curamentis.org

Privacy Policy

Privacy Policy – Curamentis

Last updated: June 24, 2026

This Privacy Policy explains how Curamentis collects, uses, stores, shares and protects personal data when you visit our website, create an account, purchase or access our digital products, enrol in online courses, attend live online courses or webinars, download PDF books, contact us, subscribe to our emails, or otherwise use our services.

This Privacy Policy applies to the website https://www.curamentis.org and to the related digital products and services offered through it.

This Privacy Policy is intended to comply, where applicable, with Ukrainian personal data law and with the EU General Data Protection Regulation (“GDPR”) when our services are offered to or used by people located in the European Union or European Economic Area.

1. Who We Are

For the purposes of this Privacy Policy, the data controller is:

Company / Controller: Mariya Anatolina, trading as Curamentis
Address: zolota 25, Ukraine
Website: https://www.curamentis.org
Email: info@curamentis.org

In this Privacy Policy, “Company”, “we”, “us” or “our” refers to the controller identified above.

2. Definitions

For the purposes of this Privacy Policy:

  • Account means a user account created to access our courses, digital content, purchases or restricted areas of the website.
  • Course means prerecorded online courses, live online courses, webinars, training sessions, lessons, video content, downloadable materials and related educational content offered by us.
  • Digital Product means downloadable or online materials, including PDF books, ebooks, videos, audio files, worksheets, exercises, templates, course materials and similar products.
  • Personal Data means any information relating to an identified or identifiable individual.
  • Service means the website, online courses, live courses, webinars, PDF books, digital products, account areas, payment flows, email communications and customer support provided by us.
  • Service Provider means a third party that processes personal data on our behalf, such as hosting providers, payment processors, email platforms, analytics providers, webinar platforms, learning platforms, customer support tools or IT providers.
  • Usage Data means data automatically collected when you use the Service, such as IP address, browser type, device information, visited pages, access times, referring pages and technical logs.
  • You means the individual accessing or using the Service, or the organisation on behalf of which such individual accesses or uses the Service.

3. What Personal Data We Collect

3.1 Data You Provide Directly

Depending on how you interact with us, we may collect the following personal data:

  • First name and last name;
  • Email address;
  • Phone number, if requested or provided;
  • Billing details, including address, city, region/province, postal code and country;
  • Tax, VAT or invoice details, if required for billing or legal compliance;
  • Account login details, such as username and password or authentication information;
  • Purchase history, course enrolments and digital product downloads;
  • Course progress, completion status, quiz answers, certificates or learning activity, if the platform includes these functions;
  • Messages, requests, feedback, reviews, support tickets or correspondence you send to us;
  • Newsletter subscription preferences and marketing consent choices;
  • Information you provide during live courses, webinars, Q&A sessions, chats, comments, forms, surveys or exercises;
  • Any other information you voluntarily provide to us.

3.2 Payment Data

If you purchase a course, live training, PDF book or other digital product, payments are processed by third-party payment providers. We may receive transaction information such as payment status, amount, currency, product purchased, billing details, invoice details and payment confirmation.

We do not normally store full credit card numbers or card security codes. These are processed directly by third-party payment providers such as Stripe / PayPal / WooCommerce Payments / Shopify Payments / other provider — Plata by Monobank. Their processing of payment data is governed by their own privacy policies and security standards.

3.3 Data Collected During Live Courses and Webinars

If you attend a live online course, webinar, supervision, lecture, workshop or training session, we may process:

  • Your name, email address and registration details;
  • Your attendance and participation status;
  • Your audio, video image, screen name, chat messages, questions or comments, if you choose to participate;
  • Technical data related to your connection and attendance;
  • Recording data, if the session is recorded.

If a live session is recorded, we will inform participants before or at the start of the session where reasonably possible. You should avoid sharing personal, sensitive, clinical or confidential information during recorded sessions unless this is clearly appropriate and you understand that it may be included in the recording.

3.4 Sensitive or Health-Related Information

Our services are educational and informational. We do not ask you to provide health data, mental health data, medical history, therapy records, sexual life data or other sensitive personal data in order to purchase or access our courses, PDF books or digital products.

However, because some of our content may concern psychology, personal growth, relationships, hypnosis, emotional wellbeing or similar topics, you may voluntarily provide sensitive information when contacting us, completing forms, participating in live discussions or asking questions. Please do not send unnecessary sensitive information.

If you voluntarily provide sensitive information, we will process it only to the extent necessary to respond to your request, provide the relevant service, protect our rights, comply with legal obligations, or where you have given explicit consent or another legal basis applies under applicable law.

3.5 Usage Data

Usage Data is collected automatically when you use the Service. Usage Data may include your IP address, browser type, browser version, device type, operating system, the pages you visit, the time and date of your visit, time spent on pages, referring URLs, unique device identifiers, diagnostic data, and other technical information.

When you access the Service through a mobile device, we may collect information such as the type of mobile device, mobile operating system, mobile browser type, device identifiers and other diagnostic data.

4. Cookies and Tracking Technologies

We use cookies and similar technologies such as pixels, tags, scripts, local storage, web beacons and analytics tools to operate the website, remember preferences, analyse usage, improve the Service, secure the website and, where applicable, conduct marketing or remarketing.

Cookies may be “session” cookies, which are deleted when you close your browser, or “persistent” cookies, which remain on your device for a set period or until you delete them.

We may use the following categories of cookies:

  • Necessary / Essential Cookies: required for the website, account login, checkout, security, fraud prevention and access to purchased content.
  • Preference Cookies: used to remember choices such as language, region, cookie preferences or login settings.
  • Analytics Cookies: used to understand how visitors use the website and improve our content, products and user experience. These may include Google Analytics or similar tools, if implemented.
  • Marketing and Remarketing Cookies: used, where implemented, to measure advertising performance, build audiences, show relevant ads or retarget visitors through platforms such as Google Ads, Meta/Facebook, Instagram, TikTok, LinkedIn or similar platforms.
  • Email Tracking Technologies: our emails may contain pixels or similar technologies to understand whether emails are opened or links are clicked, where permitted by law and by the settings of the email platform.

Where required by law, we use non-essential cookies, analytics cookies, advertising cookies and remarketing technologies only after receiving your consent. You can withdraw or change your consent at any time through our cookie banner, cookie settings tool, browser settings or device settings, where available.

Blocking or deleting cookies may affect some features of the Service, including account access, checkout, course delivery or saved preferences.

The exact cookies and third-party tracking tools currently active on the website should be listed in our Cookie Policy or cookie banner settings. The Cookie Policy and the actual website configuration must match this Privacy Policy.

5. How We Use Your Personal Data

We may use your personal data for the following purposes:

  • To provide, operate and maintain the website and the Service;
  • To create, manage and secure your account;
  • To process purchases, payments, invoices, refunds, chargebacks and order confirmations;
  • To deliver access to prerecorded courses, live courses, webinars, PDF books and digital products;
  • To send you course access links, login information, downloadable materials, updates, reminders and service-related communications;
  • To manage live course registration, attendance, participation, recordings and follow-up materials;
  • To respond to your questions, support requests, complaints or feedback;
  • To provide certificates, completion records or course progress features, if available;
  • To send newsletters, promotional emails, offers and information about similar products or services, where permitted by law;
  • To manage your marketing preferences and unsubscribe requests;
  • To analyse website traffic, usage trends, product performance and user experience;
  • To improve our courses, books, digital products, website, marketing and customer service;
  • To prevent fraud, abuse, unauthorised access, security incidents or misuse of the Service;
  • To comply with accounting, tax, legal, regulatory and record-keeping obligations;
  • To establish, exercise or defend legal claims;
  • To evaluate or conduct a business transfer, merger, restructuring, sale or similar transaction.

6. Legal Bases for Processing Under GDPR

Where GDPR applies, we rely on one or more of the following legal bases:

Purpose Legal basis
Creating and managing your account Performance of a contract; legitimate interests in operating a secure service
Processing purchases, payments, invoices and refunds Performance of a contract; legal obligation; legitimate interests in fraud prevention and business administration
Delivering prerecorded courses, live courses, webinars, PDF books and digital products Performance of a contract
Sending transactional emails, course access emails, service updates and administrative notices Performance of a contract; legitimate interests; legal obligation where applicable
Customer support and responding to enquiries Performance of a contract; legitimate interests; consent where the request is voluntary and not contract-related
Live course participation, chat, Q&A and webinar administration Performance of a contract; legitimate interests; consent where appropriate
Recording live sessions Consent where required; legitimate interests in providing course replays and educational materials, depending on the context and notice provided
Newsletter and marketing emails Consent where required; legitimate interests for similar-product communications to existing customers where legally permitted, always with an opt-out
Analytics and non-essential cookies Consent where required by cookie/ePrivacy rules; legitimate interests for limited, privacy-friendly analytics where permitted
Advertising, remarketing and tracking pixels Consent where required
Security, anti-fraud, abuse prevention and troubleshooting Legitimate interests; legal obligation where applicable
Tax, accounting and legal records Legal obligation
Legal claims and dispute management Legitimate interests; legal obligation

Where we rely on consent, you may withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before withdrawal.

Where we rely on legitimate interests, you may object to the processing where applicable. We will consider your objection and stop the processing unless we have compelling legitimate grounds or the processing is necessary for legal claims.

7. Marketing Communications

If you subscribe to our newsletter, download a free resource, register for an event, purchase a course or digital product, or otherwise give us permission, we may send you emails about our courses, books, events, digital products, offers and related content.

You can unsubscribe from marketing emails at any time by clicking the unsubscribe link in our emails or by contacting us at info@curamentis.org.

Even if you unsubscribe from marketing emails, we may still send you transactional or administrative emails, such as purchase confirmations, course access instructions, invoice information, account notices, security notices, legal updates or responses to your requests.

8. Sharing Your Personal Data

We may share your personal data with the following categories of recipients:

  • Payment processors, to process payments, refunds, chargebacks and fraud checks;
  • Website hosting and IT providers, to host, secure, maintain and troubleshoot the website and related systems;
  • Learning management platforms, to deliver courses, videos, materials, quizzes, progress tracking and certificates;
  • Email marketing and CRM providers, to send newsletters, transactional emails, automated sequences, course updates and customer communications;
  • Webinar and video-conferencing providers, to provide live courses, webinars, recordings and online events;
  • Analytics providers, to understand website and product usage;
  • Advertising and remarketing platforms, where implemented and where permitted by law;
  • Customer support tools, to manage enquiries and support tickets;
  • Professional advisers, such as accountants, lawyers, consultants, auditors or tax advisers;
  • Public authorities, courts or regulators, where required by law or necessary to protect our rights;
  • Business successors, in connection with a merger, acquisition, restructuring, sale of assets or similar transaction.

We require service providers to process personal data only as necessary to provide their services and to protect personal data with appropriate security measures.

If the Service includes public or semi-public areas, such as comments, community features, group discussions or live chat, information you choose to share may be visible to other participants. Do not share personal, confidential or sensitive information in public or group areas unless you are comfortable with others seeing it.

9. Third-Party Providers

Our Service may use third-party providers, depending on the technical setup of the website and course platform. These may include providers for:

  • Hosting and website infrastructure;
  • Domain, security and content delivery services;
  • Payment processing;
  • Learning platforms and course delivery;
  • Video hosting and streaming;
  • Live webinars and video calls;
  • Email marketing and transactional emails;
  • Analytics;
  • Advertising and remarketing;
  • Customer support;
  • Accounting and invoicing.

Current providers may include: Hostinger, Plata by Monobank and other providers.

You should only list providers that are actually used.

10. International Data Transfers

We are based in Ukraine. Your personal data may be processed in Ukraine and in other countries where we or our service providers operate. These countries may have data protection laws that differ from the laws of your country.

If you are located in the European Union, European Economic Area, United Kingdom or Switzerland, your personal data may be transferred outside your jurisdiction, including to Ukraine and to countries where our service providers are located.

Where required by applicable law, we use appropriate safeguards for international transfers. These may include adequacy decisions, Standard Contractual Clauses, data processing agreements, supplementary security measures, or other lawful transfer mechanisms.

By using the Service, you understand that your personal data may be processed in countries outside your country of residence, subject to the safeguards described in this Privacy Policy and applicable law.

11. Retention of Personal Data

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

We generally apply the following retention periods:

  • Account data: retained for the duration of your account and up to 24 months after account closure, unless longer retention is required for legal, tax, accounting, security or dispute reasons.
  • Purchase, invoice and payment records: retained for the period required by applicable tax, accounting and commercial laws.
  • Course access and progress data: retained while your account or course access remains active and up to 24 months after account closure, unless longer retention is necessary.
  • Live course attendance data: retained for up to 24 months, unless needed for certificates, legal records, contractual performance or dispute management.
  • Recordings of live courses or webinars: retained for as long as necessary to provide replay access, educational materials, proof of delivery, internal training or legal protection, and then deleted or anonymised when no longer needed.
  • Customer support messages: retained for up to 24 months after the last interaction, unless longer retention is needed for legal claims or service continuity.
  • Marketing data: retained until you unsubscribe or withdraw consent. We may keep a limited suppression record to ensure we do not contact you again after you unsubscribe.
  • Analytics and usage data: retained for up to 24 months where possible, unless the analytics provider or configuration uses a different period.
  • Security logs: retained for as long as necessary for security, fraud prevention, troubleshooting and legal protection.

We may retain personal data for longer where necessary to comply with legal obligations, resolve disputes, enforce agreements, prevent fraud, maintain security, or establish, exercise or defend legal claims.

When personal data is no longer needed, we delete it, anonymise it or securely archive it. Some residual copies may remain in backups for a limited period and will be deleted according to backup schedules, unless restoration is necessary for security, legal or disaster recovery reasons.

12. Your Rights

Depending on your location and applicable law, you may have rights regarding your personal data, including the right to:

  • Request access to the personal data we hold about you;
  • Request correction of inaccurate or incomplete personal data;
  • Request deletion of your personal data;
  • Request restriction of processing;
  • Object to processing based on legitimate interests or direct marketing;
  • Request data portability, where applicable;
  • Withdraw consent at any time, where processing is based on consent;
  • Complain to a data protection authority or other competent authority.

If GDPR applies, you also have the right to lodge a complaint with the data protection authority in the EU/EEA country where you live, work, or where you believe an infringement has occurred.

To exercise your rights, contact us at info@curamentis.org. We may need to verify your identity before responding to your request.

Please note that some rights are not absolute. We may need to retain certain data where required by law, for tax or accounting purposes, for contractual performance, for fraud prevention, for security, or to establish, exercise or defend legal claims.

13. Deleting or Updating Your Personal Data

If you have an account, you may be able to update or delete certain information directly through your account settings. You may also contact us at info@curamentis.org to request access, correction or deletion of personal data you have provided to us.

Deleting some data may affect your ability to access purchased courses, certificates, downloads, invoices or account features. We may retain limited records where necessary for legal, tax, accounting, contractual, security or dispute purposes.

14. Security of Your Personal Data

We use reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, disclosure or destruction.

These measures may include access controls, secure passwords, encryption where appropriate, secure hosting, payment processing through specialised providers, backups, monitoring, limited access to personal data and contractual safeguards with service providers.

No method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee absolute security, but we take reasonable steps to protect your personal data.

15. Children’s Privacy

Our Service is not directed to children. Our courses, live trainings, PDF books and digital products are intended for adults, unless expressly stated otherwise.

We do not knowingly collect personal data from children under the age of 16. If you are under 16, do not use the Service or provide personal data without the involvement and consent of a parent or legal guardian, where required by law.

If we become aware that we have collected personal data from a child without appropriate consent, we will take steps to delete that information.

16. Educational Nature of the Service

Our courses, books, PDFs, videos, webinars and digital products are provided for educational and informational purposes. Unless expressly stated otherwise in a separate agreement, they do not constitute medical advice, psychotherapy, psychological treatment, diagnosis, emergency support or a professional-client relationship.

You should not use contact forms, emails, course chats or live course features to send urgent medical, psychological or emergency information. If you are in danger or need urgent help, contact local emergency services or an appropriate professional service in your country.

17. Automated Decision-Making

We do not use your personal data to make decisions based solely on automated processing that produce legal effects concerning you or similarly significant effects.

We may use limited automation for ordinary business purposes, such as sending course access emails, confirming purchases, segmenting newsletter lists, detecting suspicious activity, or showing relevant content, but this does not normally produce legal or similarly significant effects.

18. Links to Other Websites

Our Service may contain links to third-party websites, platforms, payment processors, video platforms, webinar tools, social media pages or other external services that we do not operate.

If you click on a third-party link, you will be directed to that third party’s site or service. We are not responsible for the content, privacy policies or practices of third-party websites or services. You should review their privacy policies before providing personal data to them.

19. Business Transfers

If the Company is involved in a merger, acquisition, restructuring, sale of assets, financing, bankruptcy or similar transaction, your personal data may be transferred as part of that transaction. We will take reasonable steps to ensure that your personal data remains protected and, where required, we will notify you before your personal data becomes subject to a materially different privacy policy.

20. Legal Disclosure

We may disclose your personal data if required to do so by law or in response to valid requests by public authorities, courts, regulators or law enforcement bodies.

We may also disclose personal data where we believe in good faith that disclosure is necessary to:

  • Comply with a legal obligation;
  • Protect and defend our rights, property or safety;
  • Prevent or investigate possible wrongdoing in connection with the Service;
  • Protect the safety of users or the public;
  • Prevent fraud, abuse, security incidents or unauthorised access;
  • Protect against legal liability.

21. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we update it, we will revise the “Last updated” date at the top of this page.

Where changes are material, we may notify you by email, through your account, through a notice on the website, or by other appropriate means.

You are advised to review this Privacy Policy periodically. Changes are effective when they are posted on this page, unless a later effective date is stated.

22. Contact Us

If you have questions about this Privacy Policy, your personal data, cookies, marketing preferences or your privacy rights, you can contact us:

By email: info@curamentis.org

Controller: Mariya Anatolina, trading as Curamentis
Address: zolota 25, Lviv, Ukraine