Med Equity GDPR Privacy Policy

​

Effective Date: [Insert Date]

Med Equity ("we," "us," or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit or use our website, in compliance with the UK General Data Protection Regulation (UK GDPR) and the EU GDPR.

Our website is hosted on Wix.com, which provides us with an online platform to operate our services. Wix has its own GDPR compliance measures, which include secure data storage, encryption, and user control over personal data.

By using our website, you agree to the terms outlined in this policy.

​

1. Data We Collect

When you use Med Equity, we may collect the following types of personal data:

A. Information You Provide Directly

• Registration Data: Name, email address, phone number, investment status (e.g., professional investor), and other details required for compliance.

• Investment Interest Data: Your selected investment preferences, the companies you engage with, and any information you provide while expressing interest in an opportunity.

• Communication Data: Any messages, inquiries, or customer service requests sent to us.

B. Information Collected Automatically

When you visit our website, Wix’s hosting infrastructure may automatically collect:

• IP Address & Device Information – Includes browser type, device type, and operating system.

• Cookies & Tracking Data – Cookies help us analyze site usage and enhance functionality (see Section 8 for more details).

C. Third-Party Data Sources

We may receive additional verification or compliance-related data through third-party providers, such as regulatory compliance services, only when necessary for legal purposes.

​

2. How We Use Your Data

We process your personal data for the following purposes:
✅ To provide and manage our investment platform (e.g., allowing access to investment listings).
✅ To comply with legal and regulatory requirements (e.g., ensuring only eligible investors access opportunities).
✅ To communicate with you (e.g., updates, support, or responding to inquiries).
✅ To improve website performance through analytics and feedback.
✅ To ensure security and protect against fraud or unauthorized access.

We do not sell or share your data with third parties for marketing purposes.

​

3. Legal Basis for Processing

Under GDPR, we process personal data based on:

• Legitimate Interests – To provide access to investment opportunities.

• Contractual Necessity – When you register and interact with businesses listed on our platform.

• Legal Obligations – To comply with UK financial regulations.

• Consent – For optional marketing communications (you can opt out anytime).

 

4. Data Storage & Security

We use Wix.com’s secure hosting environment, which includes:
🔒 Encrypted data storage & SSL protection
🔒 Regular security updates & firewalls
🔒 Access control measures to prevent unauthorized access

We retain personal data only as long as necessary for the stated purposes or legal compliance.

​

5. Your Rights Under GDPR

Under the UK GDPR & EU GDPR, you have the following rights:

🔹 Right to Access – Request a copy of your personal data.
🔹 Right to Rectification – Correct inaccurate or incomplete data.
🔹 Right to Erasure ("Right to be Forgotten") – Request deletion of your data.
🔹 Right to Restrict Processing – Limit how we use your data.
🔹 Right to Object – Withdraw consent or object to direct marketing.
🔹 Right to Data Portability – Receive your data in a machine-readable format.

To exercise your rights, contact us at [Insert Contact Email]. We will respond within one month as required by law.

 

6. Third-Party Data Sharing

We do not sell your data. However, we may share it with:

• Regulatory authorities when legally required.

• Service providers (e.g., Wix, cloud storage, and compliance tools) under strict data protection agreements.

All third parties must comply with GDPR data security standards.

 

7. International Data Transfers

Wix’s servers are located globally, including in the EU, UK, and US. Any data transfers outside the UK or EEA comply with GDPR-approved safeguards, such as:
✅ Standard Contractual Clauses (SCCs) for international data protection.
✅ Encryption & Secure Processing measures to ensure safe transfers.

​

8. Cookies & Tracking Technologies

We use cookies to enhance user experience. You can manage or disable cookies through your browser settings.

 

Types of Cookies We Use:

🍪 Essential Cookies – Required for site functionality.
📊 Analytics Cookies – Help us understand user interactions.
📢 Marketing Cookies – Used only with your consent for relevant ads.

For details, see our Cookie Policy [Insert Link].

​

9. Data Retention Policy

We keep personal data for:

• Up to 7 years (as required by UK tax & financial laws for regulatory compliance).

• Shorter retention for general inquiries (deleted after 12 months).

• Immediately deleted if you request data erasure (unless legally required to retain it).

 

10. Contact Information & Complaints

For GDPR-related inquiries, please contact:
📩 Email: [Insert Contact Email]
📍 Address: [Insert Business Address]

If you are unsatisfied, you can lodge a complaint with the UK Information Commissioner’s Office (ICO):
🔗 Website: https://ico.org.uk/make-a-complaint/

 

11. Policy Updates

We may update this Privacy Policy to reflect changes in legal requirements or company practices. Any updates will be posted on this page, and if significant, we will notify users via email or website notifications.

Last updated: [Insert Date]