GDPR Compliance
Last Updated: May 26, 2026
Introduction
Solfis Vizi is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR). This page outlines your rights under GDPR and how we process your data.
Legal Basis for Processing
We process your personal data under the following legal bases:
- Consent: When you explicitly agree to our processing of your data
- Contract: When processing is necessary to fulfill our educational services
- Legal Obligation: When we must process data to comply with the law
- Legitimate Interests: When processing is necessary for our legitimate business interests, provided your rights are not overridden
Your GDPR Rights
Right to Access
You have the right to request access to the personal data we hold about you. We will provide you with a copy of your data in a commonly used electronic format.
Right to Rectification
You can request correction of any inaccurate or incomplete personal data we hold about you.
Right to Erasure (Right to be Forgotten)
You can request deletion of your personal data when:
- The data is no longer necessary for the purposes it was collected
- You withdraw consent and there is no other legal basis for processing
- You object to processing and there are no overriding legitimate grounds
- The data has been unlawfully processed
- The data must be erased to comply with a legal obligation
Right to Restriction of Processing
You can request that we restrict processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or object to processing.
Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
Right to Object
You can object to processing of your personal data when:
- Processing is based on legitimate interests or public interest
- Data is being used for direct marketing purposes
- Data is being processed for scientific or historical research
Right to Withdraw Consent
Where processing is based on consent, you have the right to withdraw your consent at any time. This does not affect the lawfulness of processing based on consent before its withdrawal.
Right to Lodge a Complaint
You have the right to lodge a complaint with your local supervisory authority if you believe we have violated your data protection rights.
Data Protection Officer
For questions regarding GDPR compliance or to exercise your rights, please contact us at:
Email: [email protected]
Data Processing Activities
Types of Data We Collect
- Identity data (name, title)
- Contact data (email address, location)
- Profile data (educational background, career goals, program preferences)
- Technical data (IP address, browser type, device information)
- Usage data (how you interact with our website and services)
- Communication data (correspondence with our team)
How We Use Your Data
- To provide educational services and program enrollment
- To manage our relationship with you
- To improve our website and services
- To send you relevant information about programs
- To comply with legal requirements
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
- Active program participants: Duration of program plus 2 years
- Enrollment inquiries: 1 year from last contact
- Marketing communications: Until you unsubscribe or request deletion
- Legal compliance: As required by applicable laws
International Data Transfers
When we transfer your data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission
- Transfers to countries with adequacy decisions
- Other legally recognized transfer mechanisms
Security Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
- Encryption of personal data in transit and at rest
- Regular security assessments and updates
- Access controls and authentication requirements
- Staff training on data protection
- Incident response procedures
Automated Decision-Making
We do not use your personal data for automated decision-making, including profiling, that produces legal effects or similarly significantly affects you.
How to Exercise Your Rights
To exercise any of your GDPR rights, please contact us at [email protected] with:
- Your name and contact information
- A description of your request
- Proof of identity (if required)
We will respond to your request within one month, though this may be extended by two additional months in complex cases.
Updates to This Policy
We may update this GDPR compliance information from time to time. We will notify you of any material changes by posting the updated information on this page.