1 · Direct booking
You booked through Nolvea. The badge is applied automatically once the clinic marks the appointment complete.
Nolvea processes health data — the most sensitive GDPR category. Here's how we operate, in plain language.
We don't run profiled targeted advertising. We don't trade data with data brokers. There is no “alternative business model” behind your back.
GDPR Art. 5 — Purpose limitation
Every review has an appointment booked with us or an uploaded receipt. The moderation team manually checks ambiguous cases. We don't accept anonymous reviews imported from other platforms.
Internal policy · monthly audit
See exactly which clinics received information about you, what data they received, and when. Download your full history or delete your account with confirmation within 30 days.
GDPR Art. 15, 17, 20
Receipts uploaded for review authentication are deleted after 90 days. Appointment data is kept for 5 years (legal minimum). Account data, for as long as you stay with us.
GDPR Art. 5(1)(e), Law 190/2018
The “Verified Visit” badge shows Nolvea was present in your care journey — either you booked directly with us, or a partner (insurance broker, corporate program, agent) coordinated us with the clinic. The badge doesn't reveal which of the two was your case.
You booked through Nolvea. The badge is applied automatically once the clinic marks the appointment complete.
A broker, company program, or partner platform coordinated us. You upload the receipt, the team verifies within 24 hours, the badge is applied.
We use the receipt for authentication only. It's auto-deleted after 90 days. We never share it with clinics.
Technical standards aren't for marketing pages. We write them here because auditors, partners, and patients can verify them.
Auditable table — category × duration × legal basis × technical method. This is the answer to “how long”, not just “how”.
| Category | Duration | Legal basis | Technical method |
|---|---|---|---|
| Receipts for review authentication | 90 days | Art. 5(1)(e) · minimization | Auto-delete cron |
| Appointment data (active) | 5 years | Law 95/2006 · medical record | Database + anonymization on request |
| Published reviews | Permanent · anonymized on deletion | Legitimate interest · public information | Database |
| Account data (name, email, phone) | As long as you're with us · deletion ≤ 30d | Art. 6(1)(b) · contract | Database · soft-delete + purge |
| Audit logs | 12 months | Art. 32 · security | Cold storage · WORM |
| Authentication sessions | Until logout · max 30 days | Art. 32 · security | JWT expiry + revoke |
| Patient ↔ clinic messages | 90 days after appointment closes | Art. 9(2)(h) · care | Encrypted at rest · Supabase Vault |
Incident history
No incidents reported as of launch.
This section will be updated publicly, transparently, if any security incident affecting user data occurs. We notify affected users within 24h and ANSPDCP within 72h, per Art. 33–34.
All of the below is done from your account, without calling anyone. For complex requests, we work it out together within a week.
Everything we have about you, in a .zip file — appointments, reviews, messages, consents. Generated in < 60 seconds.
Deletion is complete within 30 days. Active appointments remain visible to clinics (legal minimum: 5 years). Your reviews stay — they're yours, not the clinic's.
See exactly what you ticked, when, and withdraw any optional consent with one click. Mandatory consents (T&C, health-data processing) — withdrawing means closing the account.
Full list of clinics and partners who received data about you, what data, and when. Plus, where the law permits us to disclose, any data request received from a competent authority. If a request is subject to judicial confidentiality, we'll indicate it without exposing the details.
You have the right to lodge a complaint with Romania's data protection supervisory authority if you believe your GDPR rights have been breached. www.dataprotection.ro · 021 252 5599.
The Data Protection Officer (DPO) is the single person who answers GDPR requests. Reply within 30 days, per Art. 12.