top of page

PRIVACY POLICY / POLICY OF CONFIDENTIALITY

Last updated: 20/10/2025

This Privacy Policy explains how we collect, use, share, and protect your personal data when you use our Services or visit our website. We are committed to protecting your privacy and complying with the EU General Data Protection Regulation (GDPR) and Maltese data-protection law. RGPD+1

1. Data Controller

Laurine L’Oracle
Registered in Malta.
 

2. Personal Data We Collect

We may collect the following personal data when you book or use our Services:

  • Identity and contact details: name, email, phone number, postal address (if provided);

  • Birth details: date, time and place of birth (required for natal chart and astrocartography);

  • Payment information (processed via third-party payment processors; we do not store full card details);

  • Communications and session notes: messages, email correspondence, and information you provide during sessions;

  • Technical data: IP address, device and browser information, and cookies as described in our Cookie Notice.
     

3. Legal Basis for Processing

We process personal data based on one or more of the following legal grounds:

  • Contract performance (processing necessary to deliver the Service you requested);

  • Legitimate interests (running our business, maintaining records, preventing fraud);

  • Consent (where required, for marketing or other optional processing);

  • Legal obligations (complying with court orders, tax, or regulatory obligations).
    Where we ask for consent (for example, to start a service immediately and waive the withdrawal right, or to receive marketing communications), you may withdraw consent at any time — withdrawal will not affect processing already carried out lawfully.
     

4. How We Use Your Data

We use your personal data to:

  • Provide and personalise Services and related reports;

  • Communicate appointment details, confirmations, and follow-ups;

  • Process payments and manage bookings;

  • Comply with legal obligations;

  • Improve our services and website operations;

  • With your consent, send promotional material (you may opt out anytime).
     

5. Data Sharing & Third Parties

We may share personal data with:

  • Payment processors and booking platforms (to process payments and reservations);

  • Technical service providers (website hosting, email providers);

  • Legal or regulatory authorities where required by law.
    We will never sell your personal data to third parties. When we engage processors, we use data-processing agreements and, where relevant, appropriate safeguards for international transfers. Where data is transferred outside the EEA, we rely on an adequacy decision, standard contractual clauses, or other lawful transfer mechanisms. European Commission
     

6. Data Retention

We retain personal data only as long as necessary for the purposes set out (e.g., to provide the Service, meet legal obligations, resolve disputes). Typical retention periods: booking/payment records (7 years for tax purposes), session notes and client files (kept securely for a period in line with professional practice and legal requirements — typically up to 7 years, unless you request deletion).

7. Your Rights

Under GDPR you have rights including:

  • Right of access to your data;

  • Right to rectification of inaccurate data;

  • Right to erasure (right to be forgotten) in certain circumstances;

  • Right to restrict or object to processing;

  • Right to data portability;

  • Right to withdraw consent where processing is based on consent.
    To exercise these rights, contact: [your email]. If you remain dissatisfied, you may lodge a complaint with Malta’s Information & Data Protection Commissioner. IDPC
     

8. Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, accidental loss, or alteration. However, no method of transmission over the internet is completely secure.

9. Confidentiality of Session Content

All information exchanged during sessions is confidential and will not be shared with third parties without your explicit consent, except where disclosure is legally required (e.g., a court order) or where necessary to protect against serious harm.

10. Minors

We do not intentionally collect data from children under 18. If you are under 18, please obtain parental consent before booking.

11. International Transfers

If we transfer personal data outside the EEA, we will ensure appropriate safeguards are in place (e.g., adequacy decisions or standard contractual clauses). See EU guidance on international transfers. European Commission

12. Changes to this Policy

We may update this Privacy Policy from time to time. The latest version will be on our website with the last updated date.

13. Contact & Complaints

For privacy enquiries or to exercise your rights:

Please, contact me through the website form. 

bottom of page