This Privacy Policy explains how I, Kim Seidler, process personal data in accordance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws. It also includes our Cookie Policy.

1. Name and Contact Details of the Controller

Kim Seidler
c/o Autorenglück #64667
Albert-Einstein-Straße 47
02977 Hoyerswerda, Germany
Email: kim@kimseidler.com
Website: https://kimseidler.com

2. General Principles of Data Processing

I process your personal data only when necessary to:

• Provide my coaching services and digital products
• Comply with legal obligations
• Improve my website and user experience
• Communicate with you based on your consent or a legitimate interest

3. Categories of Data Processed

Depending on how you interact with my website, I may collect:

• Identification data (name, email address, postal address)
• Payment details (via secure payment providers)
• Technical data (IP address, browser type, operating system, pages visited)
• Communication data (messages via contact forms, emails)

4. Purposes and Legal Bases

I process your data based on:

• Art. 6(1)(b) GDPR – Performance of a contract (e.g., coaching bookings, course purchases)
• Art. 6(1)(a) GDPR – Consent (e.g., newsletter subscription, cookies)
• Art. 6(1)(f) GDPR – Legitimate interest (e.g., website analytics, security)

5. Hosting

My website is hosted by ALL-INKL.COM – Neue Medien Münnich (Germany), which processes data on my behalf under a data processing agreement.

6. Analytics and Tracking

I use Plausible Analytics  – Operated by Plausible Insights OÜ, Estonia (EU). GDPR-compliant, no cookies used, no personally identifiable information stored.

7. Cookies

I use Borlabs Cookie – Operated by Borlabs GmbH, Germany. GDPR-compliant cookie consent management tool.

Types of cookies used:

• Essential cookies – Required for website functionality
• Functional cookies – Remember preferences
• Analytics cookies – Only if you consent (e.g., Plausible events if configured)
• Marketing cookies – For embedded videos or social media content

8. Payment Providers

When you make a purchase, payment data is processed directly by:

• Tentary – Operated by Tentary GmbH, Germany. GDPR-compliant.
• PayPal – Operated by PayPal (Europe) S.à r.l. et Cie, S.C.A., Luxembourg. GDPR-compliant; transfers possible to the USA based on Standard Contractual Clauses.
• Stripe – Operated by Stripe Payments Europe Ltd., Ireland. GDPR-compliant; transfers possible to the USA based on Standard Contractual Clauses.
• FanBasis – Operated by FanBasis Inc., based in Miami, Florida, USA. Given that FanBasis processes data outside the EU/EEA, we ensure data protection through Standard Contractual Clauses or appropriate safeguards as required under the GDPR.

I do not store full payment details; only transaction confirmations are retained.

9. Email Marketing

• Tentary – Operated by Tentary GmbH, Germany. GDPR-compliant email marketing service. Your data is processed exclusively on servers located in the EU. Consent is required before sending you marketing emails.

10. Appointment Booking for First Calls

• Brevo – Operated by Sendinblue SAS, France (EU). GDPR-compliant. Used exclusively for scheduling initial consultation calls via secure online forms.

11. Embedded Content and Media

• YouTube – Operated by Google Ireland Ltd., Ireland. GDPR-compliant; transfers possible to the USA based on Standard Contractual Clauses.
• Spotify for Podcasters – Operated by Spotify AB, Sweden (EU). GDPR-compliant.
• Audiorella – Operated by Podcastbude, Germany. GDPR-compliant.

12. Image Optimization and Performance Tools

• Imagify – Operated by WP Media, France (EU). GDPR-compliant. Images are temporarily transferred to servers in the EU for compression.
• Autoptimize – Operated by Optimizing Matters, Belgium (EU). GDPR-compliant. Processes only technical website data, no personal data stored.
• Cache Enabler – Operated by KeyCDN, Switzerland (non-EU, GDPR-adequate country). Creates static HTML files for faster page loading; no personal data stored.

13. Affiliate Links

Some links on my website are affiliate links. If you click on such a link and make a purchase, I may earn a commission. This does not increase your cost.

14. Social Media Plugins and Sharing

My website includes share buttons and may embed content from:

• Instagram – Operated by Meta Platforms Ireland Ltd., Ireland. GDPR-compliant; transfers possible to the USA.
• LinkedIn – Operated by LinkedIn Ireland Unlimited Company, Ireland. GDPR-compliant; transfers possible to the USA.
• YouTube – See section 11.

15. Data Transfers to Third Countries

Some services (e.g., YouTube, PayPal, Stripe, Instagram, LinkedIn) may process data in the USA. Transfers are based on Standard Contractual Clauses or your consent.

16. Retention Period

I store personal data only as long as necessary for the stated purposes or as required by law.

17. Your Rights

Under the GDPR, you have the right to:

• Access your data
• Rectify inaccurate data
• Request erasure
• Restrict processing
• Data portability
• Withdraw consent at any time
• Lodge a complaint with a supervisory authority

18. Security Measures

This website uses SSL encryption and technical safeguards to protect your data.

19. Updates to This Privacy Policy

This Privacy Policy may be updated from time to time. Please check back regularly.

20. Website Translations

My website uses TranslatePress (operated by Cozmoslabs SRL, Romania, EU) to provide multilingual content.

When using the translation feature:

• No personal data is stored by TranslatePress beyond what is necessary to display translated content.

• No tracking cookies are set by either service.

The service is GDPR-compliant and process data exclusively within the EU.