Privacy Policy

Last updated: 07 November 2025

MindElevate High (“we”, “our”, “us”) provides mindset education and related services to professionals. We respect privacy and process personal data in line with applicable EU and Czech regulations, including the GDPR.

1. Data Controller

MindElevate High s.r.o.
Na Pankráci 1291,
140 00 Praha 4-Nusle, Czechia
Email: privacy@mindelevatehigh.com

2. Categories of Personal Data

  1. Identification & Contact: name, email, phone (optional), country.
  2. Account & Access: login identifier, role, session IDs.
  3. Service Records: program enrollments, workshop attendance, support history.
  4. Communications: messages you send to us, survey responses.
  5. Technical Data: IP address, device type, browser, general location (city/region), timestamps.
  6. Cookies & Similar Tech: identifiers explained in the Cookie Policy below.

3. Purposes of Processing

  1. Provide, maintain, and improve our programs and website.
  2. Handle account setup, authentication, and access control.
  3. Respond to requests and deliver support.
  4. Send service-related communications (e.g., updates about sessions).
  5. Measure usage to improve learning materials and site performance.
  6. Comply with legal requirements and resolve disputes.

4. Legal Bases under GDPR

  1. Consent: for specific actions such as optional cookies or newsletters.
  2. Contractual necessity: to deliver requested programs.
  3. Legal obligation: records we must keep under applicable law.
  4. Legitimate interests: site security, product improvement, fraud prevention, with safeguards.

5. Data Retention

We keep personal data only as long as needed for the purposes above, unless a longer period is required by law. Typical periods: account data for the life of the account; service records for up to 3 years after the last activity; technical logs up to 12 months unless required longer for security or compliance.

6. Sharing and Processors

We use vetted vendors for hosting, email delivery, analytics, payments, and support tooling. These vendors act as processors and are bound by data protection terms. We do not sell personal data.

7. International Transfers

If data is transferred outside the EEA, we rely on safeguards such as adequacy decisions or Standard Contractual Clauses.

8. Your Rights

  1. Access your data and receive a copy.
  2. Rectify inaccurate or incomplete data.
  3. Erase data when legally permitted (“right to be forgotten”).
  4. Restrict processing under certain conditions.
  5. Object to processing based on legitimate interests.
  6. Data portability where technically feasible.
  7. Withdraw consent at any time for activities based on consent.
  8. Lodge a complaint with an authority: in CZ, ÚOOÚ (The Office for Personal Data Protection).

9. Security Measures

We implement access controls, encryption in transit, activity logging, least-privilege principles, and periodic reviews. No method is perfectly secure; we continually update our safeguards.

10. Cookie Policy

We use cookies and similar technologies to operate the site and enhance the user experience. You can manage preferences via our cookie banner or your browser settings.

  1. Strictly Necessary: required for core features like login and session stability.
  2. Preference: remember language and display options.
  3. Performance & Analytics: measure usage to improve content and site reliability.
  4. Functional: enable optional tools such as video playback or chat widgets.

Cookie duration varies; some expire at session end, others persist for up to 12 months. You can disable non-essential cookies through the banner or browser settings. Blocking some cookies may reduce functionality.

11. Children’s Data

Our services are intended for adults. We do not knowingly collect data from children under 16. If you believe a child provided data, contact us to remove it.

12. Contact

For requests related to privacy or GDPR rights, contact: privacy@mindelevatehigh.com.