Privacy Policy

• Browsing without Personal Data: You can navigate our website without providing any personal information.
• Use of Specific Services: Some services require processing personal data. In such cases, we always request your consent or act in accordance with the applicable legal basis.

In accordance with the General Data Protection Regulation (GDPR), we use the following terminology:

• Personal Information: Any data related to an identifiable individual, such as name, postal or email address, telephone number, etc.
• Data Subject: The natural person to whom the personal data relates.
• Processing: Any operation or set of operations performed on personal data (e.g., collection, recording, organization, storage, modification, retrieval, use, disclosure, etc.).
• Restriction of Processing: Labeling personal data to prevent further processing.
• Profiling: The automated processing of personal data to evaluate certain personal aspects (e.g., work performance, interests, health, etc.).
• Pseudonymization: Processing personal data in such a way that it can no longer be attributed to a specific data subject without additional information.
• Data Controller: The person or organization that determines the purposes and means of processing personal data. In this policy, it refers to maldives-imuga-online.com.
• Processor: The party that processes personal data on behalf of the controller.
• Recipient: An entity to which personal data is disclosed, excluding public authorities when required by law.
• Third Party: Any entity other than the data subject, the controller, or the processor.
• Consent: A freely given, specific, informed, and unambiguous indication of the data subject’s wishes to allow the processing of their personal data.

As the data controller, we implement technical and organizational measures to ensure an adequate level of security. Our guiding principles are:

• Lawfulness, Fairness, and Transparency: Data is processed in a legal and clear manner.
• Purpose Limitation: Data is collected for specific, explicit, and legitimate purposes.
• Data Minimization: We collect only the data strictly necessary.
• Accuracy: We keep data accurate and up to date.
• Storage Limitation: Data is kept only as long as necessary.
• Integrity and Confidentiality: We protect data against unauthorized access, loss, or alteration.

Processing is based on one or more of the following:

• The execution of a contract or pre-contractual measures.
• The explicit consent of the data subject (which can be withdrawn at any time, except when processing is based on other legal grounds).
• Compliance with legal obligations (e.g., tax regulations).
• Protection of vital interests.
• Our legitimate interests, provided that your rights do not override these interests.

Our website uses cookies and similar technologies (e.g., web beacons and single-pixel GIFs) to enhance your user experience. Their main functions include:

• Authentication: Ensuring that when you log in, you receive the correct experience and information.
• Security: Supporting security features and helping detect malicious activities.
• Preferences and Personalization: Remembering your preferences (e.g., language) and facilitating form completion, as well as providing personalized content tailored to your profile.
• Marketing and Analytics: Measuring the effectiveness of marketing campaigns and analyzing site usage by both us and third parties (e.g., Google Analytics).
• Performance and Research: Evaluating and improving the performance of our products and services.
• Session Cookies: Temporary cookies that are deleted when you close your browser.
• Persistent Cookies: Cookies that remain on your device until they are deleted or expire.

When you use our website, certain general information is automatically collected and stored in server log files. This data may include:

• Your operating system, browser type, and version.
• Subpages visited and referring sites.
• IP address, date, and time of access.
• Your Internet service provider.
• Other similar information that may be used to safeguard our IT systems.

This information is necessary to:

• Deliver and display the correct content.
• Optimize the website and advertising content.
• Ensure the viability of our website and IT systems.
• Provide authorities with necessary details in case of cyberattacks.

Anonymous log data is maintained separately from any personal information.

If you contact us via our online form or email, the personal data you provide will be stored to process and respond to your inquiry. Such data will not be disclosed to third parties unless legally required.

Personal data is retained only as long as necessary to fulfill the purposes for which it was collected or as required by law. Once the retention period expires, the data is routinely deleted or blocked.

The processing of your data is based on:

• Article 6(1)(a) of the GDPR: When processing is based on your consent.
• Article 6(1)(b) of the GDPR: For the execution of a contract or pre-contractual measures.
• Article 6(1)(c) of the GDPR: For compliance with legal obligations.
• Article 6(1)(d) of the GDPR: To protect vital interests.
• Article 6(1)(f) of the GDPR: For our legitimate interests, provided that your rights do not override these interests.

When processing is based on Article 6(1)(f), our legitimate interest is to manage and improve our business for the benefit of our employees, shareholders, and customers, without infringing on your fundamental rights.

• Criteria: Data is retained as long as necessary to fulfill the purpose for which it was collected or as required by law.
• Deletion Request: You may request the deletion of your personal data by contacting us at [email protected] or by writing to the address provided.

• Mandatory by Law: (e.g., for tax or regulatory purposes).
• Required for Contract Formation: Personal data is necessary to formalize contracts. Failure to provide such data may prevent the conclusion of a contract.