Privacy Policy

This Privacy Policy explains how Mesotherapy Masterclass (“Mesotherapy Masterclass“, “we“, “us“, or “our“) collects, uses, discloses, and safeguards your personal information when you visit https://masterclass.mesotherapy.tech (the “Site“) or interact with any related courses, apps, emails, and services we own and control (collectively, the “Services“).

Quick summary: We collect only the information needed to deliver accredited online mesotherapy education and to comply with legal obligations. You always remain in control of your data—this policy details the choices and rights available to you.

1. Who is the data controller?

  • Company name: Mesotherapy Ltd

  • Registered office: Doriforon 16, 6053 Larnaca, Cyprus

  • Contact email: info@mesotherapy.tech

2. Scope

This Privacy Policy applies to personal information we process about:

  1. Visitors to the Site.

  2. Students enrolling in live or on‑demand courses.

  3. Healthcare professionals who create an account or request certification.

  4. Individuals who contact us, subscribe to newsletters, download resources, or otherwise interact with our Services.

If you see a link to a third‑party site (e.g., payment gateways, social networks), their privacy practices govern their handling of your information. We encourage you to review their policies.

3. Information we collect

Category Examples Legal basis*
Account & Profile Data Name, professional title, clinic/hospital, country, email, phone (optional), profile photo Contract; Legitimate interest
Course Activity Lessons viewed, assessment scores, certificates earned, feedback submitted Contract; Legitimate interest
Payment Data Last 4 digits of card, card type, billing address — processed securely by Stripe, PayPal, or similar Contract; Legal obligation
Technical & Usage Data IP address, device ID, browser type, pages viewed, referring URLs, time zone, cookies Legitimate interest; Consent (for non‑essential cookies)
Marketing Preferences Opt‑in to newsletters, webinar reminders, special offers Consent
Medical Disclosures Any medical details you voluntarily share in course discussions or Q&A Consent; Legitimate interest (please avoid disclosing patient‑identifiable data)

*Legal bases under the EU General Data Protection Regulation (GDPR). For definitions see §6.

We do not knowingly collect information from anyone under 18 or process special categories of data (e.g., health data) except where you explicitly choose to share it.

4. How we use your information

We use your information to:

  1. Provide and administer courses (register accounts, grant CPD/CE credits, issue certificates).

  2. Process transactions via secure payment processors—card details never touch our servers.

  3. Communicate with you about your enrollment, course updates, security alerts, and service messages.

  4. Send marketing communications you have opted in to (you may unsubscribe anytime).

  5. Personalise content and improve our Services through analytics and A/B testing.

  6. Detect, prevent, and address fraud or security issues.

  7. Comply with legal obligations, such as tax and accounting rules or responding to authorities.

We do not sell your personal information.

5. Cookies & similar technologies

We use cookies, tags, pixels, and local storage to:

  • Keep you signed in.

  • Remember course progress.

  • Measure traffic and user engagement (Google Analytics 4, Plausible Analytics).

Non‑essential cookies (e.g., marketing, social media) are only set with your consent. You can adjust settings at any time via our cookie banner or your browser.

6. Legal bases for processing (GDPR)

We rely on one of the following bases:

  • Contract: processing necessary to fulfill our agreement with you.

  • Consent: you have clearly agreed to the processing.

  • Legitimate interests: we have a business interest that is not overridden by your rights.

  • Legal obligation: processing required by law (e.g., bookkeeping).
    Where we rely on consent, you may withdraw it at any time without affecting prior lawfulness.

7. Disclosure to third parties

We share data only with service providers who help us operate, subject to strict confidentiality and data protection terms:

  • Hosting & infrastructure: Cloudflare, Vercel

  • Payment processing: Stripe, PayPal

  • Email delivery: Postmark, Mailerlite

  • Analytics: Google Analytics 4, Plausible Analytics

  • Video streaming: Vimeo, Mux

We may also disclose information when required by law, in connection with a business transfer, or with your explicit consent.

8. International data transfers

Our servers are located in the European Union. Where partners are based outside the EEA/UK, we rely on:

  • Adequacy decisions (e.g., UK Adequacy; EU‑US Data Privacy Framework), or

  • Standard Contractual Clauses (SCCs) plus supplementary measures.

9. Data retention

We retain personal data only for as long as necessary to:

  1. Provide Services to you.

  2. Meet legal, accounting, or reporting obligations.

  3. Resolve disputes or enforce agreements.

Inactive accounts are anonymised or deleted after 5 years of inactivity.

10. Security

We implement administrative, technical, and organisational measures, including:

  • HTTPS/TLS encryption.

  • Security headers (HSTS, CSP, X‑Content‑Type‑Options, X‑Frame‑Options).

  • Regular vulnerability scans and penetration testing.

  • Access controls and 2‑factor authentication for admin accounts.

No method of transmission over the Internet is 100% secure; we cannot guarantee absolute security.

11. Your rights

Depending on where you live, you have the right to:

  • Access the personal data we hold about you.

  • Rectify inaccurate or incomplete data.

  • Erase your data (“right to be forgotten”).

  • Restrict or object to processing.

  • Data portability.

  • Withdraw consent at any time.

  • Lodge a complaint with your local supervisory authority.

To exercise any of these rights, email info@mesotherapy.tech or use your account privacy dashboard.

12. Children’s privacy

Our Services are directed at medical and aesthetic professionals aged 18 or older. We do not knowingly collect information from anyone under 16. If you believe a minor has provided us data, please contact us so we can delete it.

13. Changes to this policy

We may update this Privacy Policy from time to time (e.g., to comply with laws or reflect new practices). When we do, we will post the revised version on this page and update the “Effective date” above. Material changes will be communicated via email or prominent notice on the Site.

14. Contact us

For any privacy‑related questions, or to exercise your data rights, please contact us at:

Email: info@mesotherapy.tech
Postal address: Mesotherapy Ltd, Doriforon 16, 6053 Larnaca, Cyprus

If you are in the EEA/UK and feel we haven’t resolved your concern, you may lodge a complaint with your local data protection authority.

    0
    Your Cart
    Your cart is emptyReturn to Shop