This Site is operated and managed by the owner/entity referenced on the “Contact Us” page. We act as the Data Controller for personal data processed in connection with medical educational services, membership management, payment administration, and medical tools/calculators.

For GDPR matters, you may contact us via:

• The contact form on the “Contact Us” page.
• The email address published on the same page.

This policy applies to:

• Visiting and browsing Dalilent.com.
• Using medical content, articles, on-call sheets, protocols, guides, and MCQ sections.
• Creating an account, logging in, purchasing or activating membership/subscriptions (including payments via PayPal or Stripe).
• Using interactive medical tools, calculators, search features, and assistants such as the “Vertigo Assistant”.

We process personal data based on one or more of the following legal bases under GDPR and Swedish supplementary law:

• Contract performance: creating accounts, activating membership, granting access to paid/locked features.
• Legal obligation: retaining financial/tax records where applicable; responding to lawful authority requests.
• Legitimate interests: improving Site performance, securing the platform, preventing fraud/abuse, internal analytics with appropriate balancing of rights.
• Consent: optional cookies; opt-in educational/notification emails; storing certain calculator results in your account (where relevant).

• Account & membership management: Create accounts, authenticate logins, manage membership state, gate locked content to active members. Legal basis: contract performance, legitimate interests.
• Payments & subscriptions: Confirm payments via PayPal/Stripe, associate with accounts, record plan type and expiry. Legal basis: contract performance, legal obligation.
• Deliver educational content & tools: Provide access to medical chapters/sections, MCQs, assistants, calculators; store results for “My Results” (visible only to you). Legal basis: contract performance, legitimate interests.
• Improve and develop the Service: Analyze usage patterns, measure device/platform performance to enhance UX. Legal basis: legitimate interests; consent for optional analytics cookies.
• Security & fraud prevention: Detect unauthorized access, brute force, DDoS attempts; restrict suspicious accounts/sessions. Legal basis: legitimate interests; legal obligation where applicable.
• Communications: Respond to support requests; send important membership/legal/technical notices; send educational updates if you opted in (unsubscribe anytime). Legal basis: contract performance, legitimate interests, or consent.
• Legal compliance: Respond to lawful authority requests, maintain financial records as required. Legal basis: legal obligation.

• Essential cookies: Required for login, security, and session/payment protection — cannot be disabled via consent banners as they are technically necessary.
• Preference cookies: Remember language and basic UI settings.
• Analytics cookies: Measure traffic and usage patterns, enabled based on your consent where required by law.

You can manage cookies via: the cookie consent banner (if shown), or your browser settings (block/delete cookies). Disabling certain cookies may reduce functionality or prevent successful login.

We do not sell or rent personal data. We may share limited data with service providers strictly as necessary:

• Hosting/infrastructure providers: to run the Site securely and reliably.
• Payment providers (PayPal/Stripe): to confirm transactions; sensitive payment data is processed by them.
• Analytics/performance providers: e.g., Google Analytics — potentially receiving anonymized/masked usage data.
• Email/notification providers: to send activation notices, important updates, or subscribed newsletters.
• Professional advisors: legal/accounting support when necessary.
• Authorities: where required by law or valid legal order.

We retain personal data only as long as needed for the purposes described or to meet legal obligations, then delete or anonymize where feasible:

• Account/membership data: while account is active; deleted/anonymized on request, retaining what is legally required (e.g., payment records).
• Payment/invoice records: typically several years per accounting/tax laws.
• Support communications: for a reasonable period for documentation, then deleted/anonymized.
• Security logs: shorter periods based on technical need to mitigate attacks.
• MCQ results/educational statistics: while account is active for “My Results”, unless you request deletion.

We apply reasonable technical and organizational measures, including:

• HTTPS to secure all communication.
• Hashed/encrypted password storage (not plain text).
• Restricted database access to authorized personnel only.
• Firewalls and security plugins to monitor and block attacks.

If you are in the EU/EEA, you have rights under GDPR, including:

To exercise these rights, contact us via “Contact Us”. We may request verification of identity before fulfilling requests.

The Site is primarily intended for adult clinicians/residents/students and is not directed to children. If we learn that we collected personal data from a child without appropriate consent, we will take reasonable steps to delete it promptly.

We generally do not rely on fully automated decisions that produce significant legal or similarly significant impacts on users. We may perform limited internal profiling — for example, distinguishing active vs. inactive users to link membership status to access permissions. If we introduce significant automated decision-making in the future, we will update this policy accordingly.

We may use your data—after removing direct identifiers—to produce: statistics on active users and most-used sections, educational analytics to improve questions and protocols, and aggregated reports on tool/calculator usage. Such analytics are typically aggregated or anonymized and used only to improve the Service.

We commit not to use your identifiable personal data to train external AI models or commercial data platforms without a clear legal basis and your explicit consent where required. We may use fully anonymous or aggregated data (without personal identifiers) to improve educational tools, provided it cannot identify you as an individual.

We may update this policy due to legislative/regulatory changes (GDPR or Swedish law updates) or service changes (new tools, payment/membership changes). If we make material changes, we will update the “Last updated” date and may notify you by email or via a Site notice. Continued use after publication means you accept the updated version.

For questions or requests regarding privacy, your rights, or this policy, contact us via:

• The “Contact Us” form on the Site.
• The email address shown there, with “Data Privacy” in the subject line to help route your request.

We will respond within a reasonable timeframe, in accordance with our legal obligations.