Effective Date: June 16, 2025
Jurisdiction: Slovenia (European Union)

Introduction

Welcome to the Live Long Life Community® website (the “Site”). We are committed to protecting your privacy and complying with applicable data protection laws, including the EU General Data Protection Regulation (GDPR) and Slovenia’s Data Protection Act (ZVOP-2). This Privacy Policy explains what personal data we collect, how we use and share it, and your rights in relation to that data. It applies to all visitors of our informational Site and any related services or content we provide. By using our Site, you acknowledge that you have read and understood this Privacy Policy. We strive to follow the principles of lawfulness, fairness, and transparency in all data processing activities.

Data Controller: The data controller for your personal data is Live Long Life Community® (referred to as “we”, “us” or “our”). We are based in Slovenia, which means Slovenian law and EU GDPR govern how we process personal data. For any questions or requests regarding your personal data, you can contact us at info@lllc.eu. (See the Contact Us section below for more details.)

Information We Collect

We collect only the personal data that is necessary for the purposes described in this Policy. The types of data we collect fall into two categories: (1) information you provide voluntarily (e.g. through our contact form), and (2) information collected automatically (e.g. via cookies and analytics when you browse our Site).

1. Information You Provide Voluntarily

• Contact Form Data: When you fill out the contact form on our Site (or contact us via email), we collect the personal information you provide. This typically includes your name, email address, and the content of your message or inquiry. You may also choose to provide additional information related to your inquiry in the message field. We use this data solely to correspond with you and address your questions or requests.
• Other Communications: If you communicate with us through other means (such as by emailing us directly or via social media messages), we will collect whatever information you choose to provide in those communications (for example, your social media handle or any contact details included in your signature). We will use and protect this information in line with this Policy.

No Accounts or Sensitive Data: We do not require or allow user registrations or accounts on our Site, and we do not collect any payment information or sensitive personal data (such as health information, racial or ethnic origin, political opinions, etc.). Our Site is purely informational and does not ask you to provide any health data or special categories of personal data. Please refrain from including any sensitive personal information in your messages to us. If you do provide such information (for example, by mentioning health or wellness details in a contact inquiry), that is entirely voluntary and will be treated with special care and confidentiality. We do not knowingly collect personal data from children under 16 years of age, and our Site is not directed at children. If you are under 16, please obtain parental consent before providing any personal data, or refrain from using our contact form.

2. Information Collected Automatically

• Usage Data & Device Information: Like most websites, our Site automatically collects certain technical information about your visit. This includes your IP address, browser type and version, device type (e.g. mobile or desktop), operating system, screen resolution, and basic device identifiers. We also record information about how and when you access our Site, such as the date and time of visit, pages viewed, time spent on each page, and the page you visited immediately before navigating to our Site (referrer URL). This data is typically collected through server logs and through analytics cookies (described below). We collect this information to understand how visitors use our Site, to maintain security, and to improve performance and user experience. Importantly, we do not use this data to identify you as an individual. For example, our analytics reports are aggregated and do not show your personal identityfile-thzqljkv1bhycnyo8dwofx. IP addresses in our analytics are truncated or anonymized so they are not stored in fullfile-thzqljkv1bhycnyo8dwofx. We treat this usage data as personal data (since IP addresses or cookie IDs could identify you in theory) and protect it accordingly.
• Cookies and Tracking Technologies: We use cookies and similar tracking technologies on our Site. Cookies are small text files that websites save to your browser. They serve various purposes, from enabling core functionality to helping us analyze site traffic. When you first visit our Site, you will be presented with a cookie notice or banner seeking your consent for non-essential cookies (in accordance with EU laws like the ePrivacy Directive)file-thzqljkv1bhycnyo8dwofx. We do not set any analytics or third-party cookies unless you have given consent through that banner (except for cookies that are strictly necessary for the Site to function). See Cookies & Tracking section below for more detail on the types of cookies we use and how you can manage your preferences.
• Google Analytics Data: We use Google Analytics (GA4) to gather insights about website traffic and usage patterns. Google Analytics uses first-party cookies and JavaScript to collect information such as what pages you visit, how long you stay, how you arrived at our Site, and what links you click. This information is transmitted to Google’s servers (which may be outside the EU – see International Data Transfers section) where it is aggregated to produce reports for us on how the Site is being used. Importantly, we have configured Google Analytics with privacy safeguards: we do not log or share full IP addresses with Google (GA4 by default does not record full IP)file-thzqljkv1bhycnyo8dwofxfile-thzqljkv1bhycnyo8dwofx, and we have disabled features that would allow Google to use our analytics data for its own purposes (such as ad personalization or sharing data with other Google services)file-thzqljkv1bhycnyo8dwofx. We have also set Google Analytics to anonymize data and we do not allow it to identify individual users in our reportsfile-thzqljkv1bhycnyo8dwofx. Google Analytics assigns a random unique identifier to your device/browser via a cookie (e.g., _ga) to distinguish unique visitors, but this ID cannot directly identify you by namefile-thzqljkv1bhycnyo8dwofx. You can read more about how we use Google Analytics in the Analytics and Improvements section below. You have the choice to opt-in or opt-out of Google Analytics cookies at any time (see Cookies & Tracking).
• Social Media Plugins/Embeds: Our Site may include links to our official pages on social media platforms (such as LinkedIn and Instagram) and may occasionally embed content from these platforms (for example, an Instagram feed or LinkedIn post preview). If you choose to interact with these features, some data will be exchanged with the social media provider. For instance, if we embed an Instagram photo on one of our pages, loading that page will cause your browser to retrieve content from Instagram’s servers, which might result in Instagram receiving your IP address, browser info, and certain cookies from your browser. Similarly, clicking a “Follow” or “Share” button for LinkedIn or Instagram will communicate with those platforms. These social media plugins might set their own cookies on your device and can potentially track your interactions. If you are logged into those social networks, they may be able to associate your visit to our Site with your profile on their service. Important: Any data collected by such third-party social platforms is governed by their own privacy policies, not ours. We do not receive detailed personal information from social media sites aside from general metrics (e.g., number of shares or visits). We include these features to enhance your experience (e.g., to easily follow our community on social media), but you are not required to use them. If you do not want social media platforms to collect information about you via plugins, you can refrain from clicking those links or visiting pages that contain embedded content, or log out of your social media accounts before browsing our Site. We will also endeavor to implement solutions (such as two-click buttons or privacy-enhanced embed options) to ensure that your data isn’t transmitted to social platforms without your engagement, wherever feasible.

How We Use Your Data and Legal Bases

We only use your personal data for specified, explicit, and legitimate purposes. In each case, we ensure we have a valid legal basis under GDPR for the processing (GDPR Article 6). Below we outline the purposes for which we process personal data and the corresponding legal bases:

• To Respond to Inquiries and Provide Information: If you contact us via the contact form or email, we will use your name, email, and message content to respond to you and provide the information or assistance you requested. This may include responding to general questions about the Live Long Life Community project, addressing any concerns you raise, or discussing opportunities related to our wellness and real estate initiatives. Legal basis: Our legitimate interests (GDPR Art. 6(1)(f)) – it is in both your and our interest that we use your contact details to communicate with you in response to your request. We consider that when you voluntarily send us an inquiry, you expect and want us to reply, and processing your data for that purpose has minimal privacy impact. Alternatively, in certain cases this processing may be considered pre-contractual steps at your request (Art. 6(1)(b)), for example if your inquiry is about potentially engaging with our project, we process data to take steps you requested before possibly entering into an arrangement. In any case, we will not use your contact information to send you marketing unrelated to your inquiry unless you separately consent to such marketing. You are free to object to our use of your data for communications at any time (see Your Rights below), and we will then cease processing your data for this purpose unless we have a compelling legitimate ground or a legal obligation to continue.
• Site Analytics and Improvement: We use data about how visitors use our Site (collected via Google Analytics and similar tools) to better understand overall user behavior and to improve our website’s functionality, content, and design. For example, analytics help us identify which pages are most popular, how users navigate through the Site, and where we can make the user experience better. We may also use aggregated analytics data to report on the performance of our Site (e.g., number of visitors per month) or to guide our decisions as our community project grows. Legal basis: Consent (Art. 6(1)(a) GDPR) – we will only activate Google Analytics or other non-essential tracking tools if you have given consent via our cookie banner or settingsfile-thzqljkv1bhycnyo8dwofx. When consent is given, a cookie is placed and Google Analytics will collect usage data as described. You have the right to withdraw your consent at any time (which will not affect the lawfulness of processing before withdrawal). You can opt out through our Site’s cookie settings or by using tools like Google’s Analytics Opt-Out Browser Add-onfile-thzqljkv1bhycnyo8dwofx. (Note: In cases where we might want basic anonymized metrics without cookies – for instance, counting visits using server logs – we would rely on our legitimate interests (Art. 6(1)(f)) to ensure our Site’s smooth operation. However, any such processing would be done in a privacy-preserving manner and only as necessary. Currently, all detailed analytics on this Site are cookie-based and therefore consent-based.) Refusing or deleting analytics cookies will not affect your ability to use the Site, but it will help protect your privacy from third-party tracking – we fully respect your choice, and our Site is designed to function normally even if you opt out of analyticsfile-thzqljkv1bhycnyo8dwofx.
• Social Media Engagement: If you choose to interact with our social media pages or use social sharing features on our Site, we may process certain data to facilitate that interaction. For example, if you click an Instagram icon on our Site to visit our Instagram profile, we will have recorded the click as an outbound interaction, and Instagram might inform us (via their analytics) that our page was visited. If you mention us or tag us on social media, we might process that information to respond or engage with you. Legal basis: Legitimate interests (Art. 6(1)(f)) – it’s in our interest to engage with our community and it is expected that if you use those features, we will see your public information or actions. Note that your use of third-party social platforms is also subject to those platforms’ terms and privacy policies; please review their policies for information on how they handle your data. We do not collect or store the details of your social media accounts through our Site, other than any info you deliberately share with us.
• Website Functionality and Security: We process certain minimal data to ensure the Site functions securely and properly. This includes using technically necessary cookies (which do not require consent) to enable core features like remembering your cookie preferences or facilitating page navigation. It also includes processing server log data (IP addresses, timestamps, user-agent strings) to protect against malicious activity (like hacking attempts or spam submissions) and to debug errors on the website. Legal basis: Legitimate interests (Art. 6(1)(f)) – we have a legitimate interest in maintaining the integrity and security of our Sitefile-thzqljkv1bhycnyo8dwofx, and these processes are within what a user would reasonably expect when visiting a website. In some cases, processing data for security may also be necessary for compliance with legal obligations (Art. 6(1)(c)), such as GDPR’s requirements to implement appropriate security measures.
• Legal Compliance and Protection: We may process personal data where necessary to comply with a legal obligation to which we are subject (Art. 6(1)(c)), or to establish, exercise, or defend legal claims (Art. 6(1)(f) – legitimate interest in legal rights protection). For example, if we are required by law enforcement or a court order to retain or disclose certain data, or if we need to demonstrate our compliance with privacy laws, we will process data for that purpose. Likewise, should we ever face any dispute or legal claim, we might preserve communications or logs as evidence. We will only disclose personal data to third parties (such as government authorities) if legally compelled to do so, and we will inform you of such disclosure when possible (unless prohibited by law).
• Future Features or Services: Our goal is to keep this Privacy Policy future-proof. If in the future we introduce new features that involve collecting or processing personal data (for example, a newsletter subscription, user registration, or e-commerce functionality), we will do so in full compliance with GDPR and other applicable laws. We will update this Privacy Policy accordingly and, if required, obtain your consent for the new processing. We will not use your personal data for any purpose that is not described in this Policy without prior notice and, if legally necessary, your consent. (At present, we do not engage in any direct marketing, profiling, or automated decision-making with the data collected, beyond the scope described above.)
• No Automated Decision-Making: We do not use your data for any automated decision-making or profiling that produces legal effects or similarly significant effects on you (as defined in GDPR Art. 22)file-thzqljkv1bhycnyo8dwofx. In other words, we are not running any algorithms that make decisions about you without human involvement in a way that could impact your rights or livelihood. All processing of personal data described in this Policy is handled in a manner that involves human review or is too limited in scope to have significant effects on individuals. If this ever changes (for instance, if we implement a feature that uses automated profiling), we will update you and ensure all legal safeguards are in place, including the possibility for you to obtain human intervention and to express your point of view.

Cookies & Tracking Technologies

Our Site uses cookies and similar technologies to ensure it functions correctly and to help us understand and improve user experience. We want to be transparent about what cookies we use, why we use them, and how you can manage your preferences.

What Are Cookies? Cookies are small text files that are placed on your device when you visit a website. They can be first-party (set by our domain) or third-party (set by external services). Similar technologies include web beacons (pixel tags), local storage, and scripts that can recognize your device. For simplicity, we refer to all of these as “cookies.” Cookies can serve various purposes: remembering your preferences, enabling features, improving performance, or providing analytics information. Some cookies last only for your browsing session (session cookies) while others remain on your device for a set period (persistent cookies).

Types of Cookies We Use:

• Strictly Necessary Cookies: These cookies are essential for the operation of our Site and cannot be turned off (without affecting the core functionality of the site). For example, when you set your cookie preferences, we use a cookie to remember those choices so that non-authorized cookies remain disabled if you opted out. Other necessary cookies might include those that enable basic security and network management. These cookies do not store any personally identifying information beyond what is needed for their function, and they are not used for marketing or tracking. Because they are necessary for the service you requested (i.e., viewing the website and using basic features), they do not require consent under the ePrivacy Directive. However, we list them here so you are aware of them.
• Analytics Cookies: These cookies are used to collect information about how visitors use our Site. We utilize Google Analytics cookies, which assign a random ID to your browser to distinguish visitors and collect data on site usage (e.g., pages visited, time on site, interactions)file-thzqljkv1bhycnyo8dwofx. All information these cookies collect is aggregated and anonymous in the sense that it does not directly identify you. These insights help us improve the content and functionality of our Site. We treat analytics data as personal data (since IP addresses or IDs could theoretically be combined to identify someone) and therefore we only use analytics cookies with your consentfile-thzqljkv1bhycnyo8dwofx. On your first visit, no analytics cookies will be set unless you opt-in. If you consent, the Google Analytics cookie (_ga) will remain for its designated duration (Google Analytics 4’s cookie typically has a short lifespan, e.g., 2 years, and we may configure retention to 14 months for user-level data in GA4 reportsfile-thzqljkv1bhycnyo8dwofx). You can withdraw consent at any time (see Managing Cookies below). Refusing analytics cookies will not break any feature on our Site; it simply means we have less data on how you and others use our pages, which is okay – your choice comes first.
• Third-Party / Embedded Content Cookies: When we embed content or link to external services, those third parties may set cookies as well. For example, if we embed an Instagram video or a social media sharing button, Instagram or LinkedIn may place cookies to enable that functionality or to track engagement with their content. These cookies could potentially be used by the third party for their own purposes, such as tracking you across sites or personalizing content/ads on their platform. We do not have direct control over these cookies, but we want to make you aware of them. We endeavor to use privacy-friendly integration where possible (for instance, using LinkedIn’s official plugins which honor your privacy settings, or using Instagram’s embedding tools in compliance with their platform terms). However, since these are not strictly necessary for our Site, we will treat them similar to analytics cookies – i.e., we will not load social media embedded content that sets cookies unless you have either interacted with them or given consent for such third-party features. In practice, this might mean that certain social content on our Site could be blocked or shown as a placeholder until you click to “accept” or play it (this click is considered consent to load the third-party content). We will clearly indicate whenever this is the case.

Managing Cookies: You have the right to choose whether to accept or reject cookies (apart from the strictly necessary ones). When you first visit, our cookie consent banner allows you to Accept or Decline analytics cookies. You can also customize your preferences (for example, only accept certain categories). If you opt-out of analytics, we will honor that choice and not set those cookies on your devicefile-thzqljkv1bhycnyo8dwofx. If you change your mind later, you can usually find a “Cookie Settings” link on our Site (often in the footer) to update your preferences. Additionally, most web browsers let you control cookies through their settings. You can set your browser to block or alert you about cookies, or to delete cookies when you close the browser. Please note that if you disable all cookies, some parts of the Site might not work optimally (for example, your cookie consent choice itself might not be remembered without a cookie!). But generally, you can browse our informational content even with cookies disabled; the site may just be less tailored to your preferences.

For Google Analytics specifically, Google also provides an opt-out option via a browser extension if you wish to ensure no data is sent to Google Analytics from any websitefile-thzqljkv1bhycnyo8dwofx. You can find it by searching for "Google Analytics Opt-out Browser Add-on".

We do not currently use advertising cookies or targeting cookies on the Site (and we do not show third-party ads), so you will not receive advertising cookies from us. If this ever changes, we will update our cookie management tools and this Policy to give you appropriate choices.

Social Media and Third-Party Plugins

As noted, our Site contains links to our pages on third-party platforms (like LinkedIn and Instagram) and may include embedded media from these or other sources. While we do not collect personal data through these plugins for our own use (beyond basic analytics and what you voluntarily do, such as clicking a link), it’s important for you to understand how these features might handle your data:

• Visiting our Social Pages: If you click on a link on our Site to visit our official Instagram profile, LinkedIn page, or any other external page, you will be taken to that third-party site. Once you leave our Site and go to a third-party website, their privacy policy and terms govern your use of their services. We have no control over how those platforms process data. For example, if you go to our Instagram page, Instagram (a service of Meta Platforms) may place or read cookies on your device and track your interaction with our page and its content in accordance with Meta’s privacy policies. We encourage you to review the privacy policies of any social network or external site you visit. We provide these links for your convenience and to help build our community presence, but clicking them is entirely your choice.
• Embedded Content: If we embed content (such as a video, image, or feed) from a third-party service on one of our Site’s pages, that third party may collect data from you in the process. For instance, embedded videos (from platforms like YouTube or Vimeo) or social media feeds (from Instagram) function as if you visited those platforms directly. They may receive certain data such as your IP address, browser information, and cookie identifiers. In some cases, the third-party might be able to see that the request is coming from our Site (through the “referrer” information your browser sends) and possibly associate it with your account on their service if you are logged in with them. We do not receive this personal data from them; however, by enabling such content on our pages, we facilitate the transfer of data between your browser and the third-party provider. We try to protect your privacy by using these services in compliance with platform guidelines and (if available) in privacy-enhanced modes. For example, if we were to embed a YouTube video, we would use YouTube’s privacy-enhanced mode which prevents setting cookies until you hit play. Similarly, for social media, we may use tools or plugins that delay data transfer until you actively engage (such as clicking a play or share button). Despite these measures, please assume that any third-party embedded content could collect personal data. By interacting with that content (e.g., playing a video, clicking a feed), you are effectively consenting to the third-party’s privacy practices. We will display notices or icons where feasible to remind you that you are viewing third-party content.
• Social Sharing Buttons: Our Site might offer buttons or links that allow you to share our content to your social media accounts (for example, a “Share on LinkedIn” or “Share on Instagram” link). These features may be provided by the social networks themselves through a snippet of code. If these buttons are simply hyperlinks, then clicking them will just take you to the respective network’s share page (and from there, any data processing is between you and that network). If instead we use embedded share widgets that communicate with the social network (for example, to show a live share count or to let you “Like” something directly on our page), then as explained, that widget may load content from the provider’s servers and could result in data like your IP or cookies being accessed by them even if you don’t click the button. We currently lean towards using simple links to avoid unnecessary data transfers, but if any advanced social plugins are used, we will mention them here and ensure they are included in our consent mechanism.

Our Advice: To minimize unwanted data collection by third-party plugins, you can take steps such as logging out of social networks during browsing, using browser extensions that block social media trackers, or adjusting your privacy settings on those platforms. We value your privacy highly and do not use social plugins to secretly harvest data; any data flow involving social media is either initiated by you or done with notice. If you have any questions about a specific feature on our Site and how it works, feel free to contact us.

Disclosure of Your Data (Third-Party Recipients)

We treat your personal data with care and confidentiality. We do not sell your personal information to anyone. We only share your data in the following circumstances and with appropriate safeguards:

• Service Providers (Processors): We use trusted third-party companies to help us operate the Site and provide our services. These include, for example:
  • Website Hosting Provider: Our website is hosted on servers of a third-party hosting company. Personal data (such as IP addresses in logs, or contact form submissions stored on the server or transmitted via email) will pass through and be stored on those servers. Our hosting provider acts under our instructions and implements security measures to protect data.
  • Email Service: If our contact form delivers messages to an email inbox (for instance, if we use a service like Gmail or another email service to receive your inquiries), that email service will process the data in your message for the purpose of storing and delivering it to us. We have appropriate agreements in place or rely on terms of service that protect the confidentiality of your emails.
  • Analytics Provider (Google): As described, we use Google Analytics to process usage data. Google acts as our data processor for analytics purposes, meaning they are contractually bound to only process data on our behalf and as we instructfile-thzqljkv1bhycnyo8dwofx. We have accepted Google’s data processing terms and EU Standard Contractual Clauses (SCCs) to safeguard the data transferred to Google (see International Transfers below). Google does not use the analytics data for its own purposes because we have disabled such optionsfile-thzqljkv1bhycnyo8dwofx.
  • IT and Security Providers: We may use cloud infrastructure or security services (for example, a service that filters spam or DDoS protection like Cloudflare). These providers might process IP addresses or user-agent information for security filtering. They operate under strict policies as processors to only use data for the security tasks.
• In all cases, service providers are given only the minimum data necessary and are contractually obligated to protect your information, use it only for the agreed purpose, and comply with applicable privacy laws (including GDPR). We carefully select our partners and ensure they provide sufficient guarantees to protect the privacy and rights of data subjects.
• Advisors and Professional Services: We may share information with our professional advisors (lawyers, accountants, consultants) if necessary for obtaining advice or managing our obligations. For example, if a legal issue arose requiring analysis of certain communications, we might share relevant data with our legal counsel under confidentiality. Similarly, if our accounting requires record-keeping of business communications, minimal data might be accessed by an accountant. Any such sharing is done under strict necessity and confidentiality.
• Legal Obligations and Security: We may disclose personal data to courts, law enforcement agencies, regulators, or other authorities if required to do so by law or pursuant to a valid legal process (subpoena, court order, etc.). We may also disclose information if we believe in good faith that it is necessary to prevent fraud or cybercrime or to protect the rights, property, or safety of our users, our organization, or the public. This includes exchanging information with other companies and organizations for fraud prevention or investigation. Any such disclosure will be carefully reviewed and limited to what is legally required or justified.
• Business Transfers: As a future-proof measure, if our project evolves, we want you to know what would happen with your data in certain scenarios. If Live Long Life Community® is involved in a merger, acquisition, investment transaction, or sale of assets, or if we form a partnership/joint venture, user information (which at this stage is typically just contact inquiries and site usage data) may be transferred to the new owner or partner as part of that deal. If that occurs, we will ensure the new entity honors the commitments we’ve made in this Privacy Policy or will notify you and obtain consent if required by law for any materially new uses of your data. We do not currently anticipate such a transfer, but we mention it here for transparency.
• With Your Consent: Apart from the cases above, we will only share your data with third parties when you have given us explicit consent to do so. For instance, if you ask us to refer you to a partner organization or to share your contact details with a third-party for a specific purpose, we will do so only with your approval.

We emphasize that in the normal course of running our informational website, the instances of data sharing are very limited (mostly confined to service providers like hosting and analytics). We do not engage in any routine data sharing with advertisers or unrelated third parties.

Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including for satisfying any legal, accounting, or reporting requirements. Different types of data may have different retention periods:

• Contact Form & Correspondence: If you send us a message via the contact form or email, we will retain that communication and your contact details for as long as needed to respond to you and manage our relationship (e.g., if you become involved in our project or ask us to keep you updated). Typically, for general inquiries, we may retain emails or contact form entries for up to 1 year after our last interaction with you, in case follow-up is needed. If the correspondence could potentially lead to a business relationship or has legal significance, we might retain it for a longer period (for example, to have a record of communications). We periodically review stored communications and securely delete those that are no longer needed. If you would like us to delete your communications sooner, you have the right to request erasure (see Your Rights) and we will accommodate such requests unless we have a compelling reason or legal obligation to keep them.
• Analytics Data: Data collected via Google Analytics is retained in accordance with Google’s policies and our configuration. Currently, we have set Google Analytics to retain user-level and event-level data for 14 monthsfile-thzqljkv1bhycnyo8dwofx. This means that identifiers associated with your Site visits (like your device’s analytics cookie ID) and related usage logs are automatically deleted from Google’s servers after 14 months from collection, on a rolling basis. We chose this retention period to balance gaining useful long-term insights and protecting user privacy. Aggregate reports generated from this data may be kept longer (since they do not identify individuals), and we may download and store certain aggregate analytics reports indefinitely for internal analysis. However, those reports will not contain personal data. If you withdraw consent for analytics or block cookies, no new analytics data about you will be collected. Note that Google’s own privacy policy may apply to the data they store; Google has committed to GDPR compliance as a processor for analytics data and not to use it beyond providing services to us.
• Server Logs: Our web server logs (which contain IP addresses and visit timestamps) are generally retained for a short period, typically 30 days, for security monitoring and troubleshooting purposes. In normal circumstances, we do not keep raw logs longer than this. In case of detecting malicious activity or serious technical issues, relevant log excerpts might be kept until the issue is resolved and for evidence (if needed by authorities or for legal defense), but they will be deleted when no longer required.
• Cookies: Cookies stored on your browser have their own expiration times. For example, if you consent to analytics, the Google Analytics cookie may persist for up to 2 years unless you delete it. If you change your cookie preferences or withdraw consent, we will stop renewing those cookies and they will expire naturally over time. You can also delete cookies manually using your browser. Our cookie consent preference cookie (which remembers your choice) might last ~1 year; this is to avoid repeatedly asking you for consent. If you want to reset your cookie choices, you can simply clear your cookies and the banner will appear again.
• Legal Requirements: In certain cases we may need to retain data longer to comply with legal obligations or resolve disputes. For example, if a particular law requires us to keep records for a certain period (such as financial records, although we currently do not have transactions), or if we receive a legal hold or an order to preserve data, we will retain the data as required. Also, if you exercise certain rights (like objection or restriction), we might need to keep some information to demonstrate compliance or to honor your request in the future (e.g., keep your email in a suppression list so we know not to contact you).

After the applicable retention period expires, or once the data is no longer needed, we will either delete the personal data securely or anonymize it so that it can no longer be associated with you. For instance, we might aggregate old usage data for statistical analysis, or keep a record of how many inquiries we got each year without any personal identifiers attached.

International Data Transfers

We primarily process and store personal data within the European Union (EU), and our operations are based in Slovenia. However, some of the third parties we work with are located outside the EU/EEA, which means your personal data may be transferred to or accessed from international jurisdictions. We are committed to ensuring that such transfers are protected by appropriate safeguards as required by GDPR.

• Transfers to the United States: The main external service we use that may involve a data transfer outside the EU is Google Analytics, which is provided by Google LLC, a company based in the United States. When you allow analytics cookies, your usage data (e.g. truncated IP address, device information, and browsing data) may be transmitted to and processed on Google’s servers in the United Statesfile-thzqljkv1bhycnyo8dwofx. The U.S. at present does not have an EU adequacy decision (meaning the EU has not declared its privacy laws as providing equal protection to GDPR). To safeguard this transfer, we have entered into Standard Contractual Clauses (SCCs) with Google as part of their Analytics Data Processing Termsfile-thzqljkv1bhycnyo8dwofx. SCCs are legal contracts approved by the European Commission that oblige Google to protect EU personal data and grant EU individuals effective rights and remedies. Additionally, Google has implemented supplementary measures and is certified under the EU-U.S. Data Privacy Framework as of 2023file-thzqljkv1bhycnyo8dwofx, which indicates they commit to uphold specific data protection principles for data transferred to the U.S. Despite these measures, it’s important to note that data in the U.S. might be subject to government access under certain conditions. We monitor legal developments and, if needed, will adjust our practices (for example, by adopting new safeguards or switching to EU-based analytics solutions) to ensure continued compliance and protection of your data.
• Other International Transfers: If we use other service providers or partners located outside the EU/EEA (for example, an email service or cloud service in the U.S. or another country), we will ensure that one of the following conditions is met:
  • The destination country has an adequacy decision from the European Commission (meaning it’s deemed to have essentially equivalent data protection laws).
  • We have a valid data transfer mechanism in place, such as SCCs or Binding Corporate Rules, along with any necessary supplementary technical measures.
  • An applicable derogation under GDPR Article 49 applies (e.g., the transfer is necessary for the performance of a contract with you, or we have your explicit consent after informing you of possible risks).
• As of the effective date of this Policy, all our major processors (like Google) are either in the EU or covered by SCCs or similar safeguards if outside. We do not routinely transfer data to any international organization or to countries lacking protections without safeguards.
• Your Communication with Us from Outside EU: If you are located outside of Slovenia or the EU and you contact us, your personal data will obviously cross international borders (since our servers may be in the EU). By initiating contact and providing your information, we will process it in Slovenia/EU in order to reply. This is a transfer that is necessary for the performance of your request (which can be considered pre-contractual steps or in your interest), and by contacting us you acknowledge that your data will be handled in the EU. We protect that data under this Policy regardless of where you are from.

If you have questions about our data transfer safeguards or want more information about our international data transfers, please contact us (our contact details are at the end of this Policy). We can provide copies of relevant contractual clauses or point you to relevant documentation, subject to legal and confidentiality considerations.

Your Rights as a Data Subject

As a user of our Site and as a data subject under the GDPR, you have certain rights regarding your personal data. We are committed to honoring these rights. You may exercise these rights free of charge (with limited exceptions for excessive or unfounded requests) by contacting us at info@lllc.eu. Please note that these rights are not absolute and may be subject to certain conditions or legal limitations. We will respond to any legitimate request within one month, or inform you if we need more time. Your rights include:

• Right of Access: You have the right to request confirmation of whether we are processing your personal data, and if so, to receive a copy of that data along with information about how we use it. This allows you to understand and verify the lawfulness of our processing. We will provide you a copy of the personal data we have about you in a commonly used format, unless doing so adversely affects the rights and freedoms of others (for instance, revealing someone else’s personal data). For additional copies, we may charge a reasonable fee based on administrative costs, as permitted by law.
• Right to Rectification: If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct or update it. For example, if you notice we misspelled your name or have an outdated email address, please let us know and we will fix it promptly. We strive to keep data accurate and will gladly make corrections.
• Right to Erasure: Commonly known as the “right to be forgotten,” this right allows you to request that we delete your personal data in certain circumstances. You can request erasure if: the data is no longer necessary for the purposes we collected it; you withdraw consent (where the processing was based on consent) and we have no other legal basis; you object to processing and we have no overriding legitimate grounds; we processed your data unlawfully; or the data must be erased to comply with a legal obligation. We will honor valid erasure requests and also instruct any processors holding the data on our behalf to delete it. Please note some data may not be erased if an exemption applies – for example, if we need to keep it to comply with a legal obligation or to establish or defend legal claims, we may refuse deletion but will inform you of the reasons. Also, if you have ongoing correspondence with us, erasing your data might mean we cannot continue to engage, so we will clarify the consequences if relevant.
• Right to Restriction of Processing: You have the right to ask us to limit the processing of your personal data (essentially to store it but not use it) in certain scenarios: if you contest the accuracy of the data (for a period allowing us to verify it); if the processing is unlawful but you prefer restriction over deletion; if we no longer need the data but you need it for a legal claim; or if you have objected to processing (see below) and we are verifying whether our legitimate grounds override yours. When processing is restricted, we will not use your data except for storage and certain exempt purposes (e.g., with your consent or for legal claims). If a restriction is lifted, we will inform you.
• Right to Object: You have the right to object to our processing of your personal data when that processing is based on our legitimate interests (Art. 6(1)(f) GDPR). This includes the use of your data for analytics or security based on legitimate interest, or for any direct marketing we might do (though currently we do not send marketing communications). If you object, we must stop such processing unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or if we need to continue processing for the establishment, exercise, or defense of legal claims. In practice, if you object to analytics tracking, the simplest route is to opt-out of cookies (which we provide for). If you object to us retaining your contact info after an inquiry, we will likely comply and delete it, as we typically do not have overriding grounds to keep it (unless, for example, the correspondence must be kept for legal reasons). Objections to any data use will be assessed on a case-by-case basis in line with GDPR.
• Right to Data Portability: To the extent we process your personal data based on your consent or a contract with you, and the processing is carried out by automated means, you have the right to receive the data you provided to us in a structured, commonly used, machine-readable format, and to have that data transmitted to another controller where technically feasible. This right mainly applies to data you actively provided (e.g. contact form details) and which we process electronically. Given the limited data we collect, this right may not be particularly applicable (we can directly send you your inquiry content, which you likely already have). But if you need your data in a certain format or forwarded elsewhere, we will do our best to accommodate.
• Right to Withdraw Consent: If we are processing any of your personal data based on your consent (for example, if you consented to analytics cookies), you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing that happened before you withdrew consent, but once consent is withdrawn, we will cease the processing in question. It’s easy to withdraw consent for cookies using the methods described in Cookies & Tracking (e.g., via our site’s settings or your browser). If we ever in the future ask for consent for a newsletter or other service, you can similarly withdraw by unsubscribing. There is no penalty or loss of service for not giving or withdrawing consent — except that certain functionality (like analytics insights for us, or whatever service you withdrew from) will no longer be utilized.
• Right not to be Subject to Automated Decisions: As noted, we do not subject you to decisions based solely on automated processing that have legal or similarly significant effects. Should that change, you would have rights to request human intervention, to express your point of view, and to contest the decision. We include this for completeness; in practice your use of our Site will not involve such profiling or automated decisions at this time.
• Right to Lodge a Complaint: If you believe we have infringed your data protection rights or violated data protection laws, you have the right to lodge a complaint with a supervisory authority. Our primary supervisory authority is the Information Commissioner of the Republic of Slovenia (Informacijski pooblaščenec), since we are based in Slovenia. You can contact the Slovenian Information Commissioner’s Office through their website or mailing address. (Contact info as of this writing: Information Commissioner, Dunajska cesta 22, 1000 Ljubljana, Slovenia; website: ip-rs.si). If you reside in another EU country, you may also contact your local data protection authority, who may then coordinate with the Slovenian authority. Of course, we would appreciate the chance to address your concerns directly first, so we invite you to contact us with any complaints or issues and we will do our best to resolve them.

To exercise any of your rights, please email info@lllc.eu with your request. We may need to verify your identity to ensure that we do not disclose data to the wrong person or honor a malicious request. For example, we might ask you to provide information that matches what we have on file, or require you to write to us from the email address you used in contacting us, etc. We will only use such verification data for this purpose. We aim to respond within one month of receiving a valid request. If your request is complex or numerous, we may extend the response deadline by up to two further months, but we will inform you of this extension and the reasons. If we decide not to act on your request, we will also inform you of the reason and of your ability to complain to a supervisory authority.

We want you to have control over your personal data, so please do not hesitate to exercise these rights.

Data Security

We take the security of your personal data seriously. We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. These measures include, for example:

• Using secure protocols (our Site is accessible only over HTTPS, which encrypts data in transit between your browser and our server).
• Keeping our software, website platform, and plugins up to date to protect against known vulnerabilities.
• Restricting access to personal data: only authorized personnel or contractors who need to process your data for the purposes described will have access, and they are bound by confidentiality.
• Monitoring for potential security breaches and having procedures in place to detect and respond to incidents. For instance, we may use firewalls, intrusion detection systems, and regular security audits.
• Pseudonymization and minimization: where possible, we process data in a form that does not directly identify you (for example, we generally analyze usage patterns in aggregate form). We also collect the minimum amount of data necessary for our purposes, which reduces risk.
• Backups and resilience: we securely back up critical data to prevent loss, and protect those backups. We also ensure we can restore data in the event of a technical incident.

While we do our best to protect your data, no website or internet transmission is completely secure. We cannot guarantee absolute security of information, especially information transmitted via the internet. However, we follow industry best practices and will continue to improve our security safeguards as new technologies and threats emerge. In the unfortunate event of a data breach that poses a significant risk to your rights and freedoms, we will notify you and the relevant authorities as required by GDPR (we are aware of our obligation to report certain breaches within 72 hours).

We also encourage you to take steps to secure your own data. For example, do not send highly sensitive information (like passwords, credit card numbers, or personal health details) through the contact form or email, as these are not meant for such data. If you suspect any unauthorized access to your personal data or have any security-related concerns, please contact us immediately.

AI-Generated and Illustrative Content Disclaimer

Our Site features various images and videos that are used to illustrate concepts related to wellness, longevity, and real estate development concepts. These images and videos are generated or conceptual in nature (often created with the help of AI tools or design software) and are not photographs or recordings of actual people, places, or events. They are provided purely for illustrative and informational purposes to enhance the content on our Site.

We want to make it clear that these visuals do not depict real individuals. Any resemblance to actual persons (living or deceased) or actual places is purely coincidental. Since the images are AI-generated and conceptual, they contain no personal data – no real names, faces, or other identifying details of real people are used. We have chosen to use AI-generated imagery specifically to avoid using real persons’ likeness without consent and to maintain privacy-friendly visuals.

For example, if you see a photo of a happy family or a healthy individual on our wellness article, it is a digitally created illustration, not a real person’s photo from our community. Similarly, any video content showing future building concepts or lifestyle scenes are artist’s impressions, not live recordings of real locales. By doing this, we ensure that we are not inadvertently misusing anyone’s image or personal data on our Site.

Disclaimer: The illustrative content is meant to convey the spirit and ideas of the Live Long Life Community projects (such as what a future wellness facility might look like, or conceptual art for healthy living), but it should not be interpreted as a direct representation of current reality. It is not binding and is subject to change as our project evolves. Moreover, while these visuals aim to inspire and inform, they are not intended to provide medical advice or exact predictions – they are conceptual only.

From a privacy perspective, you can be assured that by viewing these images/videos on our Site, you are not seeing anyone’s personal data. If you ever notice content that you believe involves personal data or you have concerns about an image or video, please notify us and we will address it promptly.

Changes to this Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, to keep up with legal requirements, or for other operational reasons. If we make changes, we will notify you in accordance with the law and in a transparent manner.

For minor or non-material changes (those that do not negatively affect your rights), we may simply update the “Last Updated” or “Effective Date” at the top of this Policy and post the revised Policy on our Sitefile-thzqljkv1bhycnyo8dwofx. We encourage you to review this page periodically to stay informed of any updates.

For substantial changes to the Policy – for example, if we start collecting new types of personal data or introduce a new service that requires different processing, or if there are significant changes in applicable law – we will provide a more prominent notice. This may include a notice on our homepage or a pop-up notification about the Privacy Policy update. In certain cases, if required by law or if the change is significant, we may also seek your consent again (especially if the change relates to a purpose that originally relied on consent)file-thzqljkv1bhycnyo8dwofx.

The updated Privacy Policy will be effective as of the effective date listed. If you continue to use the Site after the Privacy Policy changes take effect, it will signify your acceptance of the updated terms, to the extent permitted by lawfile-thzqljkv1bhycnyo8dwofx. If you do not agree with any aspect of an updated Privacy Policy, you should stop using our Site and can contact us to express your concerns. We value your trust and will not reduce your rights under this Privacy Policy without obtaining consent where required.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please do not hesitate to contact us:

Live Long Life Community® – Privacy Team
Email: info@lllc.eu

You may reach out to us for any reason: whether it’s to exercise your data subject rights, to ask for clarification about our data practices, or to provide feedback. We will do our best to assist you and address your inquiries promptly and professionally. If you contact us to exercise a right, please clearly describe your request and, if we ask, provide information necessary for us to verify your identity (for your protection). We will respond within the timeframe outlined above in Your Rights.

Thank you for reading our Privacy Policy. Your privacy is of utmost importance to us, and we are dedicated to safeguarding it while you engage with the Live Long Life Community®. We want you to feel confident that your personal information is handled with care and integrity as you explore our wellness and real estate community project. Live Long Life Community® is built on trust and transparency, and that includes respecting your privacy every step of the way.