top of page

PRIVACY POLICY

1. Data Controller
The data controller is ISOM – International School of Osteopathic Medicine, with its registered office at CALEA MARTIRILOR 1989 Nr. 42, contact e-mail: info@isomlearning.com

​

2. Types of Data Collected
ISOM collects and processes the following categories of personal data:

  • Personal and contact data: name, surname, e-mail, phone number, address.

  • Payment and billing data: necessary for managing purchases, enrollments, and courses.

  • Browsing data: IP address, access logs, technical and analytical cookies.

  • Other voluntarily provided data: for example, through contact forms, newsletter subscriptions, or account creation.

 

3. Purposes of Processing
Data are processed for the following purposes:

  • Administrative and contractual management: course registrations, payments, invoicing.

  • Communications: sending information related to ISOM’s courses and activities.

  • Direct marketing (subject to consent): sending newsletters, informational materials, offers, and promotions.

  • Service analysis and improvement: monitoring site interactions and user preferences.

  • Legal obligations: tax, accounting, and regulatory compliance.

​

4. Legal Basis for Processing

  • Performance of a contract (Art. 6, para. 1, letter b GDPR).

  • Legal obligations (Art. 6, para. 1, letter c GDPR).

  • Consent of the data subject for optional marketing activities (Art. 6, para. 1, letter a GDPR).

  • Legitimate interest of the controller for service improvement and security (Art. 6, para. 1, letter f GDPR).

 

5. Processing Methods
Personal data are processed using electronic and paper tools, adopting appropriate technical and organizational measures to ensure the security and confidentiality of the information.

​

6. Data Retention

  • Data relating to registrations, payments, and contracts are retained for the time necessary for administrative management and for the period required by tax laws (10 years).

  • Data used for marketing purposes will be retained until consent is withdrawn.

​

7. Communication and Disclosure
Data may be communicated to:

  • ISOM staff and collaborators authorized to process data.

  • External service providers (management systems, e-learning platforms, hosting, payments).

  • Competent authorities in cases of legal obligations.
    Data will not be disclosed to the public without explicit consent.

​

8. Data Transfer Abroad
If data are transferred to countries outside the EU, the controller ensures that adequate protection measures in compliance with the GDPR are in place (e.g., Standard Contractual Clauses).

​

9. Rights of the Data Subject
As a data subject, the user may exercise the rights provided for in Articles 15–22 of the GDPR, including:

  • Right of access, rectification, and erasure;

  • Right to restriction and objection to processing;

  • Right to data portability;

  • Right to withdraw consent at any time;

  • Right to lodge a complaint with the Data Protection Authority.
    Requests can be sent to: info@isomlearning.com

​

10. Cookie Policy
The ISOM website uses technical, functional, and analytical cookies to improve browsing experience. For more details and to manage preferences, please consult the dedicated Cookie Policy.

​

11. Changes to the Privacy Policy
ISOM reserves the right to update this notice at any time. Changes will be published on this page with the date of the latest update.

​

Last update: 03/09/2025

bottom of page