Privacy Policy

1. Introduction

olympialnm B.V. ("we", "our", "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website olympialnm.top or use our services.

We are a Dutch company registered under number 68432579 with VAT number NL697214835B118, located at Nieuwstraat 95, 9751 TM Groningen, Netherlands. We operate as a data controller under the General Data Protection Regulation (GDPR).

2. Information We Collect

2.1 Personal Information

We may collect the following personal information:

• Name and contact information (email address, phone number, postal address)
• Appointment and booking information
• Payment information (processed securely through third-party payment processors)
• Health and beauty treatment preferences
• Communication records and correspondence
• Marketing preferences and consent records

2.2 Technical Information

We automatically collect certain technical information:

• IP address and browser type
• Device information and operating system
• Website usage data and analytics
• Cookies and similar tracking technologies (see our Cookie Policy)
• Referral sources and page views

3. How We Use Your Information

We use your personal information for the following purposes:

3.1 Service Provision

• Processing and managing your appointments
• Providing beauty and spa services
• Communicating about your treatments and bookings
• Processing payments and managing billing
• Maintaining treatment records for continuity of care

3.2 Business Operations

• Improving our services and website functionality
• Conducting market research and analysis
• Ensuring security and preventing fraud
• Complying with legal obligations
• Resolving disputes and enforcing agreements

3.3 Marketing (with consent)

• Sending promotional emails about our services
• Providing information about special offers and events
• Personalising marketing communications
• Conducting customer satisfaction surveys

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract Performance: To provide our beauty and spa services
• Legitimate Interests: For business operations, security, and service improvement
• Consent: For marketing communications and non-essential cookies
• Legal Obligation: For compliance with applicable laws and regulations

5. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We may share information with trusted third-party service providers:

• Payment processing companies
• Appointment scheduling software providers
• Email marketing platforms
• Website hosting and analytics services
• Professional advisors (lawyers, accountants)

5.2 Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or to protect our rights, property, or safety, or that of our users or the public.

6. Data Security

We implement appropriate technical and organisational measures to protect your personal information:

• SSL encryption for data transmission
• Secure data storage with access controls
• Regular security assessments and updates
• Staff training on data protection
• Incident response procedures

7. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services and maintain your account
• Comply with legal obligations (typically 7 years for business records)
• Resolve disputes and enforce agreements
• Improve our services (in anonymised form)

When we no longer need your information, we will securely delete or anonymise it.

8. Your Rights Under GDPR

As a data subject, you have the following rights:

8.1 Access and Portability

• Request access to your personal data
• Receive a copy of your data in a portable format
• Transfer your data to another service provider

8.2 Correction and Deletion

• Correct inaccurate or incomplete information
• Request deletion of your personal data
• Restrict processing in certain circumstances

8.3 Consent and Objection

• Withdraw consent for marketing communications
• Object to processing based on legitimate interests
• Opt out of automated decision-making

To exercise these rights, please contact us at privacy@olympialnm.top. We will respond within 30 days.

9. Cookies and Tracking

Our website uses cookies and similar tracking technologies. For detailed information about our use of cookies, please see our Cookie Policy.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

11. International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.

12. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on our website and updating the "Last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

14. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

15. Supervisory Authority

If you believe we have not handled your personal data in accordance with this policy or applicable law, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.