Preamble
This Data Protection Policy explains how Bodhi LLC (hereinafter referred to as the “Company”) processes the personal data of users registered on its Application and Website (hereinafter referred to as the “Platform”), ensuring their confidentiality and security.
Your use of the Platform will be considered as confirmation that you have read, thoroughly reviewed, and agreed to the Data Protection Policy and the terms and conditions of data processing defined herein.
If you use the Application on behalf of a third party (e.g., a family member), you declare that you are authorized to agree to the Data Protection Policy and the information specified therein on behalf of the third party.
- Processing of Personal Data
1.1. The purpose of processing your personal data by Bodhi is to:
- Identify services/products tailored to you;
- Offer personalized promotions;
- Accept, process, and deliver orders via courier service;
- Manage delivery, returns, refunds, and partial refunds of products and services;
- Address your claims;
- Accumulate loyalty points.
1.2. Bodhi LLC processes your data in accordance with the principles defined by the Personal Data Protection Law of Georgia.
1.3. Data collected and processed from you may include:
- Your first and last name;
- Data about the device you use to access the Platform;
- Your residential address (country, city, street, and other details);
- Contact details (e.g., email address and phone number);
- Demographic data (e.g., gender and date of birth);
- The first 6 and/or last 4 digits of your debit/credit card, the cardholder’s name, and the unique transaction code;
- Purchase history of products through the Application or Website;
- Payment transactions for products/services purchased via the Platform.
1.4. Mandatory data for Platform registration includes:
- First and last name;
- Phone number;
**1.5. Limited access to services will apply if you do not upload the loyalty card to the Platform (e.g., no points accrual, points-based payments, or discounts).
**1.6. Upon termination of data processing for any reason, the Company reserves the right to anonymize your personal data and retain it for analytical/statistical purposes.
- Confidentiality and Security Guarantees
2.1. You are responsible for the accuracy of the information provided to us. You are obligated to correct or delete incorrect data. In case of changes to your personal data, you must update it on the Platform. The Company reserves the right to suspend services if there are doubts about the accuracy, completeness, or reliability of the information provided.
2.2. To request account termination or the blocking/deletion/destruction of your personal data, contact us using the contact details provided in Section 5 of this policy.
2.3. After terminating data processing, your personal data will be retained for no more than three (3) years in accordance with applicable laws or until the resolution of any disputes related to data processing.
2.4. Bodhi does not control external websites that may appear in search results or as links in its services. These sites may place cookies or collect information about you, for which Bodhi is not responsible.
2.5. The Company implements adequate security measures to protect personal data under its control against unauthorized access, misuse, disclosure, modification, destruction, or accidental loss.
2.6. Bodhi has a documented information security program outlining managerial, technical, operational, and physical safeguards proportional to the nature of its business and collected information.
2.7. The Company may share your personal data with government, regulatory, or law enforcement authorities as required by law.
2.8. To achieve the processing purposes outlined in this policy, your personal data may be shared with contractors, such as development companies, tax and financial institutions, and courier services.
2.9. Bodhi is not responsible for the confidentiality or security of your personal data processed by third parties beyond contractual obligations with the Company. Additionally, Bodhi is not liable for security breaches, government actions, unauthorized access, or technical issues beyond its control.
- Changes to the Data Protection Policy
This document may be updated in accordance with changes to legislation or the Company’s data protection policies. Any updates will be published immediately on the Platform. Significant changes will also be communicated via notifications on your profile page. If you disagree with any changes, you may contact us to terminate your account at info@bodhispa.ge.
- Consent to This Policy
By registering on the Platform, you confirm that you have read this Data Protection Policy and agree to the processing of your personal information by Bodhi in the form and for the purposes defined herein.
- Contact Information:
