PRIVACY POLICY

Last Updated: 8 Dec 2025

1. Overview

Maldives Wellness Review (the “Website” “we”, “us”, “our”) is committed to protecting your (“User”, “you”) privacy. This policy outlines how we collect, use, and safeguard your information in accordance with applicable laws of the Republic of Maldives and best practices. By accessing or using the Website, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and use of your information as outlined in here.

2. Information We Collect

  1. Personal Information: When you subscribe, we collect your name, email address, phone number, and billing address.
  2. Payment Information: We do not collect or store your credit/debit card number, CVV, or expiration date. This information is entered directly into the Bank of Maldives secure portal. We only receive a transaction reference number and status (Success/Fail) from the bank.
  3. Usage Data: We collect data on how you interact with our articles.
  4. Browser or Device Data: Certain information is collected by most browsers or automatically through your device, such as your Media Access Control (MAC) address, computer type (Windows or Macintosh), screen resolution, operating system name and version, device manufacturer and model, language, Internet browser type you are using. We use this information to help ensure that the Website functions properly.
  5. Location data: Required for service optimization and analytics.
  6. Using pixel tags and other similar technologies: Pixel tags (also known as web beacons and clear GIFs) may be used to, among other things, track the actions of users of the Website (including email recipients), measure the success of our marketing campaigns and compile statistics about usage of the Website and response rates. Where required by law, we will obtain your consent before using such technologies for marketing or profiling.
  7. IP Address: Your IP address is a number that is automatically assigned to the computer that you are using by your Internet Service Provider. An IP address may be identified and logged automatically in our server log files whenever a user accesses the Website, along with the time of the visit and the pages that were visited. Collecting IP addresses is standard practice and is done automatically by many websites and applications. We use IP addresses for purposes such as calculating usage levels, diagnosing server problems, and administering the Website. We may also derive your approximate location from your IP address.
  8. By aggregating information: Aggregated information does not identify you or any other user of the Website (for example, we may aggregate information to calculate the percentage of our users who have a particular telephone area code).

3. How We Use Your Information

  1. To Provide Access: To identify you and grant access to the paywalled content.
  2. Communication: To send payment receipts, subscription renewal and other notices, and editorial newsletters (if opted-in).
  3. Customer Support: To resolve technical issues or payment disputes.
  4. For compliance and security: Ensuring legal compliance and protecting user data from unauthorized access.
  5. To investigate and prevent activities that may violate our policies or be illegal; and/or
  6. For gathering anonymous aggregate information from all our users to improve the Website and services offered through it, conduct research, or monitor service quality.

4. Data Sharing & Third Parties

We do not sell your personal data. We share data only with:

  1. Bank of Maldives (BML): Strictly for the purpose of processing payments and fraud detection.
  2. Legal Authorities: As we believe to be necessary or appropriate: (a) under applicable law, including laws outside your country of residence; (b) to comply with legal process; (c) to respond to requests from public and government authorities, including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of our affiliates; (f) to protect our rights, privacy, safety or property, and/or that of our affiliates, you or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain.
  3. Service Providers and Affiliates: To our service providers who provide website hosting, data analysis, information technology and related infrastructure provision, customer service, email delivery, auditing, etc.
  4. Restructuring: To a third party in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in bankruptcy or similar proceedings).
  5. General and Aggregated Information: We may use and disclose information that does not identify or otherwise directly relate to an individual for any purpose, except where we are required to do otherwise under applicable law. For example, we may share aggregated information publicly to demonstrate growth trends related to the usage of the Website in certain areas.
  6. Consent-based Sharing: For purposes such as research, or third-party app/site integrations, or marketing, explicit and informed consent from the User would be required before any identifiable data is disclosed. Users must be informed about what data will be shared, with whom, and for what purpose. Consent must be freely given, specific, informed, and withdrawable at any time.
  7. Principles When Sharing Data:
    1. Public Interest: Disclosure can also occur if it is justified in the public interest, such as preventing serious harm or in emergency situations.
    2. Data Minimisation: When sharing or disclosing data, only the minimum necessary information should be provided to fulfil the intended purpose, reducing exposure of sensitive details.
    3. Anonymisation: Where possible, data is anonymized or aggregated before sharing, especially for analytics, research, or service improvement to protect individual identities.
    4. Third Party Connections: Where Users choose to connect their data with third-party sites or apps, they must authorize this sharing. Once data is shared with external parties, the Website may not control further use, hence Users are advised to only use trusted third-party services. Users can revoke access to third-party sites/apps at any time through the Website’s settings.
    5. User Rights: Users have a right to know how their data is shared, to whom, and for what purposes. They can object to certain types of sharing and request access to or deletion of their data, subject to legal and record-keeping requirements.

5. Cookies

Cookies are pieces of information stored directly on the device that you are using. Cookies allow us to collect information such as browser type, time spent on the Website, pages visited, language preferences, and other traffic data. We and our service providers use the information for security purposes, to facilitate navigation, to display information more effectively, to personalize your experience while using the Website, and to recognize your computer in order to assist your use of the Website. We also gather statistical information about use of the Website in order to continually improve the Website’s design and functionality, understand how it is used and assist us with resolving questions regarding it. We may also use cookies or other technologies to track responses to our online advertisements on other sites or applications. Where required by law, certain non‑essential cookies (such as for targeted advertising) will only be set with your consent, which you can withdraw at any time through your browser settings or our cookie tools. If you do not want information collected through the use of cookies, there is a simple procedure in most browsers that allows you to automatically decline cookies or be given the choice of declining or accepting the transfer to your device of a particular cookie (or cookies) from a particular site. If, however, you do not accept cookies, you may experience some inconvenience in your use of the Website. For example, we may not be able to recognize your device, and you may need to log in every time you visit.

6. Security

In circumstances where your personal information is collected, we implement reasonable technical and organizational security measures designed to help protect against loss, unauthorized access, disclosure, alteration or destruction of information and data, such as password protection and secure socket layer. However, no data transmission or storage system can be guaranteed to be completely secure. If you have reason to believe the security of your account has been compromised, please immediately notify us in accordance with the “Contact Us” section below.

7. Your Rights

We understand and respect your privacy concerns at Maldives Wellness Review. Accordingly, we provide you with the ability to make certain choices related to our collection, use, and sharing of your information. These choices may include:

(a) You may edit or delete information in your user account.

(b) You may make choices regarding updates and product alerts.

(c) You may tell us if you want to receive offers and promotions from us and/or third parties.

(d) You may request access to the personal information that we have collected on your account and ask us to change or delete it, subject to applicable law and our legitimate business and record keeping requirements.

8. Data Storage

Data is typically stored in encrypted databases, either on secure cloud servers or, in some cases, on-site servers for enhanced privacy. Strict access controls and audit trails are implemented to prevent unauthorized access and modifications. Data may be stored or processed on servers located inside or outside the Maldives, and appropriate safeguards will be implemented for any cross‑border transfers of personal data, where relevant.

9. Third-party Sites/Apps

This Privacy Policy does not address, and we are not responsible for, the privacy, information or other practices of any third parties, including any third party operating any site or service to which the Website links. The inclusion of a link on the Website does not imply endorsement of the linked site or service by us or by our affiliates. Should the User leave the Website for another application or browser, this Privacy Policy no longer applies. We have no control over how other applications or sites collect, distribute or otherwise use your personal information or how they safeguard and secure your personal information.

10. Changes To This Privacy Policy

We reserve the right to change or modify our Privacy Policy from time to time by posting a revised Privacy Policy on the Website. The “last updated” legend at the top of this page indicates when this Policy was last revised. As an ongoing user of the Maldives Wellness Review, you will be subject to the terms of the then-current Privacy Policy. We ask that you refer to the Privacy Policy on a continuing basis so that you understand our current privacy practices.

11. Data Retention and Destruction

  1. Retention Periods: We retain User data for as long as necessary to fulfil the purposes for which it was collected and to comply with applicable legal, regulatory, tax, accounting, or reporting requirements, after which it will be securely deleted or anonymised in accordance with this Policy.
  2. Data Deletion: Upon expiry of the retention period or upon User request (where legally permitted), data is securely deleted or anonymized to prevent recovery.
  3. Destruction Methods: Secure deletion protocols are used, such as overwriting digital files or cryptographic erasure, to ensure that data cannot be reconstructed or accessed after destruction.

12. Contact Us

If you would like to contact us with questions, feedback, or a complaint regarding this Privacy Policy or our data practices, please contact us at marketing@softatoll.com or

+96 07353008
Maldives Wellness Review is owned and operated by Soft Atoll, M. Baansaage, Malé City, Republic of Maldives.