← Back to Home

Privacy Policy

Last updated: 2/26/2026

Privacy Policy (EN)

Last updated: 26 February 2026
Website: https://experiential-academy.com

1) Data Controller

Company name: Приключенска Академия ЕООД (transcription: EXPERIENTIAL ACADEMY LTD)
UIC/PIC: 208445883
Registered address: Bulgaria, Ruse (7000), str. Chavdar Voivoda No. 33, entrance A, floor 2
Contact: via the contact details published on the Website (e.g., email/contact form)

2) Overview

This Privacy Policy explains how we collect, use, and protect personal data when you visit our Website. The Website is primarily informational. Visitors do not create public profiles or post content.

3) What data we collect

Depending on how you use the Website, we may collect:

A. Data you provide voluntarily

  • When you contact us (e.g., by email or via a contact form): name, email address, phone number (if provided), message content, and any other information you choose to share.

B. Automatically collected data

  • Technical and usage data such as IP address (and/or a truncated/anonymized form where possible), device and browser information, approximate location (city/country), pages visited, time spent, referral source, and similar diagnostics and statistics.

C. Cookies and similar technologies

  • We may use cookies/technologies necessary for basic functionality and security.

  • If enabled, we may also use non-essential cookies for analytics (subject to consent where required).

4) Why we process your data (purposes)

We process personal data for:

  • Operating and securing the Website (fraud prevention, abuse protection, debugging, ensuring availability);

  • Responding to inquiries and requests you send us;

  • Measuring traffic and improving Website performance and content (analytics, if enabled);

  • Compliance with legal obligations, where applicable.

5) Legal bases (GDPR)

Where GDPR applies, we rely on:

  • Legitimate interests (Art. 6(1)(f)) for security, diagnostics, and improving the Website;

  • Consent (Art. 6(1)(a)) for non-essential cookies/analytics where required;

  • Contract / pre-contract steps (Art. 6(1)(b)) when you contact us regarding services;

  • Legal obligation (Art. 6(1)(c)) where we must retain data by law.

6) Analytics

If enabled, we use analytics tools to understand how visitors use the Website. These tools may place cookies and process usage data.
You can manage non-essential cookies via our cookie banner/settings (where applicable) and/or your browser settings.

7) Admin panel

We operate an internal administrative area used by our team to manage the Website. It is not intended for public use. Access is restricted and may be logged for security purposes.

8) Sharing data with third parties

We do not sell personal data. We may share data with service providers necessary to operate the Website, such as:

  • Hosting/CDN/DNS providers;

  • Analytics providers (if enabled);

  • Email/communication providers (if you contact us).

Such providers process data under contractual obligations and only as needed to provide their services.

9) International transfers

If any provider processes data outside the EEA/UK, we apply appropriate safeguards (e.g., Standard Contractual Clauses) where required.

10) Data retention

We retain personal data only as long as necessary:

  • Contact messages: typically up to 12 months, unless ongoing communication requires longer;

  • Security logs: typically up to 6 months (or as needed for incident investigation);

  • Analytics data: according to the tool configuration (if enabled).

11) Your rights

Depending on your location (including the EEA), you may have the right to:

  • Access, rectify, or delete your data;

  • Restrict or object to processing;

  • Data portability (where applicable);

  • Withdraw consent at any time (where processing is based on consent).

To exercise your rights, contact us via the contact details published on the Website.

12) Security

We use reasonable technical and organizational measures to protect data (access controls, least-privilege permissions, secure hosting practices). No method of transmission is 100% secure.

13) Children

The Website is not directed to children, and we do not knowingly collect personal data from children.

14) Changes to this policy

We may update this Policy from time to time. The “Last updated” date will be adjusted accordingly.