This Privacy Policy explains how I, Kim Seidler, process personal data in accordance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws. It also includes our Cookie Policy.

1. Name and Contact Details of the Controller

Kim Seidler
c/o Autorenglück #64667
Albert-Einstein-Straße 47
02977 Hoyerswerda, Germany
Email: kim@kimseidler.com
Website: https://kimseidler.com

2. General Principles of Data Processing

I process your personal data only when necessary to:

• Provide my coaching services and digital products
• Comply with legal obligations
• Improve my website and user experience
• Communicate with you based on your consent or a legitimate interest

3. Categories of Data Processed

Depending on how you interact with my website, I may collect:

• Identification data (name, email address, postal address)
• Payment details (via secure payment providers)
• Technical data (IP address, browser type, operating system, pages visited)
• Communication data (messages via contact forms, emails)

4. Purposes and Legal Bases

I process your data based on:

• Art. 6(1)(b) GDPR – Performance of a contract (e.g., coaching bookings, course purchases)
• Art. 6(1)(a) GDPR – Consent (e.g., newsletter subscription, cookies)
• Art. 6(1)(f) GDPR – Legitimate interest (e.g., website analytics, security)

5. Hosting

My website is hosted by ALL-INKL.COM – Neue Medien Münnich (Germany), which processes data on my behalf under a data processing agreement.

6. Analytics and Tracking

We use Matomo Analytics, an open-source web analytics platform, to analyze and improve the use of our website.

Matomo is hosted directly on our own server. This means that all analytics data is stored exclusively on our infrastructure and is not shared with third parties.

We have configured Matomo in a cookieless mode, so no cookies are set and no personally identifiable information is stored. The following information may be collected:

• • pages visited and actions performed
  • time of visit and duration of visit
  • type of device, operating system and browser used
  • anonymized IP address (used only to determine approximate location)

The processing of this data is based on our legitimate interest in analyzing and improving our website (Art. 6(1)(f) GDPR).

7. Cookies

• • I use Borlabs Cookie – Operated by Borlabs GmbH, Germany. GDPR-compliant cookie consent management tool.
  • Types of cookies used:
  • Essential cookies – Required for website functionality
  • Functional cookies – Remember preferences
  • Analytics cookies – Only if you consent (e.g., Plausible events if configured)
  • Marketing cookies – For embedded videos or social media content

8. Payment Providers

• • When you make a purchase, payment data is processed directly by:
  • Tentary – Operated by Tentary GmbH, Germany. GDPR-compliant.
  • PayPal – Operated by PayPal (Europe) S.à r.l. et Cie, S.C.A., Luxembourg. GDPR-compliant; transfers possible to the USA based on Standard Contractual Clauses.
  • Stripe – Operated by Stripe Payments Europe Ltd., Ireland. GDPR-compliant; transfers possible to the USA based on Standard Contractual Clauses.
  • FanBasis – Operated by FanBasis Inc., based in Miami, Florida, USA. Given that FanBasis processes data outside the EU/EEA, we ensure data protection through Standard Contractual Clauses or appropriate safeguards as required under the GDPR.
  • I do not store full payment details; only transaction confirmations are retained.

9. Email Marketing

• • Tentary – Operated by Tentary GmbH, Germany. GDPR-compliant email marketing service. Your data is processed exclusively on servers located in the EU. Consent is required before sending you marketing emails.

10. Appointment Booking for First Calls

• • Brevo – Operated by Sendinblue SAS, France (EU). GDPR-compliant. Used exclusively for scheduling initial consultation calls via secure online forms.

  • 10. Appointment Booking and Coaching Sessions

    For scheduling initial consultation calls and coaching sessions, we use Brevo (Sendinblue SAS, France/EU). Brevo is GDPR-compliant and processes data exclusively within the EU. Your information is used solely for the purpose of managing appointments via secure online forms.

    For the actual coaching sessions, we use Zoom Video Communications, Inc. and, optionally, Microsoft Teams (Microsoft Corporation) as video conferencing tools.

    • Zoom: Zoom Video Communications, Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA.

    • Microsoft Teams: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

    For customers within the EU, data processing with both services is carried out under the EU Standard Contractual Clauses (SCCs) to ensure GDPR compliance.

    Zoom and Microsoft Teams are used exclusively to conduct online coaching and consultation sessions via secure meetings. Data processing is based on Art. 6(1)(b) GDPR (performance of a contract) and Art. 6(1)(f) GDPR (legitimate interest in effective and secure communication).

    Clients may choose whether their coaching session will be held via Zoom or Microsoft Teams.

    Further information on data processing:

    • Brevo: https://www.brevo.com/legal/privacypolicy/

    • Zoom: https://explore.zoom.us/en/privacy/

    • Microsoft: https://privacy.microsoft.com/en-us/privacystatement

11. Embedded Content and Media

• • YouTube – Operated by Google Ireland Ltd., Ireland. GDPR-compliant; transfers possible to the USA based on Standard Contractual Clauses.
  • Spotify for Podcasters – Operated by Spotify AB, Sweden (EU). GDPR-compliant.
  • Audiorella – Operated by Podcastbude, Germany. GDPR-compliant.
  • 12. Image Optimization and Performance Tools
  • Imagify – Operated by WP Media, France (EU). GDPR-compliant. Images are temporarily transferred to servers in the EU for compression.
  • Autoptimize – Operated by Optimizing Matters, Belgium (EU). GDPR-compliant. Processes only technical website data, no personal data stored.
  • Cache Enabler – Operated by KeyCDN, Switzerland (non-EU, GDPR-adequate country). Creates static HTML files for faster page loading; no personal data stored.

13. Affiliate Links

• • Some links on my website are affiliate links. If you click on such a link and make a purchase, I may earn a commission. This does not increase your cost.

14. Social Media Plugins and Sharing

• • My website includes share buttons and may embed content from:
  • Instagram – Operated by Meta Platforms Ireland Ltd., Ireland. GDPR-compliant; transfers possible to the USA.
  • LinkedIn – Operated by LinkedIn Ireland Unlimited Company, Ireland. GDPR-compliant; transfers possible to the USA.
  • YouTube – See section 11.

15. Data Transfers to Third Countries

• • Some services (e.g., YouTube, PayPal, Stripe, Instagram, LinkedIn) may process data in the USA. Transfers are based on Standard Contractual Clauses or your consent.

16. Retention Period

• • I store personal data only as long as necessary for the stated purposes or as required by law.

17. Your Rights

Under the GDPR, you have the right to:

• • Access your data
  • Rectify inaccurate data
  • Request erasure
  • Restrict processing
  • Data portability
  • Withdraw consent at any time
  • Lodge a complaint with a supervisory authority

18. Security Measures

• • This website uses SSL encryption and technical safeguards to protect your data.

19. Updates to This Privacy Policy

• • This Privacy Policy may be updated from time to time. Please check back regularly.

20. Website Translations

• • My website uses TranslatePress (operated by Cozmoslabs SRL, Romania, EU) to provide multilingual content.
  • When using the translation feature:

  • No personal data is stored by TranslatePress beyond what is necessary to display translated content.

  • No tracking cookies are set by either service.

  • The service is GDPR-compliant and process data exclusively within the EU.