Privacy Policy
Privacy Policy
Privacy Policy
Privacy Policy
Effective date: June 9, 2026
Effective date: June 9, 2026
This Privacy Policy applies to all users of paradoxcrisisprotocols.com and all customers worldwide, including users in the EU and EEA, United Kingdom, United States, Canada, and Australia. Jurisdiction-specific rights are addressed in Section 7.
We do not sell your personal data. We do not rent your personal data. We do not share your personal data with third parties for their own marketing purposes.
This Privacy Policy applies to all users of paradoxcrisisprotocols.com and all customers worldwide, including users in the EU and EEA, United Kingdom, United States, Canada, and Australia. Jurisdiction-specific rights are addressed in Section 7.
We do not sell your personal data. We do not rent your personal data. We do not share your personal data with third parties for their own marketing purposes.
WHO WE ARE /
DATA CONTROLLER
WHO WE ARE /
DATA CONTROLLER
WHO WE ARE / DATA CONTROLLER
SPIRALS L.P. (trading as Paradox Crisis Protocols™) is the data controller responsible for your personal data collected through this website and in connection with our products and services.
Registered address: 45-47 Kyprou Street, Vrilissia, Athens 15235, Greece
Privacy contact email: contact@paradoxcrisisprotocols.com
Company Registration: 167620103000, Greece | VAT No. 801985933
SPIRALS L.P. (trading as Paradox Crisis Protocols™) is the data controller responsible for your personal data collected through this website and in connection with our products and services.
Registered address: 45-47 Kyprou Street, Vrilissia, Athens 15235, Greece
Privacy contact email: contact@paradoxcrisisprotocols.com
Company Registration: 167620103000, Greece | VAT No. 801985933
WHAT PERSONAL DATA
WE COLLECT
WHAT PERSONAL DATA
WE COLLECT
WHAT PERSONAL DATA WE COLLECT
2.1 Data Collected by Product Type
The personal data we collect depends on how you interact with us. We apply a data minimisation approach: we collect only what is necessary for the specific product or service.
Free Protocol Downloads
No personal data is collected to download a free protocol. Downloads are anonymous. We provide an optional email field for users who wish to be notified of future protocol updates; use of this field is entirely voluntary and constitutes consent to receive such notifications.
Paid Supporter Guides
To purchase a Supporter Guide, we collect: your name; your email address; and payment details, which are processed by Gumroad. We do not directly collect, store, or process payment card numbers or bank account details.
Professional licenses (Individual Practitioner and Practice / Group)
For professional license purchases, we collect: your name; email address; organization name; job title or professional role; and payment details processed by Gumroad.
Institutional licenses
For institutional license arrangements, we collect the above, and additionally: the number of licensed users; print rights requirements; and any co-branding arrangements agreed as part of the institutional license.
2.2 Data Collected Automatically
When you visit our website, we and our service providers may automatically collect:
IP address and approximate geolocation derived from IP address;
browser type, version, and language settings; operating system and device type;
pages visited, time on page, links clicked, and download activity; and
referring URL (the source from which you arrived at our website).
This data is collected through server logs, analytics tools, and cookies (see Section 9) and is used in aggregated, anonymized form wherever possible.
2.3 Data We Do Not Collect
We do not intentionally collect special category personal data (GDPR Article 9) — including health data, disability information, ethnicity, religion, or sexual orientation — through our website or purchase processes. Our products relate to emotional and psychological wellbeing at an educational level; we do not ask users to disclose personal health information and ask that you refrain from doing so in correspondence. If you voluntarily disclose sensitive information, we will handle it with appropriate care, use it only for the purpose for which it was disclosed, and will not retain it beyond that purpose.
2.1 Data Collected by Product Type
The personal data we collect depends on how you interact with us. We apply a data minimisation approach: we collect only what is necessary for the specific product or service.
Free Protocol Downloads
No personal data is collected to download a free protocol. Downloads are anonymous. We provide an optional email field for users who wish to be notified of future protocol updates; use of this field is entirely voluntary and constitutes consent to receive such notifications.
Paid Supporter Guides
To purchase a Supporter Guide, we collect: your name; your email address; and payment details, which are processed by Gumroad. We do not directly collect, store, or process payment card numbers or bank account details.
Professional licenses (Individual Practitioner and Practice / Group)
For professional license purchases, we collect: your name; email address; organization name; job title or professional role; and payment details processed by Gumroad.
Institutional licenses
For institutional license arrangements, we collect the above, and additionally: the number of licensed users; print rights requirements; and any co-branding arrangements agreed as part of the institutional license.
2.2 Data Collected Automatically
When you visit our website, we and our service providers may automatically collect:
IP address and approximate geolocation derived from IP address;
browser type, version, and language settings; operating system and device type;
pages visited, time on page, links clicked, and download activity; and
referring URL (the source from which you arrived at our website).
This data is collected through server logs, analytics tools, and cookies (see Section 9) and is used in aggregated, anonymized form wherever possible.
2.3 Data We Do Not Collect
We do not intentionally collect special category personal data (GDPR Article 9) — including health data, disability information, ethnicity, religion, or sexual orientation — through our website or purchase processes. Our products relate to emotional and psychological wellbeing at an educational level; we do not ask users to disclose personal health information and ask that you refrain from doing so in correspondence. If you voluntarily disclose sensitive information, we will handle it with appropriate care, use it only for the purpose for which it was disclosed, and will not retain it beyond that purpose.
HOW AND WHY
WE USE YOUR DATA
HOW AND WHY
WE USE YOUR DATA
HOW AND WHY WE USE YOUR DATA
We process your personal data only where we have a lawful basis for doing so. The table below sets out each processing purpose, the applicable lawful basis under GDPR, and its equivalent under other frameworks.
We process your personal data only where we have a lawful basis for doing so. The table below sets out each processing purpose, the applicable lawful basis under GDPR, and its equivalent under other frameworks.
Purpose
Purpose
Lawful Basis (GDPR)
Lawful Basis (GDPR)
Equivalent (non-EU)
Equivalent (non-EU)
Process purchase;
deliver products and licenses
Process purchase;
deliver products and licenses
Performance of contract
(Art. 6(1)(b))
Performance of contract
(Art. 6(1)(b))
Contractual necessity
Contractual necessity
Issue and manage
professional license agreements
Issue and manage
professional license agreements
Performance of contract
(Art. 6(1)(b))
Performance of contract
(Art. 6(1)(b))
Contractual necessity
Contractual necessity
Send order confirmations
and license documents
Send order confirmations
and license documents
Performance of contract
(Art. 6(1)(b))
Performance of contract
(Art. 6(1)(b))
Contractual necessity
Contractual necessity
Respond to customer
support enquiries
Respond to customer
support enquiries
Legitimate interests (Art. 6(1)(f))
Legitimate interests (Art. 6(1)(f))
Legitimate interests
Legitimate interests
Send update notifications
(opt-in via website email field)
Send update notifications
(opt-in via website email field)
Consent (Art. 6(1)(a))
Consent (Art. 6(1)(a))
Opt-in consent required
Opt-in consent required
Accounting and financial
record-keeping
Accounting and financial
record-keeping
Legal obligation (Art. 6(1)(c))
Legal obligation (Art. 6(1)(c))
Legal obligation
Legal obligation
Verify license compliance;
conduct audits
Verify license compliance;
conduct audits
Legitimate interests (Art. 6(1)(f))
Legitimate interests (Art. 6(1)(f))
Legitimate interests / contract
Legitimate interests / contract
Website analytics
and performance monitoring
Website analytics
and performance monitoring
Legitimate interests / Consent
Legitimate interests / Consent
Legitimate interests / consent
Legitimate interests / consent
Fraud prevention
and security monitoring
Fraud prevention
and security monitoring
Legitimate interests /
legal obligation
Legitimate interests /
legal obligation
Legitimate interests
Legitimate interests
Respond to legal
or regulatory requests
Respond to legal
or regulatory requests
Legal obligation (Art. 6(1)(c))
Legal obligation (Art. 6(1)(c))
Legal obligation
Legal obligation
Where we rely on legitimate interests as our lawful basis, we have determined that our processing does not override your rights and freedoms. You may object to processing based on legitimate interests at any time (see Section 7).
Where we rely on legitimate interests as our lawful basis, we have determined that our processing does not override your rights and freedoms. You may object to processing based on legitimate interests at any time (see Section 7).
DATA SHARING
AND THIRD PARTIES
DATA SHARING
AND THIRD PARTIES
DATA SHARING AND THIRD PARTIES
We do not sell your personal data. We do not rent your personal data. We do not share your personal data with third parties for their own marketing purposes.
We do not sell your personal data. We do not rent your personal data. We do not share your personal data with third parties for their own marketing purposes.
We share your personal data only as set out below, and only to the minimum extent necessary for the stated purpose:
Gumroad: our e-commerce and payment processing platform. Gumroad processes all payments and product delivery. Their privacy policy governs payment and customer data processing at gumroad.com/privacy.
Gmail (Google Workspace): for customer communications, transactional emails, and license document delivery.
Fathom Analytics: for website traffic and usage analytics. Data is collected in aggregated, anonymized form. See Google's privacy policy at policies.google.com/privacy.
Make (formerly Integromat): for workflow automation and data processing between our platforms.
Memberstack: for licensed user portal access management and member authentication.
PDF Monkey: for automated generation and delivery of personalised license documents.
Legal and regulatory authorities: where required by applicable law, court order, or binding regulatory instruction.
Professional advisors: lawyers, accountants, and auditors, subject to confidentiality obligations.
Business successors: in the event of a merger, acquisition, or sale of all or part of our business. We will notify you of any such transfer and any resulting change to this Policy.
We may share aggregated, anonymized, non-personally identifiable statistics — for example, visitor demographics or usage patterns — with analytics or business partners. This data cannot be used to identify any individual.
All third-party processors who handle personal data on our behalf operate under data processing agreements requiring them to process your data only in accordance with our instructions and applicable law. They are not permitted to use your data for their own purposes.
If you have concerns about our data sharing practices, contact contact@paradoxcrisisprotocols.com. We will respond within 30 days.
We share your personal data only as set out below, and only to the minimum extent necessary for the stated purpose:
Gumroad: our e-commerce and payment processing platform. Gumroad processes all payments and product delivery. Their privacy policy governs payment and customer data processing at gumroad.com/privacy.
Gmail (Google Workspace): for customer communications, transactional emails, and license document delivery.
Fathom Analytics: for website traffic and usage analytics. Data is collected in aggregated, anonymized form. See Google's privacy policy at policies.google.com/privacy.
Make (formerly Integromat): for workflow automation and data processing between our platforms.
Memberstack: for licensed user portal access management and member authentication.
PDF Monkey: for automated generation and delivery of personalised license documents.
Legal and regulatory authorities: where required by applicable law, court order, or binding regulatory instruction.
Professional advisors: lawyers, accountants, and auditors, subject to confidentiality obligations.
Business successors: in the event of a merger, acquisition, or sale of all or part of our business. We will notify you of any such transfer and any resulting change to this Policy.
We may share aggregated, anonymized, non-personally identifiable statistics — for example, visitor demographics or usage patterns — with analytics or business partners. This data cannot be used to identify any individual.
All third-party processors who handle personal data on our behalf operate under data processing agreements requiring them to process your data only in accordance with our instructions and applicable law. They are not permitted to use your data for their own purposes.
If you have concerns about our data sharing practices, contact contact@paradoxcrisisprotocols.com. We will respond within 30 days.
INTERNATIONAL
DATA TRANSFERS
INTERNATIONAL DATA TRANSFERS
INTERNATIONAL DATA TRANSFERS
We operate internationally and your personal data may be transferred to and processed in countries outside your country of residence, including countries outside the European Economic Area (EEA) that may not offer equivalent levels of data protection.
For transfers from the EEA or UK: we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or other lawful transfer mechanisms under Chapter V of the GDPR / UK GDPR. A copy of the applicable safeguards can be requested at contact@paradoxcrisisprotocols.com.
For Australian users: transfers outside Australia are handled in accordance with Australian Privacy Principle 8. We take reasonable steps to ensure overseas recipients handle your data consistently with the APPs.
For Canadian users: transfers outside Canada are handled in accordance with PIPEDA and applicable provincial legislation. We use contractual or equivalent means to ensure comparable protection.
We operate internationally and your personal data may be transferred to and processed in countries outside your country of residence, including countries outside the European Economic Area (EEA) that may not offer equivalent levels of data protection.
For transfers from the EEA or UK: we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or other lawful transfer mechanisms under Chapter V of the GDPR / UK GDPR. A copy of the applicable safeguards can be requested at contact@paradoxcrisisprotocols.com.
For Australian users: transfers outside Australia are handled in accordance with Australian Privacy Principle 8. We take reasonable steps to ensure overseas recipients handle your data consistently with the APPs.
For Canadian users: transfers outside Canada are handled in accordance with PIPEDA and applicable provincial legislation. We use contractual or equivalent means to ensure comparable protection.
DATA RETENTION
DATA RETENTION
DATA RETENTION
We retain personal data only as long as necessary for the purposes described in this Policy or as required by applicable law. Our standard retention periods are:
Customer and transaction records: 7 years from the date of transaction, for tax and legal compliance;
Active professional license holder data: for the full license term, plus 3 years following expiry or termination;
Marketing communications data: until you withdraw consent or unsubscribe, or we determine the contact to be inactive;
Website analytics and technical data: up to 13 months from collection; and
Customer support and general correspondence: 3 years from the date of last contact.
Upon expiry of the applicable retention period, personal data will be securely deleted or irreversibly anonymized. Where immediate deletion is not possible (e.g. data held in backup systems), it will be isolated from active processing until deletion is practicable.
We retain personal data only as long as necessary for the purposes described in this Policy or as required by applicable law. Our standard retention periods are:
Customer and transaction records: 7 years from the date of transaction, for tax and legal compliance;
Active professional license holder data: for the full license term, plus 3 years following expiry or termination;
Marketing communications data: until you withdraw consent or unsubscribe, or we determine the contact to be inactive;
Website analytics and technical data: up to 13 months from collection; and
Customer support and general correspondence: 3 years from the date of last contact.
Upon expiry of the applicable retention period, personal data will be securely deleted or irreversibly anonymized. Where immediate deletion is not possible (e.g. data held in backup systems), it will be isolated from active processing until deletion is practicable.
YOUR RIGHTS
YOUR RIGHTS
YOUR RIGHTS
7.1 Rights Under GDPR (EU and UK Users)
If you are located in the EU or UK, you have the following rights under the GDPR and UK GDPR respectively. These rights are not absolute and are subject to certain conditions and exceptions:
Right of access (Article 15): request a copy of the personal data we hold about you, together with information about how and why we process it.
Right to rectification (Article 16): request correction of inaccurate or incomplete personal data.
Right to erasure (Article 17): request deletion of your personal data where there is no longer a lawful basis to retain it, subject to our legal retention obligations.
Right to restrict processing (Article 18): request that we suspend or limit processing of your data in certain circumstances.
Right to data portability (Article 20): where processing is based on consent or contract and carried out by automated means, request your data in a structured, machine-readable format.
Right to object (Article 21): object to processing based on our legitimate interests. We will cease processing unless we can demonstrate compelling legitimate grounds that override your rights.
Rights related to automated decision-making (Article 22): we do not use automated decision-making or profiling.
To exercise any of these rights, submit a written request to contact@paradoxcrisisprotocols.com. We will respond within one calendar month and will notify you within that period if an extension of up to two further months is required. We do not charge a fee for reasonable requests. You also have the right to lodge a complaint with your national data protection supervisory authority (see end of this Policy).
7.2 Rights Under US Law (US Residents)
Depending on your state of residence, you may have rights under applicable US privacy law, including the California Consumer Privacy Act (CCPA / CPRA) and equivalent state statutes. These may include: the right to know what personal information we hold; the right to delete it; the right to correct inaccurate information; the right to opt out of the sale or sharing of personal information (we do not sell or share personal information for behavioural advertising); and the right not to be discriminated against for exercising your rights. To make a request, contact contact@paradoxcrisisprotocols.com with your name, state of residence, and a description of your request.
7.3 Rights Under Australian Law (Australian Residents)
Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles, you have the right to access and request correction of the personal information we hold about you. Contact contact@paradoxcrisisprotocols.com to make a request. We will respond within 30 days. You also have the right to complain to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
7.4 Rights Under Canadian Law (Canadian Residents)
Under PIPEDA and applicable provincial legislation, you have the right to access and request correction of personal information we hold about you. Contact contact@paradoxcrisisprotocols.com to make a request. You also have the right to complain to the Office of the Privacy Commissioner of Canada at priv.gc.ca.
7.1 Rights Under GDPR (EU and UK Users)
If you are located in the EU or UK, you have the following rights under the GDPR and UK GDPR respectively. These rights are not absolute and are subject to certain conditions and exceptions:
Right of access (Article 15): request a copy of the personal data we hold about you, together with information about how and why we process it.
Right to rectification (Article 16): request correction of inaccurate or incomplete personal data.
Right to erasure (Article 17): request deletion of your personal data where there is no longer a lawful basis to retain it, subject to our legal retention obligations.
Right to restrict processing (Article 18): request that we suspend or limit processing of your data in certain circumstances.
Right to data portability (Article 20): where processing is based on consent or contract and carried out by automated means, request your data in a structured, machine-readable format.
Right to object (Article 21): object to processing based on our legitimate interests. We will cease processing unless we can demonstrate compelling legitimate grounds that override your rights.
Rights related to automated decision-making (Article 22): we do not use automated decision-making or profiling.
To exercise any of these rights, submit a written request to contact@paradoxcrisisprotocols.com. We will respond within one calendar month and will notify you within that period if an extension of up to two further months is required. We do not charge a fee for reasonable requests. You also have the right to lodge a complaint with your national data protection supervisory authority (see end of this Policy).
7.2 Rights Under US Law (US Residents)
Depending on your state of residence, you may have rights under applicable US privacy law, including the California Consumer Privacy Act (CCPA / CPRA) and equivalent state statutes. These may include: the right to know what personal information we hold; the right to delete it; the right to correct inaccurate information; the right to opt out of the sale or sharing of personal information (we do not sell or share personal information for behavioural advertising); and the right not to be discriminated against for exercising your rights. To make a request, contact contact@paradoxcrisisprotocols.com with your name, state of residence, and a description of your request.
7.3 Rights Under Australian Law (Australian Residents)
Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles, you have the right to access and request correction of the personal information we hold about you. Contact contact@paradoxcrisisprotocols.com to make a request. We will respond within 30 days. You also have the right to complain to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
7.4 Rights Under Canadian Law (Canadian Residents)
Under PIPEDA and applicable provincial legislation, you have the right to access and request correction of personal information we hold about you. Contact contact@paradoxcrisisprotocols.com to make a request. You also have the right to complain to the Office of the Privacy Commissioner of Canada at priv.gc.ca.
DATA SECURITY
DATA SECURITY
DATA SECURITY
We implement appropriate technical and organizational security measures to protect your personal data against accidental loss, unauthorized access, alteration, disclosure, or destruction. These include TLS encryption for data in transit across all platform integrations, AES-256 encryption for data at rest within cloud storage environments, role-based access controls (RBAC) and multi-factor authentication (MFA) for administrative accounts, strict reliance on SOC 2 Type II compliant cloud infrastructure (including AWS and Google Cloud Platform via third-party processors), and the immediate automated purging or secure isolated hosting of generated documentation.
Access to personal data within our organization is restricted to personnel who require it for a specific function — for example, billing or license administration. Systems storing personal data are maintained in secure, access-controlled environments.
Despite these measures, no internet-based system is completely secure. If you believe your data has been compromised, contact contact@paradoxcrisisprotocols.com immediately.
In the event of a personal data breach posing a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and will notify affected individuals directly where required by law.
We implement appropriate technical and organizational security measures to protect your personal data against accidental loss, unauthorized access, alteration, disclosure, or destruction. These include TLS encryption for data in transit across all platform integrations, AES-256 encryption for data at rest within cloud storage environments, role-based access controls (RBAC) and multi-factor authentication (MFA) for administrative accounts, strict reliance on SOC 2 Type II compliant cloud infrastructure (including AWS and Google Cloud Platform via third-party processors), and the immediate automated purging or secure isolated hosting of generated documentation.
Access to personal data within our organization is restricted to personnel who require it for a specific function — for example, billing or license administration. Systems storing personal data are maintained in secure, access-controlled environments.
Despite these measures, no internet-based system is completely secure. If you believe your data has been compromised, contact contact@paradoxcrisisprotocols.com immediately.
In the event of a personal data breach posing a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and will notify affected individuals directly where required by law.
COOKIES AND TRACKING
TECHNOLOGIES
COOKIES AND TRACKING
TECHNOLOGIES
COOKIES AND TRACKING
TECHNOLOGIES
Our website uses cookies and similar technologies. A cookie is a small text file placed on your device by a web server when you visit a website. Cookies help us understand how visitors interact with our site.
We use the following categories of cookies:
Strictly necessary cookies: essential for the website to function, including session management and security. These cannot be disabled.
Analytics cookies: used to collect aggregated, anonymized information about how visitors use our website. We use Fathom Analytics. This data is not used to identify individual users.
We do not use programmatic advertising networks, behavioural advertising cookies, or third-party retargeting technologies. We do not share cookie data with advertising partners for the purpose of targeting or retargeting you on other platforms.
Third-party services embedded in our website — such as our payment processor or analytics provider — may set their own cookies. We do not control these. Please refer to the relevant third party's privacy policy for details.
On your first visit you will be asked to consent to non-essential cookies via our cookie consent tool. You may withdraw or amend consent at any time through our cookie preferences settings or through your browser settings.
Our website uses cookies and similar technologies. A cookie is a small text file placed on your device by a web server when you visit a website. Cookies help us understand how visitors interact with our site.
We use the following categories of cookies:
Strictly necessary cookies: essential for the website to function, including session management and security. These cannot be disabled.
Analytics cookies: used to collect aggregated, anonymized information about how visitors use our website. We use Fathom Analytics. This data is not used to identify individual users.
We do not use programmatic advertising networks, behavioural advertising cookies, or third-party retargeting technologies. We do not share cookie data with advertising partners for the purpose of targeting or retargeting you on other platforms.
Third-party services embedded in our website — such as our payment processor or analytics provider — may set their own cookies. We do not control these. Please refer to the relevant third party's privacy policy for details.
On your first visit you will be asked to consent to non-essential cookies via our cookie consent tool. You may withdraw or amend consent at any time through our cookie preferences settings or through your browser settings.
THIRD-PARTY LINKS
THIRD-PARTY LINKS
THIRD-PARTY LINKS
Our website may contain links to external websites not operated or controlled by us. We are not responsible for the content, privacy practices, or data handling of any third-party site. We encourage you to review the privacy policy of any external site before providing personal information. This Policy applies only to data collected through our own website and services.
Our website may contain links to external websites not operated or controlled by us. We are not responsible for the content, privacy practices, or data handling of any third-party site. We encourage you to review the privacy policy of any external site before providing personal information. This Policy applies only to data collected through our own website and services.
CHILDREN'S PRIVACY
CHILDREN'S PRIVACY
CHILDREN'S PRIVACY
Our website and products are directed at adults only. They are not intended for use by children under the age of 16 (or 13 in jurisdictions where that is the applicable minimum age for digital consent). We do not knowingly collect personal data from children. If we become aware that we have done so without appropriate consent, we will delete that data promptly. If you believe a child has provided us with personal information without consent, contact contact@paradoxcrisisprotocols.com.
Our website and products are directed at adults only. They are not intended for use by children under the age of 16 (or 13 in jurisdictions where that is the applicable minimum age for digital consent). We do not knowingly collect personal data from children. If we become aware that we have done so without appropriate consent, we will delete that data promptly. If you believe a child has provided us with personal information without consent, contact contact@paradoxcrisisprotocols.com.
CHANGES TO THIS POLICY
CHANGES TO THIS POLICY
CHANGES TO THIS POLICY
We may update this Policy from time to time. When we make material changes, we will post an updated version on our website and update the effective date shown above. Where we hold your contact details, we will also notify you by email before changes take effect. Continued use of our website or services following notification constitutes acceptance of the updated Policy.
We may update this Policy from time to time. When we make material changes, we will post an updated version on our website and update the effective date shown above. Where we hold your contact details, we will also notify you by email before changes take effect. Continued use of our website or services following notification constitutes acceptance of the updated Policy.
CONTACT AND COMPLAINTS
CONTACT AND COMPLAINTS
CONTACT AND COMPLAINTS
For any questions, requests, or complaints relating to this Policy or our data handling practices:
SPIRALS L.P. | contact@paradoxcrisisprotocols.com | 45-47 Kyprou Street, Vrilissia, Athens 15235, Greece
We aim to respond to all privacy enquiries within 30 days. If you are not satisfied with our response, you have the right to escalate to your relevant supervisory authority.
For any questions, requests, or complaints relating to this Policy or our data handling practices:
SPIRALS L.P. | contact@paradoxcrisisprotocols.com | 45-47 Kyprou Street, Vrilissia, Athens 15235, Greece
We aim to respond to all privacy enquiries within 30 days. If you are not satisfied with our response, you have the right to escalate to your relevant supervisory authority.
Supervisory Authorities
EU: Hellenic Data Protection Authority (HDPA): dpa.gr | +30 210 6475600
UK: Information Commissioner's Office (ICO) — ico.org.uk | 0303 123 1113
Australia: Office of the Australian Information Commissioner — oaic.gov.au
Canada: Office of the Privacy Commissioner of Canada — priv.gc.ca
US: Federal Trade Commission — ftc.gov; refer to state attorney general for state-level complaints
Supervisory Authorities
EU: Hellenic Data Protection Authority (HDPA): dpa.gr | +30 210 6475600
UK: Information Commissioner's Office (ICO) — ico.org.uk | 0303 123 1113
Australia: Office of the Australian Information Commissioner — oaic.gov.au
Canada: Office of the Privacy Commissioner of Canada — priv.gc.ca
US: Federal Trade Commission — ftc.gov; refer to state attorney general for state-level complaints
If suicidal, unable to function, or in severe distress—contact emergency services or helplines immediately:
If suicidal, unable to function, or in severe distress—contact emergency services or helplines immediately:
If suicidal, unable to function, or in severe distress—contact emergency services or helplines immediately:
If suicidal, unable to function, or in severe distress—contact emergency services or helplines immediately: