This privacy statement was last changed on 2 September 2025, last checked on 2 September 2025, and applies to citizens and legal permanent residents of Canada.
In this privacy statement, we explain what we do with the data we obtain about you via https://www.cmind.cmedaesthetics.com. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:
- we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
- we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
- we first request your explicit consent to process your personal data in cases requiring your consent;
- we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
- we respect your right to access your personal data or have it corrected or deleted, at your request.
1. Purpose and categories of data
We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)
1.1 Registering an account
1.1 Registering an account
The following categories of data are collected
- A first and last name
- An email address
- A telephone number
- Geolocation data
- Education information
- Professional or employment-related information
- Commercial information, including records of personal property, products or services purchased, obtained, or considered
Retention period
We retain this data until the service is terminated.
1.2 Newsletters
1.2 Newsletters
The following categories of data are collected
- A first and last name
- An email address
- Professional or employment-related information
Retention period
We retain this data until the service is terminated.
2. Sharing with other parties
We only share or disclose this data to other recipients for the following purposes:
Purpose of the data transfer: Website traffic analysis and user behavior tracking
Country or state in which this service provider is located: Ireland
Purpose of the data transfer: Deployment and management of analytics and marketing tags
Country or state in which this service provider is located: Ireland
Purpose of the data transfer: Behavioral analytics including heatmaps and session recordings
Country or state in which this service provider is located: Ireland
Purpose of the data transfer: Management of newsletter subscriptions, sending promotional and informational emails
Country or state in which this service provider is located: United States (data transfers protected by Standard Contractual Clauses - SCC)
Purpose of the data transfer: Behavioral advertising, remarketing, and conversion tracking
Country or state in which this third party is located: Ireland
3. Disclosure practices
We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.
If our website or organisation is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.
4. How we respond to Do Not Track signals & Global Privacy Control
Our website does not respond to and does not support the Do Not Track (DNT) header request field.
5. Cookies
Our website uses cookies. For more information about cookies, please refer to our Cookie Policy on our Cookie Policy (CA) webpage.
We have concluded a data Processing Agreement with Google.
6. Security
We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.
7. Third party websites
This privacy statement does not apply to third party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.
8. Amendments to this privacy statement
We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.
9. Accessing and modifying your data
If you have any questions or want to know which personal data we have about you, please contact us. Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person. We shall provide the requested information only upon receipt of a verifiable consumer request. You can contact us by using the information below.
9.1 You have the following rights with respect to your personal data
- You may submit a request for access to the data we process about you.
- You may request an overview, in a commonly used format, of the data we process about you.
- You may request correction or deletion of the data if it is incorrect or not or no longer relevant. Where appropriate, the amended information shall be transmitted to third parties having access to the information in question.
- You have the right to withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. You will be informed of the implications of such withdrawal.
- You have the right to address a challenge concerning non-compliance with PIPEDA to our organization and, if the issue is not resolved, to the Office of the Privacy Commissioner of Canada.
- We shall give access to personal information in an alternative format to an individual with a sensory disability who has a right of access to personal information under PIPEDA and who requests that it be transmitted in the alternative format if (a) a version of the information already exists in that format; or (b) its conversion into that format is reasonable and necessary in order for the individual to be able to exercise rights.
10. Children
Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.
11. Contact details
CMed Aesthetics S.p.A.
CMed Aesthetics S.p.A.
Via Panfilo Castaldi 4
56121, Pisa
Italy
Website: https://www.cmind.cmedaesthetics.com
Email: web@ex.comcmedaesthetics.com
Toll free phone number: +39 050 87 32 075
Phone number: +39 050 87 32 075
We have appointed a contact person for the organizationโs policies and practices and to whom complaints or inquiries can be forwarded:
Carlo Michelini
Via Panfilo Castaldi 4
56121, Pisa
Annex
Nextend Social Login
What personal data we collect and why we collect it
Nextend Social Login collects data when a visitor register, login or link the account with with any of the enabled social provider. It collects the following data: email address, name, social provider identifier and access token. Also it can collect profile picture and more fields with the Pro Addon's sync data feature.
Who we share your data with
Nextend Social Login stores the personal data on your site and does not share it with anyone except the access token which used for the authenticated communication with the social providers.
Does the plugin share personal data with third parties
Nextend Social Login use the access token what the social provider gave to communicate with the providers to verify account and securely access personal data.
How long we retain your data
Nextend Social Login removes the collected personal data when the user deleted from WordPress.
Does the plugin use personal data collected by others?
Nextend Social Login use the personal data collected by the social providers to create account on your site when the visitor authorize it.
Does the plugin store things in the browser?
Yes, Nextend Social Login must create a cookie for visitors who use the social login authorization flow. This cookie required for every provider to secure the communication and to redirect the user back to the last location.
Does the plugin collect telemetry data, directly or indirectly?
No
Does the plugin enqueue JavaScript, tracking pixels or embed iframes from a third party?
No
Complianz | The Privacy Suite for WordPress
This website uses the Privacy Suite for WordPress from Complianz to collect records of consent. For this functionality your IP address is anonymized and stored in our database. For more information, see the Complianz Privacy Statement.
Slider Revolution
In case youโre using Google Web Fonts (default) or playing videos or sounds via YouTube or Vimeo in Slider Revolution we recommend to add the corresponding text phrase to your privacy police:
YouTube
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.
If you're logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.
Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.
Vimeo
Our website uses features provided by the Vimeo video portal. This service is provided by Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
If you visit one of our pages featuring a Vimeo plugin, a connection to the Vimeo servers is established. Here the Vimeo server is informed about which of our pages you have visited. In addition, Vimeo will receive your IP address. This also applies if you are not logged in to Vimeo when you visit our plugin or do not have a Vimeo account. The information is transmitted to a Vimeo server in the US, where it is stored.
If you are logged in to your Vimeo account, Vimeo allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.
For more information on how to handle user data, please refer to the Vimeo Privacy Policy at https://vimeo.com/privacy.
Google Web Fonts
For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.
For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.
If your browser does not support web fonts, a standard font is used by your computer.
Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google's privacy policy at https://www.google.com/policies/privacy/.
SoundCloud
On our pages, plugins of the SoundCloud social network (SoundCloud Limited, Berners House, 47-48 Berners Street, London W1T 3NF, UK) may be integrated. The SoundCloud plugins can be recognized by the SoundCloud logo on our site.
When you visit our site, a direct connection between your browser and the SoundCloud server is established via the plugin. This enables SoundCloud to receive information that you have visited our site from your IP address. If you click on the โLikeโ or โShareโ buttons while you are logged into your SoundCloud account, you can link the content of our pages to your SoundCloud profile. This means that SoundCloud can associate visits to our pages with your user account. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the data transmitted or how it will be used by SoundCloud. For more information on SoundCloudโs privacy policy, please go to https://soundcloud.com/pages/privacy.
If you do not want SoundCloud to associate your visit to our site with your SoundCloud account, please log out of your SoundCloud account.
Ultimate Member
What personal data we collect and why we collect it
Forms
Ultimate Member provides you with forms for user registration, login and profiles.
Via these forms you are collecting personal data from your users.
You should include in your privacy policy what personal data is captured when someone submits/fills in one of the forms, why you collect it and what you do with this data and how long you keep it.
How long we retain your data
Registered user information is retained in your websiteโs database indefinitely.
Data can be exported or removed upon users request via the existing WordPress data exporter or eraser.
If syncing data to a 3rd party service (e.g Mailchimp via our MailChimp extension), data is retained there until unsubscribed or deleted.
Where we send your data
Ultimate Member does not send any user data outside of your site by default.
If you have extended the functionality of the plugin (e.g sending registered user data to MailChimp via our MailChimp extension, this user info may be passed to these external services. These services may be located abroad and outwith the EU.
Newsletter Subscription and Data Processing
When you subscribe using our website signup forms, your personal data will be processed to send you periodic newsletters and marketing communications. By signing up, you explicitly consent to receive such emails. We use Mailchimp as our email marketing platform; therefore, your data will be shared with and processed by Mailchimp under their Privacy Policy, with appropriate data protection safeguards in place.