GDPR Compliance &Your Data Rights
Lux Therapy is fully compliant with the General Data Protection Regulation (GDPR), ensuring the highest standards of data protection and privacy for our European users.
Our commitment toGDPR principles
We adhere to all seven principles of GDPR to ensure your personal data is handled with the utmost care and respect.
Lawfulness & Transparency
We process your data lawfully, fairly, and in a transparent manner. You always know what data we collect and why.
Purpose Limitation
Personal data is collected for specified, explicit, and legitimate purposes only - primarily to provide mental health support.
Data Minimization
We only collect data that is adequate, relevant, and limited to what is necessary for providing our services.
Storage Limitation
Personal data is kept only as long as necessary and can be deleted at your request at any time.
Your rights underGDPR
As a data subject, you have comprehensive rights over your personal data.
Right to Access
Request a copy of all personal data we hold about you
Right to Rectification
Request correction of inaccurate or incomplete personal data
Right to Erasure
Request deletion of your personal data ('right to be forgotten')
Right to Data Portability
Receive your data in a structured, commonly used format
Right to Restrict Processing
Request limitation of processing your personal data
Right to Object
Object to processing of your personal data for certain purposes
How we processyour data
Legal Basis for Processing
We process your personal data under the following legal bases:
Consent
You have given clear consent for us to process your data for therapy services
Contract
Processing is necessary for the performance of our service agreement
Vital Interests
Processing may be necessary to protect vital interests in emergency situations
International Transfers
When we transfer data outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.
Questions aboutyour data?
Our support team is here to help with any questions about how we handle your personal data or to assist you in exercising your GDPR rights.