Privacy Policy

Privacy Policy for Heal & Revive

Last Updated: 25 December, 2025

At Heal & Revive, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information in compliance with the General Data Protection Regulation (GDPR) for users within the European Union (EU) and globally.

1. Data Controller

Heal & Revive
Email: info@healnrevive.com
Data Protection Officer (DPO): Shivangi P.

2. Information We Collect

Because we provide mental wellness support, we collect two types of data:

  • Personal Identification Information: Name, email address, WhatsApp/Telegram number, and country of residence.
  • Special Category Data (Sensitive Data): Information regarding your mental health, emotional well-being, and personal history provided during counseling sessions. We only collect this with your explicit consent.

3. Legal Basis for Processing (GDPR Article 6 & 9)

We process your data based on:

  • Explicit Consent: You must provide clear, affirmative consent for us to process your health-related data for the purpose of counseling.
  • Legitimate Interest: To manage our volunteer network and improve our service.

4. How We Use Your Data

We use your information strictly to:

  • Match you with a qualified volunteer listener or psychologist.
  • Facilitate secure communication for therapy sessions.
  • Send you essential updates regarding your sessions or community groups.
  • Ensure the safety and quality of our global network.

5. Data Retention

We do not keep your data longer than necessary.

  • Session Notes/Health Data: Kept for 1 year after your last session, unless you request earlier deletion.
  • Contact Info: Retained as long as you are an active member of our community.

6. Sharing Data with Third Parties

We never sell your data. We only share information with:

  • Volunteer Collaborators: Only the specific psychologist or listener assigned to your case will have access to your details.
  • Service Providers: Encrypted platforms (like WhatsApp, Telegram, or secure hosting) used to deliver our services.
  • Legal Requirements: Only if required by law to prevent immediate harm to yourself or others.

7. International Data Transfers

Heal & Revive operates in 65+ countries. Your data may be processed outside the European Economic Area (EEA). We ensure that any volunteer or platform handling your data outside the EU adheres to Standard Contractual Clauses (SCCs) to maintain EU-level protection.

8. Your Rights under GDPR

Under the GDPR, you have the following rights:

  • Right to Access: Request a copy of the data we hold about you.
  • Right to Rectification: Request corrections to inaccurate data.
  • Right to Erasure ("Right to be Forgotten"): Request that we delete all your personal and health data.
  • Right to Withdraw Consent: You can stop our processing of your data at any time.

9. Security Measures

We implement industry-standard encryption and security protocols to ensure your sensitive health data is protected from unauthorized access, loss, or disclosure.

10. Contact Us

To exercise any of your rights or ask questions about this policy, please contact us at contact@healnrevive.com