Oops! Sorry!!


This site doesn't support Internet Explorer. Please use a modern browser like Chrome, Firefox or Edge.

Privacy Policy

Privacy Policy

Effective Date: November 2025

1. Controller

The controller within the meaning of the EU General Data Protection Regulation (GDPR) and other applicable data protection laws is:

Joseph Michael Contrada
Narzissenweg 53c
21218 Seevetal
Germany

Phone: +49 4105 5861496
Email: to be replaced

Websites:

to be replaced

2. General Information on Data Processing

The protection of your personal data is very important to us. Personal data is processed exclusively in accordance with applicable legal provisions.

Personal data is any information relating to an identified or identifiable natural person (e.g. name, address, email address).

Use of our website is generally possible without providing personal data. However, if you actively provide data (e.g. via a contact form, booking system, or newsletter registration), processing is based on the following legal grounds:

*Art. 6 (1) (a) GDPR – Consent
*Art. 6 (1) (b) GDPR – Performance of a contract or pre-contractual measures
*Art. 6 (1) (c) GDPR – Legal obligation
*Art. 6 (1) (f) GDPR – Legitimate interest (e.g. technical security, fraud prevention)

2a. Processing of Special Categories of Personal Data (Art. 9 GDPR)

As part of our coaching and healing services, information relating to your emotional, mental, or health-related condition may be processed.

Such data is processed only with your explicit consent in accordance with Art. 9 (2) (a) GDPR, treated confidentially, and not shared with third parties.

3. Data Storage and Deletion

Personal data is deleted as soon as the purpose for storage no longer applies or statutory retention periods expire.

Data required for contractual performance or accounting purposes is stored in accordance with tax regulations for up to 10 years.

4. Your Rights

*Under the GDPR, you have the following rights:

*Right of access (Art. 15 GDPR)
*Right to rectification (Art. 16 GDPR)
*Right to erasure (“right to be forgotten”) (Art. 17 GDPR)
*Right to restriction of processing (Art. 18 GDPR)
*Right to data portability (Art. 20 GDPR)
*Right to object to processing (Art. 21 GDPR)
*Right to withdraw consent at any time (Art. 7 (3) GDPR)
*Right to lodge a complaint with a supervisory authority

Supervisory Authority:

State Commissioner for Data Protection Lower Saxony
Prinzenstraße 5
30159 Hanover,
Germany
https://www.lfd.niedersa8chsen.de

5. Provision of the Website / Log Files

When accessing our websites, the hosting provider automatically collects the following information:
*Date and time of access
*Accessed URL and referrer
*Browser type and version
*Operating system
*IP address
*Access status / amount of data transferred

This data is technically required to deliver the website and ensure system security (Art. 6 (1) (f) GDPR).
No merging with other data sources takes place.

6. Cookies

Our website uses cookies to enable certain functions and analyze usage.

Essential cookies are required to ensure proper operation of the website. Analytics and marketing cookies are used only with your explicit consent
(§ 25 TTDSG, Art. 6 (1) (a) GDPR).

You can configure your browser to inform you about the use of cookies and decide individually whether to accept them.

Browser help pages:
Apple Safari | Chrome | Firefox | Opera

7. SSL Encryption

This website uses SSL encryption (Secure Sockets Layer) to protect transmitted data from unauthorized access.

You can recognize an encrypted connection by “https://” and the lock symbol in your browser.

8. Web Hosting and Security

Our websites are operated via Groove.cm and use Cloudflare Germany GmbH, Rosental 7, 80331 Munich, Germany, as a content delivery network (CDN).

Cloudflare processes technical data (e.g. IP address, access time) for security purposes.

Privacy Policy:
https://www.cloudflare.com/de-de/privacypolicy

9. Appointment Booking

We use the following online scheduling services:

*TidyCal (Sumo Group Inc.)
1305 E. 6th Street #3,
Austin, TX 78702, USA
Privacy Policy: https://tidycal.com/privacy-policy

*CalendarBug (Groove Digital Inc.)
1 N Dearborn Street, 5th Floor, Chicago, IL 60601, USA

Privacy Policy: https://groovedigital.com/privacy

Processed data includes name, email address, and appointment details.
Legal basis: Art. 6 (1) (a) GDPR (consent)

10. Newsletter

Newsletters are sent only with your consent (double opt-in).

Processed data includes:

Email address Registration timestamp IP address

Service provider: Groove Digital Inc., USA Privacy Policy: https://groovedigital.com/privacy

SendGrid (Email Delivery via Groove Digital Inc.)

Groove Digital Inc. uses SendGrid, a service of Twilio Inc., 101 Spear Street, San Francisco, CA 94105, USA.

SendGrid processes personal data (e.g. email address, IP address, delivery timestamps) to ensure reliable delivery.

Twilio Inc. is certified under the EU-US Data Privacy Framework. Privacy Policy: https://www.twilio.com/legal/privacy

Legal basis:

Art. 6 (1) (a) GDPR (consent) Art. 6 (1) (f) GDPR (legitimate interest in secure email delivery)

You may unsubscribe at any time via the unsubscribe link in the newsletter.

11. Course and Membership Systems

For digital programs, courses, and membership areas we use:

Groove Digital Inc.
1 N Dearborn Street, Chicago, IL 60601, USA

Processing is carried out in accordance with Standard Contractual Clauses (SCC) and Art. 28 GDPR.

Privacy Policy: https://groovedigital.com/privacy

12. Webinars, Meetings & Communication

*Zoom Video Communications Inc.
https://zoom.us/privacy

*Microsoft Teams
https://privacy.microsoft.com

Both providers are certified under the EU-US Data Privacy Framework.

Legal basis: Art. 6 (1) (b) GDPR (contract performance)

12a. Additional Services

*Surveyed.live (survey platform, USA)
Privacy Policy: https://surveyed.live/privacypolicy
(SCC pursuant to Art. 46 GDPR)

*Google Forms
Google Ireland Ltd. / Google LLC (USA – DPF certified)


*Acast AB (Podcast hosting, Sweden)
https://www.acast.com/general-data-protection-regulation-gdpr-privacy-policy

13. Third-Party Providers

*Google Ireland Ltd. (Analytics, Tag Manager, Forms)
https://policies.google.com/privacy
*Meta Platforms Ireland Ltd. (Facebook Pixel / Ads)
https://www.facebook.com/policy.php
*Vimeo Inc.
https://vimeo.com/privacy
*YouTube / Google Ireland Ltd.
https://www.google.de/intl/de/policies/privacy
*Soundwise Inc. (Audio hosting)
https://mysoundwise.com/privacy

Legal basis: Art. 6 (1) (a) GDPR (consent)

14. Payment Service Providers

*Stripe Payments Europe Ltd. – https://stripe.com/privacy
*PayPal (Europe) S.à r.l. et Cie, S.C.A. – https://www.paypal.com/privacy
*Wise Europe SA – https://wise.com/legal/privacy-policy
*Digistore24 GmbH – https://www.digistore24.com/privacy
*ThriveCart Ltd. – https://legal.thrivecart.com/privacy/

Legal basis: Art. 6 (1) (b) GDPR (contract performance)

15. CRM and Automation Tools

*Zapier Inc., USA

https://zapier.com/privacy
Certified under the EU-US Data Privacy Framework

Legal basis: Art. 6 (1) (a) GDPR

15a. CRM and Contract Signing Tools

*PipeLeads.ai
Provider: PipeLeads Inc., USA
Privacy Policy: https://www.pipeleads.ai/privacy
Data transfer based on SCC or EU-US DPF certification

*DocSigner.ai
Provider: DocSigner Inc., USA
Privacy Policy: https://www.docsigner.ai/privacy
Processing under Art. 28 GDPR and SCC

*Signaturely.com
Signaturely Inc., USA
Certified under EU-US Data Privacy Framework
Privacy Policy: https://signaturely.com/privacy/

16. Analytics and Tracking

*Google Analytics / Tag Manager
IP anonymization enabled
Legal basis: Art. 6 (1) (a) GDPR
Opt-out: https://tools.google.com/dlpage/gaoptout

*Facebook Pixel
Legal basis: Art. 6 (1) (a) GDPR,
Art. 49 (1) (a) GDPR

17. Affiliate Programs

*Amazon PartnerNet
Amazon Europe Core S.à r.l., Luxembourg
https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010

Legal basis: Art. 6 (1) (a) GDPR

18. Technical and Organizational Security Measures

We implement appropriate technical and organizational measures to protect your data against loss, manipulation, or unauthorized access in accordance with Art. 32 GDPR.

19. Objection to Advertising Emails

The contact data published in the imprint may not be used for unsolicited advertising or spam emails. Legal action may be taken in case of violations.

20. Updates to This Privacy Policy

Status: November 2025
Updated in accordance with GDPR, TTDSG, and the EU-US Data Privacy Framework (2025)

👉 Click here to download Privacy Policy

© Petra Contrada 2025

Privacy Policy Impressum Home