Data Privacy Policy

EN|CS
MDR Academy's privacy policy — how we collect, use, and protect your personal data in accordance with GDPR (EU) 2016/679.

Data Privacy Policy

Last updated: April 2026

This privacy policy explains how MDR Academy collects, uses, and protects personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR).

1. Data Controller

The data controller responsible for personal data processed through this platform is:

Bc. Karel Boháč Příkop 838/6, 602 00 Brno – Zábrdovice Czech Republic IČO: 17752515 📧 mrdacademy.eu@gmail.com

2. What Data We Collect

We collect only the data necessary to operate the platform and respond to your enquiries:

  • Account data — name and email address, collected when you register for an account.
  • Usage data — anonymised information about how you navigate the platform (pages visited, session duration), used solely to improve the platform.
  • Contact data — name, email address, and the content of your message, when you contact us directly.
  • Payment data — when you purchase Full Access, payment is processed by our payment provider. We do not store your payment card details.

We do not collect sensitive personal data. We do not sell your data to third parties.

3. Legal Basis for Processing

We process your personal data on the following legal bases under GDPR Article 6:

  • Contract performance — to provide you with access to the platform and its features.
  • Legitimate interests — to improve platform performance and respond to enquiries.
  • Legal obligation — where processing is required to comply with applicable law.
  • Consent — where you have explicitly opted in to any optional communication.

4. How We Use Your Data

Your data is used exclusively to:

  • Provide and maintain your access to MDR Academy
  • Respond to your messages and support requests
  • Improve the content and performance of the platform
  • Comply with legal obligations

We do not use your data for automated decision-making or profiling.

5. Data Retention

We retain your personal data only for as long as necessary for the purposes described above, or as required by applicable law. Account data is retained for the duration of your account and deleted upon request. Contact data is retained for up to 2 years unless you request earlier deletion.

6. Your Rights Under GDPR

As a data subject under GDPR, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Rectification — request correction of inaccurate or incomplete data
  • Erasure — request deletion of your personal data ("right to be forgotten")
  • Restriction — request that we limit how we process your data
  • Portability — receive your data in a structured, machine-readable format
  • Objection — object to processing based on legitimate interests
  • Withdraw consent — where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, contact us at mrdacademy.eu@gmail.com. We will respond within 30 days.

If you believe your data has been processed unlawfully, you have the right to lodge a complaint with the Czech supervisory authority:

Úřad pro ochranu osobních údajů (UOOU) www.uoou.cz

7. Cookies and Tracking

When you visit MDR Academy, the platform may store or retrieve information in your browser in the form of cookies. We use a cookie preference banner that allows you to control which categories of cookies are active. The categories are:

Strictly Necessary These cookies are essential for the website to function and cannot be switched off. They do not store any personally identifiable information.

Analytics We use analytics cookies (such as Google Analytics) to understand how visitors interact with the platform — for example, which pages are visited most and how long sessions last. This data is collected and reported anonymously and is used solely to improve the platform. Analytics cookies are only set if you accept this category in the cookie banner.

Marketing Marketing cookies are used to track visitors across websites in order to display relevant advertisements. This category is present in our cookie banner but is not currently active — we do not run any marketing or retargeting campaigns at this time. No marketing cookies are set.

You can review and change your cookie preferences at any time via the cookie settings banner on this website.

8. Third-Party Services

We use a small number of third-party services to operate the platform (such as our payment provider and hosting infrastructure). These providers process data only on our behalf and under contractual obligations consistent with GDPR. We do not share your data with third parties for their own purposes.

9. Data Security

We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. All data transmitted to and from this platform is encrypted in transit.

10. Changes to This Policy

We may update this privacy policy from time to time. The date at the top of this page reflects the most recent revision. We encourage you to review this policy periodically.

For any questions about this policy, contact us at mrdacademy.eu@gmail.com.