Privacy policy

Privacy Policy – Hinteract Srl

Data Controller

The company Hinteract Srl (hereinafter referred to as the “Controller”) is the data controller for the personal data collected through the website https://balneology.learnworlds.com (hereinafter referred to as the “Website”), pursuant to Article 28 of Legislative Decree No. 196 of June 30, 2003 (Personal Data Protection Code) and EU Regulation 2016/679 (GDPR).

The Controller will process the data collected through the Website for the purposes, using the methods, and within the limits described in this privacy policy.

Collection of Personal Data and Purpose of Processing

The Controller collects only personal data voluntarily provided by visitors to the Website.

Browsing the Website is possible without providing personal data. However, the visitor may choose to provide their personal data in order to:

-Be contacted for information requests;

-Participate in an initiative promoted on the --Website;

-Submit requests to purchase products or services.

Use of Data

Data will be used solely for the purposes specified and in accordance with this Privacy Policy.

Disclosure to Third Parties

Personal data may be disclosed to public entities or judicial authorities to comply with legal obligations or upon their explicit request.

The Data Controller does not intentionally collect sensitive or judicial data through the Website.

Note on Sensitive and Judicial Data

Please do not submit through the Website any information that reveals your racial or ethnic origin, religious or political beliefs, trade union membership, or health status.

If it becomes necessary to provide such data (e.g. for CV submission), you must include explicit authorization through a signed declaration, to be sent by registered mail.

Links to Third-Party Websites

The Website may contain links to external websites not governed by this Privacy Policy. These may include:

The platform: https://balneology.learnworlds.com

The provider: https://learnworlds.com

Zoom: https://www.zoom.com/it

PayPal: https://www.paypal.com/it/home
Quaderno: https://quaderno.io/
Stripe: https://stripe.com/

We recommend reviewing the privacy policies of these third-party services.

Data Retention

Data will be retained only for the time necessary to deliver the requested services.

After that, data will be deleted according to internal policies, unless otherwise required by law or requested by the competent authorities.

Data Subject Rights

Pursuant to Article 7 of the Italian Privacy Code and Articles 15–22 of the GDPR, the user may:

Access their personal data;

Request rectification, update, or deletion;

Object to processing or request its restriction;

Exercise the right to data portability.

To exercise these rights, contact:

📧 info@balneologylearn.com – info@hinteract.it

Data Security

The Data Controller adopts security measures in line with international standards to protect personal data from:

Unauthorized access;

Improper use or disclosure;

Unauthorized modification;

Accidental or intentional loss or destruction.

Cookies and Tracking

The Website uses cookies and tracking tools to collect technical data (e.g. browser, operating system, IP address) for the purpose of performing anonymous statistical analyses and improving the services offered.

For more details, please refer to the “Cookies” section.

Categories of Data Collected

The following categories of data may be collected:

Name, date of birth, profession;

Contact details (email, phone);

Preferences and interests;

Payment information (e.g. credit card);

IP address and technical data (browser, OS, visited URLs);

Cookie-related data (see “Cookies” section).

Processing by Third Parties

Some services (e.g. payment processing, logistics, marketing) may be provided by external providers. These providers will process data only for purposes strictly related to the service, in compliance with the GDPR.

Business Transfers

In the event of a company sale, merger, or corporate reorganization, personal data may be transferred to new owners. Users will be informed in advance and may object or request the deletion of their data.

Control Over Data Usage

Users may decide whether to:

Allow processing for promotional purposes;

Share their data with third parties.

Access and Data Update

Each registered user can access their account to:

View and update their personal data;

Manage marketing and communication preferences.

Privacy Policy Updates

The Data Controller reserves the right to modify this Privacy Policy at any time.

Changes will take effect upon publication on the Website.

Transparency, Consent, and Training

Users give explicit consent via a required checkbox;

Personal data can be modified or deleted at any time;

Hinteract staff undergoes periodic training on GDPR regulations;

A Data Protection Impact Assessment (DPIA) is conducted for any new processing activities;

A record of processing activities is maintained in compliance with the GDPR.

Conclusion

Hinteract Srl is committed to protecting personal data in accordance with the GDPR, promoting a transparent, secure, and responsible approach to data processing, in order to safeguard user trust.