Structured, SEO-ready website systems
contact@digitalmihai.com
We Build Patient-Generating Websites for Dental Clinics
Cart
0
£0.00

Websites Built to Attract More Dental Patients

Privacy Policy (GDPR)

Who we are

This policy describes how personal data are collected, used, and protected by Digital Mihai (hereinafter referred to as "we").
This policy applies to all:
– website visitors
– clients
– potential clients
– collaborators

What data we collect

We may collect the following categories of data:

Identification data
– first and last name
– company name
– tax identification / billing data


Contact data
– email address
– phone number


Technical data
– IP address
– browser type
– operating system
– access data (technical logs)


Voluntarily provided data
– messages sent through forms
– emails
– support requests
– content provided for websites (texts, images, etc.)


What data we do NOT collect

We do not collect:
– sensitive data (personal identification number, medical data, religion, etc.)
– banking data (payments are processed by third parties)


Purpose of data collection

Data are collected strictly for:
– providing contracted services
– communication with clients
– invoicing and accounting
– technical support
– compliance with legal obligations
We do not use data for aggressive marketing purposes or sale to third parties.


Legal basis for processing

We process data based on:
– contract performance
– explicit consent (where applicable)
– legal obligations
– legitimate interest (security, abuse prevention)


Data retention period

Data are stored:
– during the contract period
– afterward, according to legal obligations (e.g., accounting)
– or until a deletion request, if no legal retention obligation exists


Who we disclose data to

Data may be accessed only by:
– authorized personnel
– strictly necessary third-party service providers (hosting, email, payment processors)
We do not sell, rent, or transfer data to third parties for commercial purposes.


Transfer of data outside the EU

Some third-party services may involve data transfer outside the EU (e.g., email or hosting services).
In such cases, we ensure providers comply with GDPR standards (e.g., standard contractual clauses).


Data security

We apply reasonable technical and organizational measures, including:
– restricted access
– secure passwords
– SSL certificates


Your rights

According to GDPR, you have the following rights:
– right of access
– right to rectification
– right to erasure ("right to be forgotten")
– right to restriction
– right to data portability
– right to object
– right to lodge a complaint with ANSPDCP
To exercise your rights, you may contact us by email.


Cookies

The website may use cookies for:
– proper functioning
– traffic analysis
– security
Full details are available in the Cookie Policy.


Client responsibility

The Client is the data controller for data collected through their own website/store.
We act as:
– data processor, exclusively for technical purposes.


The Client is responsible for:
– collected content
– forms
– newsletters
– their own GDPR policies
– compliance with GDPR legislation toward their end users
We do not assume responsibility for GDPR violations caused by the client's content or practices.


Content provided by the client

The Client declares that:
– they have the legal right to use the provided data
– they have the consent of the data subjects
We do not verify the legality of these data.


Limitation of liability

We are not responsible for:
– GDPR fines applied to the client
– illegal practices of the client
– lack of end-user consent
– incorrect use of the platform
Our liability is limited according to the contract.


Policy changes

We reserve the right to update this policy at any time.
The updated version will be published on the website.


Contact

For any request related to personal data, you may contact us at the email address indicated on the website contact page.