we also use small text files stored on the hard drive of the device you are using, which contain and provide anonymized information about your usage. These are known as "cookies" and other corresponding technologies (tracking technologies). In this respect, please see the specific section of our policy below.
​
Although the transactions for the purchase of our services are carried out by third-party platforms, our Company stores and processes the data necessary for the issuance of statutory tax documents (receipts, invoices, etc.) and the maintenance of our statutory tax books and records.
Β. Optional data collected
​
When using our products or when communicating with our Company (either online or by telephone), you may also provide us with additional data. Of these, our Company may store the following in order to provide you with its services in accordance with the terms of use of our services and in order to respond to the issues you raise with us:
​
· First and last name
· Gender
· City and Country
· Phone number and other contact details
· The content of communications between us
The responses you enter to tests, surveys, polls, contests, offers and other activities are stored and used on an anonymous basis and may be statistically analyzed to optimize our services. In this context, only the above-mentioned data may be stored and processed.
​
When using our Application, you may enter your personal responses in a Daily Diary. These responses are stored for your future use, but are not subject to further processing by our Company.
​
Our Company does not collect and process data that you enter on third party platforms, even if you do so in order to use our services.
​
In particular, our Company does not collect and process the data you enter in your Apple and Google accounts and the payment details you enter in their online stores (for ex. App Store, Google Play, Stripe) in order to access our applications or to purchase a subscription.
​
For these data, our Company does not constitute a Data Controller and for any issue related to them you should contact the company concerned (for ex. Apple, Google, Stripe).
​
The same applies in relation to your data registered on social media platforms (social media, such as Facebook). Our Company urges you to consult the policies for the management and protection of your data that these third parties (Apple, Google, Facebook, etc.) maintain by visiting the relevant sections on their websites.
​
In case you subscribe to our services through a social networking platform, you provide your consent and we are obliged to process your data as defined in this policy.
Cookies and tracking technologies
​
Our products use cookies to improve your experience, to provide you with the best possible functionality, proper browsing, login and navigation on our pages.
​
​Cookies allow you to enjoy certain features (such as saving shopping cart contents), to use the social network sharing feature (for Facebook, Instagram, etc.), and to personalize messages and display ads according to your interests (both on our site and others). They also help us understand how our products are used.
​
You can find out more about cookies and how we use them below:
​
​
Cookies
Cookies are small text files containing information that are stored in your device's web browser and can be removed at any time. They can help us to identify your computer the next time you visit our website or to enable certain features on our websites. Cookies are classified into the following categories:
A. STRICTLY NECESSARY COOKIES
Strictly necessary cookies are essential for the proper functioning of our products. They are those used exclusively for the transmission of communication to an electronic communications network or, to the extent strictly necessary, to our Company. They are technically necessary for the operation of our services and therefore you do not have the possibility to reject them.
The main cookies in this category are session cookies and session cookies.
B. CONNECTION PERIOD COOKIES
Session cookies are temporarily stored on your computer or device during our browser session and are deleted upon termination of the browser session.
C. CONNECTION RETENTION COOKIES
Connection retention cookies are only stored in the case of users who have selected "Stay logged in" when they log in. To delete these cookies, the user must log out of our services.
D. THIRD PARTY COOKIES / TARGETING / ADVERTISING / SUBSIDY COOKIES
Targeting and advertising cookies are used to provide content that best suits you and your interests. They may be used to send targeted advertising/offers, limit advertising views or measure the effectiveness of an advertising campaign. So by choosing these cookies, you can see targeted ads on our website according to your preferences and interests. These ads are displayed by third parties, both on and off our site.
Performance cookies collect information in relation to the pages you visit most frequently, the pages from which visits to other pages are derived, the type of browser you use, etc. They are installed by third parties whose services we use, in particular Google Analytics. We use these services in order to analyse traffic to our services and individual pages and to achieve improvements in the performance of our services. We encourage you to visit Google's Analytics website to consult its privacy and data protection policy.
Most web browsers allow automatic acceptance of cookies. However, you can change the settings to block cookies from being sent to your device or to enable only certain categories to be received. Please note that if browsing or functional cookies are disabled or removed, it may not be possible to operate all features of our products as intended.
To manage and disable cookies, follow the instructions provided in the diagram below:
- Internet Explorer https://support.microsoft.com/el-gr/help/17442/windows-internet-explorer-delete-manage-cookies- Safari https://support.apple.com/el-gr/HT201265
- Chrome https://support.google.com/chrome/answer/95647?hl=el
- Firefox https://support.mozilla.org/el/kb/energopoihsh-apenergopoihsh-cookies-parakoloy8hsh-protimhsewn
Web beacons - (also known as "clear GIFs" or "tracking pixels") can tell us things like: how many people come to our site, whether they are one-time visitors or frequent visitors, and for how long, how persuaded they are by web advertising campaigns and other similar website usage data. When used in an email, web beacons can tell us when the email was opened, if and how many times it was forwarded, and what link people clicked on within the email. Based on this information, we can tailor the content, products, services and offers we offer to better meet your interests, as well as to let you know about products, services and/or special offers that may be of interest to you.
Log Files - are files that record web activity and collect non-personal statistics about your visit or use of our services. Log files may help us to record, among other things: (i) your IP address, which is a unique set of numbers assigned to your computer by your Internet Service Provider (ISP) (note that, depending on your ISP, your computer may be different each time you connect to the Internet); (ii) the type of browser and operating system you use; and (iii) other information about your online visit, such as the URL from which you came to our site, the date and time you visited. In addition to using this information to better understand how our site is used, we may use information collected through log files, such as an IP address (along with your personal information) to troubleshoot technical problems, maintain internet security, and to prohibit or restrict access to our online services to certain users.
​
​
Who has access to your data that we collect
The data we collect from you is only accessible to our Company's staff and external partners and only those who are necessary for the operation and provision of our services.
Provided you have consented to this, we may use your contact details in order to promote our products and services to you. Under no circumstances, however, do we transfer your personal data to third parties for commercial purposes, i.e. in exchange for profit.
Our Company's cooperation with its staff and external partners (individuals and companies) is governed by contracts with strict confidentiality and secrecy clauses to ensure the highest standards of data protection for your data.
Our external partners are reputable companies that provide our Company with specific services and have access to your data as processors, subject to the above-mentioned commitments, only to the extent necessary for the specific services: analytics and online advertising services (we use the relevant services of Google, Facebook, LinkedIn and Pinterest), hosting (we use the services of Amazon Web Services), newsletter management and delivery services (we use the services of Mailchimp), advertising and marketing services, and the processing of your data.
We do not provide access to your data to the State and its agencies, except as provided by a specific legal provision and/or court order and only to the extent and to the extent specified therein.
Basic Principles and Purpose of Processing Personal Data
Our inviolable principle is to process your data, in compliance with the national and EU legal framework, in the most transparent manner.
This policy clearly distinguishes your personal data that you necessarily provide us with, as well as the processing practices that necessarily take place and the data and policies are collected and applied only with your explicit consent, which you can revoke at any time, in the context of a set of your rights, clearly set out herein.
At the same time, we minimize the data we collect and process to the minimum necessary for each purpose.
We also minimise to the minimum necessary the time for which we store your data.
However, we maximise the security standards of your data that we observe, going beyond the minimum standards imposed by the legal framework, ensuring that all security standards are constantly reviewed and upgraded, both in terms of technical measures and organisational measures.
In particular, the collection and processing of your personal data, in accordance with the legislation in force, is carried out under the following conditions and for the following purposes:
When you have consented and provided your consent to the collection and processing of your data.
Where this is required by provisions of the law or in compliance with our obligations imposed by police, administrative and judicial authorities and agencies.
Where the data is necessary for the preparation and completion of any transaction between us (sales, provision of services).
Where the data is required in order to prove and/or maintain a legal relationship (agreements).
If required to meet our obligations.
Where necessary to bring legal claims against you or any third party.
Where processing is necessary for the purposes of the legitimate interests pursued by the controller, unless such interests are overridden by your interest or fundamental rights and freedoms which require the protection of personal data.
To respond to your questions or requests.
To inform you about our offers or product promotion, if you have accepted the latter. Your consent to this is freely revocable at any time.
To analyse the quality of our services to you in order to always provide you with the best and most useful product or service for you.
In other necessary cases for which, however, you will be informed in a timely manner.
​
Place and duration of storage of personal data
Your personal data collected by our Company is stored on the Company's systems, which are hosted on servers using resources of Amazon Web Services' data centers in Germany and in no case in countries outside the European Union, in order to ensure that the standards required by European Union law are applied.
We generally ensure that we use the services of external partners who, in the context of the services they provide to us, do not transmit data outside the European Union.
In any case, if for certain services there is no reliable external partner who does not transfer data outside the European Union, we ensure that it is bound by standard contractual clauses and/or binding corporate rules that ensure a level of protection equivalent to that provided in the European Union.
Your personal data will be kept for as long as necessary in relation to the respective (separately or cumulatively) intended purpose under the section immediately above.
Immediately after the end of the period of time for which the above purposes have been served or after the end of the period of time within which legal claims may be brought against you, your data will be deleted.
Data retained with your consent for promotional purposes will be deleted when you withdraw your consent.
If you discontinue the use of our services without unsubscribing from them and without choosing by your own actions to delete the data you have provided to our Company, i.e. if your account becomes inactive, your data will remain stored for a maximum period of two years, after which it will be deleted, after which a notification will be sent to the email address you have provided, so that you can retrieve your data before it is deleted.
Security of personal data
Our company takes care of the protection of your personal data in the following ways:
Access is limited and restricted to persons authorised by us who work for the purposes described above.
The IT systems are protected by a firewall and software protection programs to prevent data leakage due to unauthorized access (hacking).
The IT systems are monitored by technologically advanced methods and by specialised partners in order to prevent and deter any attempted hacking.
If you are given a password to enter our website or its applications, you are responsible for its safekeeping and security.
In the event of a breach or leak of your personal data, you will be informed of this and of how to deal with the leak without undue delay and, in any case, within 72 hours.
Newsletters
Our Company sends users of its services and products two forms of e-mail newsletters: those that are the subject of our services (i.e. wellness advice, etc.) and those that are aimed at advertising our Company's products and services or those of third parties.
You can stop receiving them at any time through your profile settings, through the relevant link at the end of each newsletter, or by requesting us by phone or email.
​
Your rights
Our Company ensures your ability to exercise all the rights provided by the national and legal framework. These rights are in particular:
- The right of access, i.e. your right to request that we inform you whether we are processing your data, what it is, what the purposes of processing are and who has access to it.
- The right to rectification, i.e. your right to have your data corrected or completed. To exercise this right, you do not even need to contact our Company, but you can do it yourself through your profile settings. We are, however, at your disposal for any difficulty you may encounter.
- The right of erasure, i.e. your right to delete the data you have provided to our Company. You can do this either through your profile or by sending a request to our Company. Our Company will delete all your data, except for those that it is obliged to keep stored by law.
- The right to restrict processing, i.e. your right to request that our Company restricts the processing of your data, provided that this is either technically feasible or in order for us to continue to provide you with our services (and provided that you do not wish us to cease providing our services).
- The right to object, i.e. your right to object to the processing of your data by our Company. This concerns in particular your ability to withdraw your consent to our processing of data that you voluntarily provide, as well as your ability to request that we stop processing your data for marketing purposes (in particular to receive the relevant newsletters). You have these possibilities through your profile settings.
- The right to data portability, i.e. your right to retrieve in a file your data stored on our services (option "Send my data" in your profile settings).
You also have the right to revoke for the future any consent you have given to the collection, retention and processing of your data, in respect of your data that you voluntarily provide to us, as set out in this policy. It is not possible to use our services without collecting and processing the data we mention above in this policy as necessary.
You also have the right and we have the obligation to inform you without undue delay in the event of a breach or leak of your personal data and how to deal with such a leak.
Our company will consider your requests and respond to you within one month of their submission. Our Company may, where this is required by the complexity of the issue you have raised, extend this period by up to two months. In the event that your requests are manifestly unfounded or abusive (in particular, e.g. repeated requests), our Company may either refuse to respond to them or charge you with the administrative costs of processing and responding to them.
In any case, you have the right to contact the competent authority (the Data Protection Authority) either to submit complaints or to lodge a complaint.
Your requests may be submitted to our Company, which is the controller of your data. Our contact details are set out at the beginning and end of this policy.
Special notes for Corporate Subscription users:
If you are using our application and/or our website in the context of a corporate subscription, i.e. if you are accessing it as part of a subscription package concluded with the company you work for, you should also take into account the following additional parameters of our policy for the management and protection of your personal data:
- Your company has the right and we have the obligation to provide you with certain data necessary for the implementation of the corporate subscription. In particular, the following data are subject to the possibility of transmission to your company:
- Data leading to your identification, namely your email address, in order to be able to verify that you are entitled to access within the framework of the corporate subscription.
- Your data necessary to verify the achievement of the corporate objective that led to the conclusion of the corporate subscription, namely your initial registration date and the date of your last use of our services, the total time of use of our services (total meditation minutes completed), the total number of times and the number of consecutive times you have used our services.- We do not provide your company with any data that we collect other than the above.
- For the data transferred to your company, the latter, and not us, is the data controller and should be contacted for any relevant issue.
​
Contact details of the controller
For anything you are concerned about the processing of your personal data, to submit questions, requests and to exercise your rights, please contact the controller as follows:
By telephone: 00302102202702
By email: info@myballetworld.com
​