Privacy Policy

Introduction

Leadex AG ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your information when you visit our website or use our alternative and complementary medicine services. We are the data controller for the personal data we collect about you.

Data We Collect

The data collection we undertake includes various types of personal information depending on how you interact with our services. We collect the following categories of personal data:

• Contact Information: Name, email address, phone number, postal address
• Medical Information: Health conditions, treatment history, symptoms, and other medical data relevant to our services
• Website Usage Data: IP address, browser type, pages visited, time spent on pages, referring websites
• Communication Data: Records of correspondence, appointment requests, and feedback
• Payment Information: Billing details and payment history (processed securely through third-party payment processors)
• Marketing Data: Preferences for receiving marketing communications and responses to promotional materials

How We Use Your Information

We use of your data is based on legitimate interests and legal obligations. We use your personal information for the following purposes:

• Providing healthcare services and alternative medicine treatments
• Managing appointments and patient records
• Communicating about your treatment and care
• Processing payments for services
• Improving our website and services through analytics
• Sending relevant health information and service updates (with your consent)
• Complying with legal and regulatory requirements
• Protecting our legitimate business interests and legal rights

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please see our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: Where you have given explicit consent for specific processing activities
• Contract: To fulfil our contractual obligations in providing healthcare services
• Legitimate Interests: For business operations, fraud prevention, and service improvement
• Legal Obligation: To comply with healthcare regulations and legal requirements
• Vital Interests: To protect your health and safety in emergency situations

Data Sharing and Disclosure

We may share your personal data with the following categories of recipients:

• Healthcare professionals involved in your care
• Third-party service providers (payment processors, IT support, analytics providers)
• Legal and regulatory authorities when required by law
• Professional bodies for licensing and regulatory compliance

We do not sell your personal data to third parties. All data sharing is conducted in accordance with applicable data protection laws and our contractual obligations.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Medical records are retained in accordance with German healthcare regulations and professional guidelines, typically for a minimum of 10 years after your last treatment. Website analytics data is retained for up to 26 months. Marketing data is retained until you withdraw consent or for up to 3 years of inactivity.

International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure appropriate safeguards are in place, including adequacy decisions, standard contractual clauses, or other approved mechanisms under GDPR.

Your Rights

Under GDPR and applicable data protection laws, your rights include:

• Right of Access: Request copies of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data in certain circumstances
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise these rights, please contact us at privacy@leadex.top or +49 40 87474 28. We will respond to your request within one month.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, access controls, regular security assessments, and staff training on data protection.

Children's Privacy

Our services are not directed at children under 16 years of age. We do not knowingly collect personal data from children under 16 without parental consent. If we become aware that we have collected data from a child under 16 without proper consent, we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. Continued use of our services after changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

Supervisory Authority

If you believe we have not handled your personal data in accordance with applicable data protection laws, you have the right to lodge a complaint with the relevant supervisory authority. In Germany, this is the Federal Commissioner for Data Protection and Freedom of Information (BfDI).