GDPR Privacy Policy
Last updated: May 25, 2025
This Privacy Policy describes how Domain ("we", "us", or "our") collects, uses, stores, and protects personal data in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and applicable data protection legislation. By using our services available at domateburo.info, you acknowledge the practices described in this document.
1. Data Controller
Domain acts as the data controller for personal data collected through this website and its associated services. For any questions regarding this policy or the processing of your personal data, you may contact us at:
- Email: [email protected]
- Phone: +1 306 949 1235
- Address: 397 Stavanger Dr #202, St. John's, NL A1A 0A1, Canada
2. Definitions
For the purposes of this Privacy Policy:
- Personal data means any information relating to an identified or identifiable natural person.
- Processing means any operation or set of operations performed on personal data, whether or not by automated means.
- Data subject means any identified or identifiable natural person whose personal data is processed by us.
- Data processor means a natural or legal person which processes personal data on behalf of the controller.
- Consent means any freely given, specific, informed, and unambiguous indication of agreement to the processing of personal data.
3. Personal Data We Collect
3.1 Data You Provide Directly
- Full name and contact details (email address, phone number)
- Account registration information
- Payment and billing information
- Communications and correspondence sent to us
- Survey responses and feedback submissions
3.2 Data Collected Automatically
- IP address and approximate geographic location
- Browser type, version, and operating system
- Pages visited, session duration, and navigation paths
- Device identifiers and connection information
- Cookie data and similar tracking technologies
3.3 Data from Third Parties
- Information received from authentication or identity providers
- Analytics data from integrated service providers
- Payment verification data from payment processors
4. Legal Bases for Processing
We process personal data only when a lawful basis applies. The legal bases we rely upon are:
| Processing Purpose | Legal Basis |
|---|---|
| Providing access to webinars and learning services | Performance of a contract (Art. 6(1)(b)) |
| Creating and managing user accounts | Performance of a contract (Art. 6(1)(b)) |
| Processing payments and issuing invoices | Performance of a contract (Art. 6(1)(b)) |
| Sending service-related communications | Performance of a contract (Art. 6(1)(b)) |
| Sending marketing and promotional materials | Consent (Art. 6(1)(a)) |
| Improving platform performance and security | Legitimate interests (Art. 6(1)(f)) |
| Complying with legal obligations | Legal obligation (Art. 6(1)(c)) |
| Analytics and usage statistics | Legitimate interests (Art. 6(1)(f)) |
5. How We Use Personal Data
We use collected personal data for the following purposes:
- Registering and authenticating user accounts
- Delivering live and recorded webinar content
- Processing registrations, payments, and confirmations
- Providing technical support and customer service
- Sending transactional notifications and reminders
- Personalising the learning experience based on preferences
- Conducting internal research and improving service quality
- Detecting, preventing, and addressing fraud or security threats
- Complying with applicable legal and regulatory requirements
6. Cookies and Tracking Technologies
6.1 Types of Cookies Used
- Strictly necessary cookies: Required for the website to function and cannot be disabled.
- Performance cookies: Collect anonymised data about how visitors use the site to help us improve it.
- Functional cookies: Remember user preferences and settings to enhance the experience.
- Targeting cookies: Used to deliver relevant communications and measure campaign effectiveness.
6.2 Managing Cookies
You may withdraw consent for non-essential cookies at any time through our cookie preference settings or by adjusting your browser settings. Please note that disabling certain cookies may affect the functionality of our services.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements. Retention periods are determined based on the nature of the data and the purpose of processing:
- Account data is retained for the duration of the contractual relationship and up to five years thereafter.
- Financial and transaction records are retained for the period required by applicable fiscal regulations.
- Marketing consent records are retained until consent is withdrawn and for a reasonable period thereafter as evidence.
- Log and technical data is retained for a maximum of twelve months.
Upon expiry of the applicable retention period, personal data is securely deleted or anonymised.
8. Data Sharing and Third Parties
8.1 Categories of Recipients
We do not sell personal data. We may share personal data with the following categories of recipients where necessary:
- Payment service providers for transaction processing
- Cloud hosting and infrastructure providers
- Email delivery and communication platforms
- Analytics and performance measurement tools
- Customer support software providers
- Legal, audit, and compliance advisors
- Public authorities where required by law
8.2 Data Processing Agreements
Where third parties process personal data on our behalf, we enter into data processing agreements that require them to process data only on our documented instructions, implement appropriate technical and organisational security measures, and comply with applicable data protection law.
9. International Data Transfers
Some of our service providers may be located outside the European Economic Area. Where personal data is transferred to countries that do not provide an equivalent level of data protection, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses approved by the European Commission
- Binding Corporate Rules where applicable
- Adequacy decisions where the receiving country has been recognised as providing adequate protection
10. Your Rights Under GDPR
As a data subject, you have the following rights in relation to your personal data:
- Right of access (Art. 15): You have the right to obtain confirmation of whether we process your personal data and to receive a copy of it.
- Right to rectification (Art. 16): You have the right to request correction of inaccurate or incomplete personal data.
- Right to erasure (Art. 17): You have the right to request deletion of your personal data in certain circumstances, including where it is no longer necessary for the purpose for which it was collected.
- Right to restriction of processing (Art. 18): You have the right to request that we restrict the processing of your personal data in certain circumstances.
- Right to data portability (Art. 20): You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.
- Right to object (Art. 21): You have the right to object to processing based on legitimate interests or for direct marketing purposes.
- Right to withdraw consent (Art. 7(3)): Where processing is based on consent, you have the right to withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.
- Right not to be subject to automated decision-making (Art. 22): You have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects.
10.1 Exercising Your Rights
To exercise any of the above rights, please contact us at [email protected]. We will respond to your request within 30 days of receipt. In complex cases or where we receive a high volume of requests, we may extend this period by a further two months, in which case we will notify you accordingly.
We may need to verify your identity before fulfilling a request. We will not charge a fee for requests unless they are manifestly unfounded or excessive.
11. Right to Lodge a Complaint
If you believe that our processing of your personal data infringes applicable data protection law, you have the right to lodge a complaint with a competent supervisory authority. You may contact the supervisory authority in your country of residence, place of work, or the location of the alleged infringement.
12. Data Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, destruction, or alteration. These measures include:
- Encryption of data in transit using TLS protocols
- Encryption of data at rest for sensitive information
- Access controls and role-based permissions
- Regular security assessments and vulnerability testing
- Staff training on data protection obligations
- Incident response and breach notification procedures
In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay.
13. Children's Privacy
Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that personal data has been collected from a child without verifiable parental consent, we will take steps to delete that information promptly.
14. Automated Decision-Making and Profiling
We do not use personal data for fully automated decision-making that produces legal or similarly significant effects on individuals. Where profiling is used to personalise content or service recommendations, it does not result in such effects and is based on legitimate interests or consent as appropriate.
15. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. The date at the top of this page indicates when the policy was last revised. Where changes are material, we will provide notice through our website or by direct communication. Continued use of our services after the effective date of any update constitutes acceptance of the revised policy.
16. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:
- Email: [email protected]
- Phone: +1 306 949 1235
- Website: domateburo.info
- Address: 397 Stavanger Dr #202, St. John's, NL A1A 0A1, Canada