Privacy Policy

Effective Date: December 2025

Your privacy is important to us.
This policy explains how cāive collects, uses, and protects your personal information when you visit caive.net or use our services.

1. Information We Collect

We may collect personal information you voluntarily provide — such as your name and email address — when you subscribe to our newsletter, download resources, or contact us directly.
When you apply for or purchase a guidance service, we also collect information provided through our intake/application form, which may include your preferred format (audio or async), scheduling preferences, your Telegram handle (if relevant), and a description of your situation.
We also collect basic service communications needed to run the service and handle requests (for example: scheduling emails, rescheduling/cancellation messages, refund requests, and complaints).
For text-based services, messages are exchanged via Telegram. We may keep limited copies/notes needed to deliver the service and prepare your written summary.
For audio sessions, we do not record calls; we may take written notes during or after the session solely to provide the service and prepare your summary.

2. How We Use Your Information

We use your data to deliver guidance, process payments, handle scheduling and support requests, send email updates (if you opted in), provide access to resources, prevent misuse, and improve the functionality of our site and services.
We never sell or rent your personal data to third parties.

3. Anonymous Data Sharing for cāive’s Development (Opt-in)

You may choose in our intake form to allow us to use anonymized insights from our work to help improve cāive’s services and/or to inform educational examples.
This is optional and does not affect your service.

“Anonymized” means de-identified in a way that you cannot reasonably be re-identified.
If we cannot reliably anonymize something, we treat it as personal data and do not use it for these purposes without your explicit consent.

4. Cookies

This site may use cookies to analyze traffic, remember preferences, and enhance user experience.
You can manage or disable cookies in your browser settings.
If we add non-essential analytics, we will request consent.

5. Third-Party Services & Platform Notes

We use third-party providers to run the service and share only the minimum necessary data with them: Stripe (payments), Google Forms/Sheets (intake & storage), MailerLite (email),
Google Workspace/Gmail and Google Meet (email and audio sessions), and Telegram (text and voice message delivery).

Telegram: Telegram operates its own platform and privacy policy and generally acts as an independent data controller for accounts and messages on its service (standard chats may be cloud-based; Secret Chats are end-to-end encrypted).
We do not control Telegram’s processing. Where possible, we recommend using “Secret Chats” for additional privacy.

For international transfers used by these providers, see Section 14.

6. Data Security

We implement reasonable measures to protect your personal data. However, no method of internet transmission or storage is 100% secure, and we cannot guarantee complete security.

7. Your Rights (GDPR)

You may request access, rectification, deletion, restriction, portability, or object to certain processing.
Where processing is based on consent, you may withdraw consent at any time without affecting prior lawful processing.

We respond to valid requests within one month.
Where permitted by law, we may extend this by up to two additional months for complex or numerous requests; if so, we will inform you within one month and explain why.

8. Children’s Privacy

Our website and services are intended for individuals 18+.
We do not knowingly collect personal data from children.
If you believe a minor has provided data, contact us so we can delete it.

9. External Links

This website may contain links to external websites.
We are not responsible for the privacy practices or policies of third-party sites.
We recommend reviewing their policies before providing any personal data.

10. Updates to This Policy

This privacy policy may be updated periodically to reflect changes in law, technology, or business practices.
The most recent version will always be posted on this page, with the effective date shown above.

11. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:
(a) Contractual necessity to provide paid services;
(b) Legitimate interest to improve our services and protect against misuse;
(c) Legal obligations for accounting and tax record-keeping; and
(d) Consent when you opt-in to newsletters and/or anonymized data sharing.

If you choose to share information that may be considered special category data (for example, health-related information),
we process it only where a valid GDPR condition applies (for example, explicit consent where required).

12. Data Controller

The data controller responsible for your information is:
Dominik Jasiński / cāive
Email: support@caive.net

13. Data Retention

Application/intake data is retained as long as needed to review fit and deliver the service. If you do not proceed, we retain it only as long as necessary for basic record-keeping and misuse prevention.

Guidance data from text-based services and notes from audio sessions are retained for the duration of the service plus 30 days and then deleted, unless you request earlier deletion where feasible.

Where communications occur on Telegram, deletion applies to data stored by cāive (for example: exported notes, summaries, internal logs). We cannot guarantee deletion of content stored by Telegram or on your devices.

We may retain limited records necessary to establish, exercise, or defend legal claims for up to 12 months after completion, or longer if a dispute is ongoing.

Payment and invoicing records are retained for at least 5 years after the end of the relevant tax year to comply with Polish tax requirements.

14. International Transfers

Some providers (e.g., Stripe, Google, MailerLite, Telegram) may transfer data outside the European Economic Area.
Where applicable, providers may rely on the EU–U.S. Data Privacy Framework; otherwise, transfers may rely on Standard Contractual Clauses or other appropriate safeguards.

15. How to Exercise Your Rights & Complaints

To exercise your rights or ask questions, email
support@caive.net or use the Contact page.
You also have the right to lodge a complaint with the Polish Data Protection Authority (UODO) — uodo.gov.pl.

16. Sensitive Information

Please do not share medical records, financial details, or passwords in messages.
Guidance conversations are delivered via Telegram and are also subject to Telegram’s security and privacy settings.
Telegram may store standard chats in the cloud; you are responsible for choosing your privacy settings (for example: using Secret Chats).

17. Direct Marketing

If you subscribe to updates, you can unsubscribe at any time via the link in our emails or by contacting us.
You have the right to object at any time to the processing of your data for direct marketing.