1. Introduction
Inner Harmony Academy is committed to protecting the privacy and personal data of users of its website, in accordance with:
* General Data Protection Regulation (GDPR – EU Regulation 2016/679)
* UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (PDPL)
This Privacy Policy explains how we collect, use, store, and protect personal data in an international context.

2. Data Controller
Entity: Inner Harmony Academy
Location: Dubai, United Arab Emirates
Contact email: hello@innerharmonyuae.com
Inner Harmony Academy acts as the Data Controller under both the GDPR and the UAE PDPL.

3. Territorial Scope
This Privacy Policy applies to:
* Users located in the European Union, under the GDPR
* Users located in the United Arab Emirates, under the UAE PDPL
* Any user whose personal data is processed by Inner Harmony Academy, regardless of geographical location

4. Personal Data Collected
We may collect the following categories of personal data:
* Basic identification data (name)
* Contact details (email address, phone number – optional)
* Information voluntarily submitted through contact, collaboration, or partnership forms
* Technical data (IP address, browser type, device information, cookies)
Important notice:
This website does not collect health or clinical data, does not provide psychological or psychiatric care, and does not offer diagnostic or therapeutic services.

5. Purpose of Data Processing
Personal data is processed solely for the following purposes:
* Responding to contact requests, enquiries, or collaboration proposals
* Managing institutional and educational communications
* Ensuring website functionality, security, and performance
* Complying with legal and regulatory obligations
Personal data collected through this website is not used for clinical, diagnostic, or therapeutic purposes.

6. Legal Basis for Processing
In accordance with the GDPR and UAE PDPL, personal data is processed on the basis of:
* Explicit consent provided by the data subject
* Performance of a request or communication initiated by the user
* Compliance with legal obligations
* Legitimate interest, where applicable and proportionate

7. International Data Transfers
Personal data may be processed or stored outside the user’s country of residence, including:
* The United Arab Emirates
* The European Union
* Secure technical infrastructures operated by international service providers (e.g. website hosting)
Where international data transfers occur, Inner Harmony Academy ensures:
* Appropriate safeguards are in place
* Contractual protections and technical measures are implemented
* Compliance with GDPR and UAE PDPL transfer requirements

8. Data Retention
Personal data is retained only:
* For as long as necessary to fulfil the purposes for which it was collected
* While valid consent remains in place
* Or as required by applicable law
Once no longer required, data will be securely deleted or anonymised.

9. Data Subject Rights
Under the GDPR and UAE PDPL, users have the right to:
* Access their personal data
* Request rectification or updating of inaccurate data
* Request erasure (“right to be forgotten”)
* Restrict or object to data processing
* Withdraw consent at any time
Requests should be submitted to:

hello@innerharmonyuae.com

10. Data Security
Inner Harmony Academy implements appropriate technical and organisational measures to protect personal data against:
* Unauthorised access
* Loss, alteration, or disclosure
* Unlawful or improper use

11. Updates to This Policy
This Privacy Policy may be updated to reflect legal, regulatory, or operational changes. The most current version will always be available on this website.