General Data Protection Regulation (GDPR) Compliance

Last Updated: April 8, 2025

Lirnasocial is committed to protecting and respecting your privacy in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This GDPR Compliance Statement explains how we collect, use, store, and protect your personal data when you use our online masterclass platform.

1. Data Controller

Lirnasocial operates as the data controller for personal data processed through our platform. You can contact us regarding any data protection matters:

• Address: Yaroslaviv Val St, 37, Kyiv, Ukraine, 02000
• Email: help@lirnasocial.com
• Phone: +380573726167
• Telegram: https://t.me/+380573726167

2. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent for specific processing activities such as marketing communications
• Contract Performance: To provide educational services you have enrolled in or requested
• Legitimate Interests: To improve our platform, prevent fraud, and ensure security
• Legal Obligations: To comply with applicable laws and regulations

3. Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Information You Provide

• Account registration details (name, email address, password)
• Profile information (country, language preferences, professional background)
• Payment and billing information
• Course enrollment and completion data
• Communications with our support team
• Feedback, reviews, and survey responses

3.2 Information We Collect Automatically

• Device information (IP address, browser type, operating system)
• Usage data (pages viewed, time spent, navigation patterns)
• Learning progress and interaction with course materials
• Cookies and similar tracking technologies

4. How We Use Your Personal Data

We process your personal data for the following purposes:

• Providing access to masterclasses and educational content
• Processing payments and managing subscriptions
• Communicating about courses, updates, and platform changes
• Personalizing your learning experience
• Improving our services and developing new features
• Ensuring platform security and preventing fraud
• Complying with legal and regulatory requirements
• Sending marketing communications (with your consent)
• Analyzing platform usage and performance

5. Data Sharing and Disclosure

We may share your personal data with the following third parties:

5.1 Service Providers

We work with trusted service providers who process data on our behalf:

• Payment processors for transaction handling
• Cloud hosting providers for data storage
• Email service providers for communications
• Analytics platforms for usage insights
• Customer support tools

5.2 Legal Requirements

We may disclose personal data when required by law, court order, or government regulation, or when necessary to protect our rights, safety, or property.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity.

We ensure all third parties process your data in accordance with GDPR requirements through appropriate data processing agreements.

6. International Data Transfers

As an international platform, your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When transferring data internationally, we implement appropriate safeguards including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions recognizing equivalent data protection standards
• Binding Corporate Rules where applicable
• Your explicit consent when required

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

7.1 Right to Access

You can request confirmation of whether we process your personal data and obtain a copy of your data.

7.2 Right to Rectification

You can request correction of inaccurate or incomplete personal data.

7.3 Right to Erasure

You can request deletion of your personal data under certain circumstances, including when data is no longer necessary for its original purpose or when you withdraw consent.

7.4 Right to Restriction of Processing

You can request limitation of processing your personal data in specific situations, such as when contesting data accuracy.

7.5 Right to Data Portability

You can receive your personal data in a structured, commonly used, machine-readable format and transmit it to another controller.

7.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes at any time.

7.7 Right to Withdraw Consent

When processing is based on consent, you can withdraw your consent at any time without affecting the lawfulness of prior processing.

7.8 Right to Lodge a Complaint

You have the right to lodge a complaint with your local supervisory authority if you believe we have violated your data protection rights.

7.9 Exercising Your Rights

To exercise any of these rights, contact us at help@lirnasocial.com . We will respond to your request within one month, which may be extended by two additional months for complex requests.

8. Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this statement:

• Account Data: Retained while your account is active and for a reasonable period afterward for legal or business purposes
• Course Progress: Retained to maintain your learning history and certificates
• Payment Records: Retained as required by accounting and tax regulations
• Marketing Data: Retained until you unsubscribe or withdraw consent
• Support Communications: Retained for quality assurance and legal compliance

When data is no longer needed, we securely delete or anonymize it.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

• Encryption of data in transit and at rest
• Regular security assessments and audits
• Access controls and authentication mechanisms
• Employee training on data protection
• Incident response and breach notification procedures
• Regular backups and disaster recovery plans

10. Automated Decision-Making and Profiling

We may use automated processing to personalize your learning experience, such as recommending relevant courses based on your interests and past enrollment. You have the right to request human intervention, express your point of view, and contest automated decisions.

11. Children's Privacy

Our platform is not directed to individuals under 16 years of age. We do not knowingly collect personal data from children under 16 without verifiable parental consent. If we become aware that we have collected data from a child under 16 without proper consent, we will delete it promptly.

12. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. You can manage cookie preferences through your browser settings. For detailed information, please refer to our Cookie Policy.

13. Data Protection Officer

For questions regarding data protection or to exercise your rights, contact our data protection team at help@lirnasocial.com .

14. Changes to This Statement

We may update this GDPR Compliance Statement periodically to reflect changes in our practices or legal requirements. The last updated date at the top indicates when changes were last made. We encourage you to review this statement regularly. Significant changes will be communicated through email or prominent notice on our platform.

15. Contact Information

For any questions, concerns, or requests regarding this GDPR Compliance Statement or our data processing practices, please contact us:

• Email: help@lirnasocial.com
• Phone: +380573726167
• Telegram: https://t.me/+380573726167
• Postal Address: Yaroslaviv Val St, 37, Kyiv, Ukraine, 02000

We are committed to addressing your concerns and protecting your privacy rights under GDPR.