1. General Note

The company responsible for the data protection regulations, according to the Australian Privacy Principles (APP) established by the Privacy Act 1988 (Cth), the General Data Protection Regulation (GDPR) and its member states, as well as the California Consumer Privacy Act (CCPA) and all other privacy laws that protect the privacy of people of all over the world, is:

BD Technologies AG

2. Processing of Personal Data

We adhere to the APP, Privacy Act 1988 (Cth), GDPR, CCPA, and all other privacy laws regarding the collection, use, disclosure, and storage of our users' personal information. Under these laws, we are committed to:

  • Ensuring the protection of personal information.
  • Providing transparency in our data handling practices.
  • Allowing individuals to access their personal information and request corrections.
  • A. General Information on the Processing of Personal Data:

    By using our website, the user declares consent to the collection and processing of data in accordance with the following provisions.

    B. Data Collection for Website Access (Server Log Files)

    As soon as the user accesses our website without registration, the internet browser used for this purpose automatically transmits data that is stored in server log files. We ensure that this information is collected fairly, lawfully, and only when necessary for our business activities. The following data is transmitted and stored:

    • Date and time of access to our website.
    • Information about the type and version of the internet browser used.
    • User's IP address and related geographical data
    • Operating system used by the user.
    • Referring URL.
    • Searched domain name.

    The legal basis for data processing is APP 1 and 5, Privacy Act 1988 (Cth), Article 6, paragraph 1, sentence 1, section of the GDPR, as well as the CCPA.

    C. Registration on this Website

    When registering on our website, users provide personal data (name, email address, password, gender, date of birth, etc.) to use our services. The data is entered into a form provided for this purpose, transmitted to us, and stored. It is used exclusively for the purpose of using the respective services. During the registration process, the user's consent to the processing of this data is obtained.

    The data recorded during registration will be retained for as long as the user is active and registered on our website. In case of deletion of the created account, the user's data will be deleted. Legal retention periods remain unaffected.

    Sign-in via third-party operators

    When registering on our site, users can choose to sign in via Facebook, Apple, Microsoft or Google tools. These tools allow any holder of an account with one of these operators to use his or her identification data to create an account on our website. When a user click on the "Register with...." button on the registration form, the user gives the operator his consent for the transfer of the data necessary for the creation of his account. For more information, the user can consult the relevant operator’s privacy policy.

    D. Conversation and consultant’s obligation

    We will share part of the provided information with our consultants who respond to client messages. This information includes the user's name, date of birth, gender, and profile picture. We may also store certain private information shared in conversations as logs. These logs are securely maintained and made available to our dedicated team of consultants. By sharing and retaining this information, we ensure that our consultants have access to relevant context and historical data to deliver personalized and efficient assistance.

    Any Consultant offering its services on our platform undertakes to comply with its obligations under the applicable regulations for the protection of personal data as it results in particular from the European Regulation on the protection of personal data.

    The Consultant agrees not to make any use of the Personal Data relating to the User for purposes other than the strict needs of the execution of its Service. Similarly, the Consultant is bound not to communicate any personal data to a third party.

    E. Comments/Reviews

    Users can write comments/reviews on our website. In order to leave a review, clients must be logged in on their account. All data related to comments/reviews, will be stored on the user account in our database.

    F. Data shared with service providers

    Customer support:

    There is a contact form and an email address available on our website to facilitate electronic communication with the users. The information transmitted through the contact form, including contact details, is stored for the sole purpose of processing user inquiries or any subsequent questions. For effective customer service, we will share this data, encompassing the user's name, email address, and message content, with our partner, Ladesk, who serves as our designated customer service provider. Ladesk is bound by the same privacy and data protection standards as our platform.

    As per the APP 6, Privacy Act 1988 (Cth), GDPR and CCPA we may disclose your Personally Identifiable Data to our employees/Consultants in order for provisioning of the services to you. We may also disclose your Personally Identifiable Data upon an order of the Court, or as permitted under the law. Furthermore, as per the APP 8, we may also disclose your Personally Identifiable Data to our team not working in Australia for the sole purpose of provisioning of services.

    The data transmitted via the contact form will only be deleted if the user requests it, if consent to storage is revoked, or if it is no longer necessary to retain the data.

    Payment

    Payment data is transmitted and managed by our partners for payment processing. It is encrypted and not stored unless specifically agreed by the user via the card-on-file option. This additional layer of security ensures that your payment information remains protected, and only retained if you choose to utilize the convenience of storing your card details for future transactions.

    3. Withdrawing consent

    Revocation of consent already given by the user is possible at any time. If a user decides to delete their profile or requests the deletion of their personal data, we will promptly delete their information from our systems, except for any data that we are required to retain by law or for legitimate business purposes. To request the deletion of their data, users should send an email to debra@mediumaustralia.com. In the email subject, please indicate "Request for Data Deletion" to ensure prompt identification and processing of the request, in accordance with APP, Privacy Act 1988 (Cth), GDPR and CCPA regulations. The legality of data processing that has already occurred is not affected by the revocation.

    4. Data Subject Rights

    In addition to the rights provided under GDPR and the CCPA, if you are an Australian resident, you have specific rights under the APP and Privacy Act 1988 (Cth). Users have the right to obtain information about the personal data stored about them, its origin, recipients, and the purpose of storage, at any time. Users also have the right to rectify inaccurate, incomplete, or outdated data, block, or delete this data. Please note that withdrawing your consent does not affect the legality of any data processing that has already occurred.

    Requests for information, as well as requests for rectification, blocking, or deletion of data, can be made by contacting us using the contact information provided at the end of this document.

    5. Data Retention Period

    The personal data collected and processed through our website will be retained for as long as the user is registered on our website and actively using our services. This means that as long as the user maintains an active account and continues to engage with our platform, we will retain their personal data. However, all messages will be automatically archived after 30 days. After 180 days of inactivity, the user profile will get automatically deactivated (but not deleted). All user’s data will only be completely erased after a period of 2 years of inactivity.

    Certain personal data, such as server log files and IP addresses, may be retained for a limited period of time in order to comply with legal obligations, protect our rights, resolve disputes, or enforce our terms and conditions. If you have any questions regarding the retention period of your specific personal data, please contact us using the contact information provided in this policy agreement.

    We are committed to ensuring that personal data is not kept longer than necessary for the purposes for which it was collected. Therefore, we regularly review our data retention practices to ensure compliance with applicable data protection laws and regulations.

    6. Legal Basis for Data Processing

    The legal basis for processing your data on our platform is your explicit consent, which is obtained when you sign up and agree to our privacy policy. By providing your consent, you acknowledge that we will process your personal data in accordance with this policy and for the purposes outlined herein. We are committed to maintaining the confidentiality and security of your data while respecting your rights as a user. If you have any concerns or wish to withdraw your consent, please contact us using the contact information provided in this policy agreement.

    7. Automated Decision-Making

    In order to enhance the user experience on our spiritual chat platform, we may employ automated message sending based on client profile data, which includes information such as age and gender. These automated messages are designed to provide personalised content and recommendations that align with your interests and preferences. However, these automated messages do not involve any decision-making processes that could have legal or similarly significant effects on you.

    8. International Data Transfers

    Under the APP 8, Privacy Act 1988 (Cth), the GDPR, and the CCPA the transfer of personal data to countries outside Australia requires appropriate safeguards to ensure the protection of individuals' privacy rights. As a chat platform, we understand the importance of maintaining the privacy and security of your personal information, including your client messages.

    If personal information is disclosed to entities outside Australia, we will take all reasonable steps to ensure that the overseas recipient does not breach the APPs unless the recipient is subject to a law that offers similar protection as the APPs or the individual has expressly consented to the disclosure.

    When your messages are answered by consultants located in countries outside Australia, we implement the necessary measures to ensure that your data is adequately protected. These measures may include:

    Standard Contractual Clauses: We have established legally binding agreements, known as standard contractual clauses, with the operators in the recipient countries. These clauses contain provisions that safeguard your data and maintain a consistent level of data protection as required by the APP, Privacy Act 1988 (Cth), GDPR, and CCPA.

    Data Protection Measures: We implement technical and organizational measures to secure your personal data during international transfers. These measures include encryption, access controls, and regular checks to ensure compliance with APP, Privacy Act 1988 (Cth), GDPR, and CCPA requirements.

    By implementing these safeguards, we aim to ensure that your personal data is handled in accordance with the high data protection standards mandated by the APP, Privacy Act 1988 (Cth), GDPR, and CCPA. If you have any questions or concerns about international data transfers or the measures we have in place, please do not hesitate to contact us using the information provided in this privacy statement.

    9. Cookies

    Our website uses cookies to enhance user experience. Cookies are small text files that are stored on the user's device. Most of the cookies we use are "session cookies," which are automatically deleted after the user's visit. Other cookies remain stored on the user's device until they are deleted by the user. These cookies allow us to recognize the user's browser on their next visit. For more information, please refer to our Cookies Policy available on this site.

    10. Google Analytics

    Our website uses Google Analytics, a web analytics service provided by Google LLC ("Google"). Google Analytics uses cookies to analyze website usage. The information generated by the cookies about the use of our website is usually transmitted to and stored by Google on servers in the United States.

    In case of activated IP anonymization on this website, the IP address of users accessing the website will be shortened by Google within member states of the European Union or other parties to the Agreement on the European Economic Area before transmission. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and shortened there. IP anonymization is active on this website.

    Google will use this information on behalf of the website operator to evaluate the use of the website, compile reports on website activity, and provide other services relating to website activity and internet usage to the website operator.

    Users can prevent the storage of cookies by configuring their browser settings accordingly. Furthermore, users can prevent the collection of data generated by the cookies and related to their use of the website (including their IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.

    11 Translator tools

    Translator tools are used in certain circumstances to translate user messages, to message the user, and during incoming and outgoing support tickets. No messages are saved, texts are only used temporarily for the execution of the translation. The tool does not use any of your content for any purpose except to provide you with a translation service.

    12 Use of AI Technology Tools

    The Website incorporates artificial intelligence (AI) technology to enhance user experience and functionality only. Some medium profile pictures displayed on the Website may be generated by AI algorithms. These medium pictures are random and not specifically captioned as AI-generated content. AI-generated medium profile pictures are used only for entertainment purposes and are not real. AI tools will be used exclusively to support humans for coaching and customer service to increase the efficiency, productivity and quality of chats and improve customer service.

    13 Advertisement and marketing

    We leverage privacy-conscious tools like Google Ads, Google Remarketing, and Microsoft Bing to ensure the responsible use of data and safeguard user privacy.

    Google Ads: This website utilizes Google Ads, a digital advertising platform provided by Google. Google Ads may collect certain information about your browsing activities on this site using cookies or similar technologies. This data is used to deliver targeted advertisements based on your interests and browsing history. To learn more about how Google Ads collects and processes your data, as well as your options to control personalized advertising, please refer to Google's Privacy Policy.

    Google Remarketing: We employ Google Remarketing to advertise our products and services on various websites across the internet. This technology allows us to display tailored ads to users who have previously visited our website. Google Remarketing uses cookies to track your interactions and gather information about your browsing behavior. Rest assured, any data collected is used in accordance with our privacy policy and Google's privacy practices. You can adjust your ad personalization settings or opt-out of Google Remarketing by visiting Google's Ad Settings page.

    Microsoft Bing: Our website may use Microsoft Bing, a search advertising tool provided by Microsoft. Microsoft Bing may collect certain information about your visit to our site through the use of cookies or similar technologies. This data is utilized to deliver relevant ads based on your preferences and interests. For more information on how Microsoft Bing collects and processes your data, as well as your choices regarding personalized advertising, please consult Microsoft's Privacy Statement.

    Please note that while the website strives to ensure the privacy and security of the user's data, it has no control over the privacy practices of these third-party advertising tools. It is recommended that the user review the respective privacy policies of Google Ads, Google Remarketing, and Microsoft Bing for a comprehensive understanding of their data collection and usage practices.

    We may use personal information for direct marketing purposes in accordance with APP 7, Privacy Act 1988 (Cth), GDPR, and the CCPA. If you do not wish to receive marketing communications from us, you can opt-out at any time by following the instructions provided in our communications or by contacting us directly.

    14. Data Security Measures

    We implement appropriate technical and organizational measures to ensure the security of personal data. These measures are designed to prevent unauthorized access, disclosure, alteration, or destruction of personal data. We regularly review our security practices to ensure the ongoing integrity and confidentiality of the personal data we process.

    SSL Encryption:

    For security reasons and to protect the transmission of data, we use state-of-the-art encryption methods (e.g., SSL). This means that data transmitted via our website cannot be read by third parties. An encrypted connection can be recognized by the change in the browser's address line from "http://" to "https://" and by the display of a closed padlock or lock symbol.

    15. Changes to the Privacy Policy

    At our platform, we are committed to continuously enhancing the protection of our users' personal data. In line with this commitment, we may periodically update our privacy policy to reflect any changes in our practices or to align with legal requirements. These updates are made with the aim of ensuring the utmost security and privacy of our users' information. However, it is important to note that it is the responsibility of our users to regularly review and check the privacy policy for any modifications. By doing so, users can stay informed about how their data is being handled and understand any new rights or choices they may have. We encourage our users to remain vigilant and informed by reviewing the privacy policy periodically and contacting us if they have any questions or concerns.

    Contact Information:

    If you have any questions, concerns, or requests regarding your personal data or our data protection practices, please contact us using the following contact information:

    BD Technologies AG

    Email: debra@mediumaustralia.com

    Last updated at 28-08-2024