Privacy Policy

Last updated: 15th January 2026

Introduction

This Privacy Policy describes how malverodix.top SARL ("we", "our", or "us") collects, uses, and protects your personal information when you visit our website at malverodix.top or use our fitness training program monetization services. We are committed to protecting your privacy and ensuring transparency about our data practices in accordance with the General Data Protection Regulation (GDPR) and applicable Luxembourg and EU data protection laws.

Data Controller Information

The data controller for your personal information is:

malverodix.top SARL
Rue Beaumont 109
4785 Esch-sur-Alzette
Luxembourg
Registration Number: RCSB856974
VAT Number: LU85361479

Data We Collect

We collect and process various types of personal data when you interact with our website and services. The data we collect includes information you provide directly to us and information we collect automatically through your use of our website:

Information You Provide

  • Contact information (name, email address, phone number)
  • Business information (company name, business type, industry details)
  • Communication preferences and enquiry details
  • Service requirements and consultation requests
  • Any other information you choose to provide in contact forms or communications

Information We Collect Automatically

  • Website usage data (pages visited, time spent, navigation patterns)
  • Technical information (IP address, browser type, device information)
  • Cookie data and similar tracking technologies
  • Referral sources and marketing campaign data

How We Use Your Information

We process your personal data based on legitimate legal grounds and use of your data is limited to the following purposes:

  • Service Provision: To provide our fitness business monetization consultation services and respond to your enquiries
  • Communication: To contact you regarding our services, respond to your questions, and provide customer support
  • Business Operations: To manage our client relationships, process service agreements, and conduct business activities
  • Website Improvement: To analyse website usage, improve our services, and enhance user experience
  • Marketing: To send relevant information about our services (with your consent where required)
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: Where you have given explicit consent for specific processing activities
  • Contract Performance: Where processing is necessary to fulfil our service obligations
  • Legitimate Interests: Where we have legitimate business interests that do not override your privacy rights
  • Legal Obligation: Where processing is required to comply with legal requirements

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our cookie usage, please refer to our Cookie Policy.

Data Sharing and Third Parties

We do not sell, trade, or otherwise transfer your personal information to third parties except in the following circumstances:

  • Service Providers: Trusted third-party service providers who assist in operating our website and conducting business
  • Legal Requirements: When required by law, regulation, or legal process
  • Business Protection: To protect our rights, property, or safety, or that of our clients or others
  • Consent: With your explicit consent for specific sharing purposes

All third-party service providers are contractually required to maintain appropriate data protection standards and use your information only as directed by us.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by law. Our data retention periods are determined based on:

  • The nature of the information and the purposes for which it is processed
  • Legal, regulatory, or contractual requirements
  • The need to resolve disputes or enforce agreements
  • Legitimate business interests and operational needs

Generally, we retain client communication records for up to seven years, website analytics data for up to two years, and marketing consent records until consent is withdrawn.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

  • Access: Right to request information about the personal data we hold about you
  • Rectification: Right to request correction of inaccurate or incomplete data
  • Erasure: Right to request deletion of your personal data in certain circumstances
  • Restriction: Right to request limitation of processing in certain situations
  • Portability: Right to receive your data in a structured, machine-readable format
  • Objection: Right to object to processing based on legitimate interests or for marketing purposes
  • Withdraw Consent: Right to withdraw consent where processing is based on consent

To exercise any of these rights, please contact us using the information provided below.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication measures
  • Staff training on data protection and security practices
  • Incident response procedures for data breaches

International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

  • European Commission adequacy decisions
  • Standard Contractual Clauses (SCCs)
  • Binding Corporate Rules
  • Certification schemes or codes of conduct

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal data from a child under 18, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this Privacy Policy regularly to stay informed about our data practices.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your data protection rights, or need to contact us regarding privacy matters, please reach out to us:

Privacy Contact:
Email: [email protected]
Phone: +352 26169943
Address: malverodix.top SARL, Rue Beaumont 109, 4785 Esch-sur-Alzette, Luxembourg

You also have the right to lodge a complaint with the Luxembourg National Commission for Data Protection (CNPD) if you believe your data protection rights have been violated.