Privacy Policy
Last Updated: February 2026
1. Data Controller
FazliuMaterialHub UG (haftungsbeschränkt)
Adolf-Hennecke-Straße 3
01968 Senftenberg, Germany
Email: info@resaluvia.com
Phone: +49 159 01974690
Website: www.resaluvia.com
Managing Director: Eron Fazliu
Commercial Register: Amtsgericht Cottbus, HRB 17845
VAT ID: DE367939878
2. What is Resaluvia?
Resaluvia is a digital recruiting and matching platform in the healthcare sector. We are not a recruitment agency, but rather a digital platform that connects medical talents with German healthcare institutions.
3. Data We Collect
3.1 Account Registration Data
Email, password (encrypted), role, and language preferences.
3.2 Medical Talent Profile Data
Name, qualifications, work experience, language skills, location, availability, and optional fields including motivation letter, qualifications, and preferred employment types.
3.3 Uploaded Documents
CV, education and employment certificates, language certificates, and other professional qualifications.
3.4 German Institution Data
Organization name, type, contact person, address, and contact information.
3.5 Communication Data
Messages exchanged between medical talents and German institutions through the platform.
3.6 Payment and Billing Data
Billing name, address, payment method (processed via Stripe), transaction history, and invoices. Please note that we do not store complete credit card numbers.
3.7 Technical Data
IP address, browser type, device information, operating system, access times, pages visited, and referrer information.
4. Legal Basis for Processing (Art. 6 GDPR)
| Purpose | Legal Basis |
|---|---|
| Account creation and management | Art. 6(1)(b) Contract |
| Profile creation and matching | Art. 6(1)(b) Contract |
| Payment processing | Art. 6(1)(b) Contract |
| Platform communication | Art. 6(1)(b) Contract |
| Email notifications (transactional) | Art. 6(1)(b) Contract |
| Invoice storage | Art. 6(1)(c) Legal obligation (tax law) |
| Fraud prevention and security | Art. 6(1)(f) Legitimate interest |
| Technical logging | Art. 6(1)(f) Legitimate interest |
5. How We Use Your Data
- Providing and maintaining the platform services
- Creating and managing user accounts
- Matching medical talents with German institutions
- Processing payments and billing
- Facilitating communication between users
- Sending transactional emails and notifications
- Detecting and preventing fraud
- Improving platform functionality and user experience
- Analyzing platform usage and performance
- Complying with legal obligations
6. Profile Visibility and Subscription
For Medical Talents
- Your profile is visible to German institutions only when you have an active subscription
- Without an active subscription, your profile is not searchable or visible to institutions
- You can manage your subscription status at any time
- Subscription cancellation immediately removes your visibility to German institutions
For German Institutions
- Institutions can access and search medical talent profiles based on their subscription status
- Subscription determines access to advanced features and search capabilities
7. Data Sharing and Recipients
7.1 Within the Platform
- Medical talent information is shared with German institutions based on matching and subscription status
- German institution information is shared with medical talents for contact and communication purposes
- Communication data is shared between relevant parties through our messaging system
7.2 Third-Party Service Providers
We work with the following third-party service providers, all bound by Data Processing Agreements (DPA) per Art. 28 GDPR:
| Service Provider | Purpose | Location |
|---|---|---|
| Stripe | Payment processing | USA |
| Hosting Provider | Server infrastructure | EU |
| Email Service Provider | Email delivery | EU/USA |
7.3 Legal Disclosure
We may disclose your data to law enforcement or governmental authorities if required by law or in response to a valid legal request.
8. International Data Transfers
When we transfer personal data outside the European Economic Area (EEA), we ensure compliance with GDPR through:
- The EU-US Data Privacy Framework
- Standard Contractual Clauses (SCCs)
9. Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | Until deletion by user |
| Profile data | Until deletion by user |
| Uploaded documents | Until deletion or removal by user |
| Messages | Until deletion by user |
| Invoices | 10 years (legal requirement) |
| Technical logs | 90 days |
10. Your Rights Under GDPR
10.1 Right of Access (Art. 15)
You have the right to request a copy of the personal data we hold about you.
10.2 Right of Rectification (Art. 16)
You have the right to correct inaccurate or incomplete personal data.
10.3 Right of Erasure (Art. 17)
You have the right to request deletion of your personal data, subject to certain exceptions:
- Where the data is still necessary for the purpose it was collected
- To comply with legal obligations
- For the establishment, exercise, or defense of legal claims
10.4 Right to Restrict Processing (Art. 18)
You have the right to request that we restrict processing of your personal data under certain circumstances.
10.5 Right to Data Portability (Art. 20)
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
10.6 Right to Object (Art. 21)
You have the right to object to processing of your personal data on grounds relating to your particular situation.
10.7 Right to Withdraw Consent
If we process your data based on your consent, you have the right to withdraw that consent at any time.
10.8 Right to Lodge a Complaint (Art. 77)
You have the right to lodge a complaint with your local data protection authority:
Die Landesbeauftragte für den Datenschutz und für das Recht auf Akteneinsicht Brandenburg
Stahnsdorfer Damm 77
14532 Kleinmachnow, Germany
Website: www.lda.brandenburg.de
11. Data Security
We implement comprehensive security measures to protect your personal data:
- Encryption of data in transit using SSL/TLS protocols
- Encryption of sensitive data at rest
- Regular security audits and penetration testing
- Secure password hashing algorithms
- Access controls and authentication mechanisms
- Regular backups and disaster recovery procedures
- Employee training on data protection
- Incident response procedures
12. Cookies
For information about how we use cookies and other tracking technologies, please refer to our Cookie Policy.
13. Children's Privacy
Resaluvia is not intended for individuals under 18 years of age. We do not knowingly collect personal data from children under 18. If we become aware that a child under 18 has provided us with personal data, we will take steps to delete such information and terminate the child's account.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, and other factors. We will notify you of any changes by updating the "Last Updated" date at the top of this policy. Your continued use of the platform following the posting of revised Privacy Policy means you accept and agree to the changes.
15. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
FazliuMaterialHub UG (haftungsbeschränkt)
Adolf-Hennecke-Straße 3
01968 Senftenberg, Germany
Email: info@resaluvia.com
Phone: +49 159 01974690
© 2026 Resaluvia. All rights reserved.