GDPR

GDPR (EU) Compliance Details

In accordance with the General Data Protection Regulation (GDPR), Heal & Revive provides the following transparency regarding your data:

A. Data Controller Information

Organization: Heal & Revive

Representative: Shivangi P

Email: contact@healnrevive.com

B. Legal Basis for Data Processing

We process your data under the following legal grounds:

  • Consent (Art. 6(1)(a)): You give us clear consent to process your personal data for a specific purpose (e.g., receiving therapy).
  • Explicit Consent (Art. 9(2)(a)): For special category data (mental health information), we obtain your explicit, written consent before any session.
  • Legitimate Interests (Art. 6(1)(f)): To manage our global network, ensure service quality, and protect the safety of our volunteers and users.

C. Data Retention Period

  • Personal Identity Data: We retain your name and contact info for as long as you are an active user.
  • Session Notes & Health Data: To ensure continuity of care, sensitive data is retained for 5 years following your last interaction.
  • Ambassador/Volunteer Data: Retained for the duration of the partnership and 3 years thereafter for administrative records.
Note: Users may request "Right to be Forgotten" (deletion) at any time.

D. User Rights

Under GDPR, you have the following rights:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can ask us to correct inaccurate or incomplete data.
  • Right to Deletion: You can request that we erase your data from our systems.
  • Right to Data Portability: You can request that we transfer your data to another service provider in a machine-readable format.
  • Right to Object: You can object to the processing of your data for specific purposes (like newsletters).