Privacy Policy
This Privacy Policy outlines the principles for storing and accessing data on Users’ Devices who use the Service for electronic service provision by the Administrator. It also sets the rules for collecting and processing personal data voluntarily provided by Users via tools available within the Service.
This Privacy Policy constitutes an integral part of the TERMS AND CONDITIONS, which defines the rules, rights, and obligations of Users using the Service.
§1 Definitions
Service – the website “Izabela Skarzyńska – Soul Body Healing at Oediamond Academy” operating at https://izabelaskarzynska.com.
External Service – websites of partners, service providers, or contractors cooperating with the Administrator.
Service/Data Administrator – The Service and Data Administrator (hereinafter referred to as the Administrator) is the company “Oediamond Academy,” conducting business at:
12 Fernmoor Drive, Irthlingborough, NN9 5TL, providing electronic services via the Service.
User – an individual for whom the Administrator provides electronic services via the Service.
Device – an electronic device with software through which the User accesses the Service.
Cookies – text data collected in the form of files placed on the User’s Device.
GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
Personal Data – information relating to an identified or identifiable natural person (“data subject”), including but not limited to identifiers such as name, identification number, location data, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of the individual.
Processing – any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, retrieval, use, disclosure, alignment, restriction, erasure, or destruction.
Restriction of Processing – marking stored personal data to limit its processing in the future.
Profiling – automated processing of personal data to evaluate specific personal aspects of an individual, particularly to analyze or predict work performance, economic situation, health, preferences, behavior, location, or movements.
Consent – voluntary, specific, informed, and unambiguous indication of the data subject’s wishes by which they, through a statement or clear affirmative action, signify agreement to the processing of their personal data.
Personal Data Breach – a breach of security leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal data transmitted, stored, or otherwise processed.
Pseudonymization – processing personal data in a way that it can no longer be attributed to a specific data subject without the use of additional information, provided such additional information is kept separately and is subject to technical and organizational measures.
Anonymization – irreversible transformation of personal data to make identification or linkage to a specific individual impossible.
§2 Data Protection Officer
Under Article 37 of the GDPR, the Administrator has not appointed a Data Protection Officer. For matters related to data processing, including personal data, please contact the Administrator directly.
§3 Types of Cookies
Internal Cookies – cookies placed and read from the User’s Device by the Service’s telecommunication system.
External Cookies – cookies placed and read from the User’s Device by external services. Scripts and services from external sources integrated into the Service may place cookies on User Devices.
Session Cookies – cookies placed and read from the User’s Device during a single session. These are deleted after the session ends.
Persistent Cookies – cookies placed and read from the User’s Device until they are manually deleted. These are not deleted automatically when the session ends unless the Device settings are configured to do so.
§4 Data Storage Security
Cookie Storage and Reading Mechanisms – The mechanisms for storing, reading, and exchanging data between Cookies and the Service’s systems rely on built-in browser features, preventing unauthorized access to other data.
Internal Cookies – These cookies are secure for Users’ Devices and do not contain scripts or content that could compromise data security.
External Cookies – The Administrator strives to verify external partners’ security standards but does not have full control over their content or usage.
User Control of Cookies – Users can independently modify settings for saving, deleting, and accessing cookies at any time. Instructions for managing cookies in popular browsers are available online.
§5 Purposes for Cookie Usage
Cookies are used for:
Facilitating Service access and functionality.
Personalizing the User experience.
Enabling User authentication and login.
Marketing and remarketing via external platforms.
Affiliate services.
Statistical analysis.
Providing multimedia services.
Delivering social features.
§6 Personal Data Processing Purposes
Personal data voluntarily provided by Users is processed for purposes such as:
Service provision (e.g., User registration, newsletters, or commenting).
Communication between Administrator and Users.
Legitimate interests of the Administrator (e.g., statistical analysis, remarketing).
§7 Third-Party Cookies and Services
The Service uses scripts and components from external partners who may place their cookies on User Devices. These include:
Multimedia Services: YouTube, Vimeo, SoundCloud.
Social Media Services: Facebook, Instagram.
Newsletter Services: MailerLite.
Analytics: Google Analytics.
Users can adjust browser settings to limit or manage external cookies.
§8 Types of Data Collected
The Service collects data about Users. Some of the data is collected automatically and anonymously, while some are personal data voluntarily provided by Users during registration for specific services offered by the Service.
Anonymously Collected Data (collected automatically):
IP address
Browser type
Screen resolution
Approximate location
Subpages of the service accessed
Time spent on a particular subpage of the service
Type of operating system
Address of the previous subpage
Referring page address
Browser language
Internet connection speed
Internet Service Provider
Demographic data (age, gender)
Data Collected During Registration:
First name / Last name / Nickname
Login
Email address
Home address
Phone number
IP address (collected automatically)
Tax Identification Number (NIP)
Data Collected During Subscription to the Newsletter:
First name / Last name / Nickname
Email address
IP address (collected automatically)
Data Collected When Adding a Comment:
First name / Last name / Nickname
Email address
Website address
IP address (collected automatically)
Some data (excluding identifiable data) may be stored in cookies. Some data (excluding identifiable data) may be shared with statistical service providers.
§9 Access to Personal Data by Third Parties
As a rule, the sole recipient of personal data provided by Users is the Administrator. Data collected as part of the services provided is not transferred or sold to third parties.
Access to data (usually under a Data Processing Agreement) may be granted to entities responsible for maintaining the infrastructure and services necessary for the operation of the Service, such as:
a) Hosting companies providing hosting or related services for the Administrator
b) Companies through which the Newsletter service is provided
c) IT maintenance and support companies responsible for maintaining IT infrastructure
d) Companies intermediating online payments for goods or services offered through the Service (in cases where purchase transactions are made on the Service)
Data Processing Agreement – Newsletter
The Administrator, for the purpose of providing the Newsletter service, uses a third-party service provider – MailerLite. The data entered into the Newsletter subscription form are transmitted, stored, and processed in the external service of this provider.
We inform you that the indicated partner may modify its privacy policy without the Administrator’s consent.
Data Processing Agreement – Hosting, VPS, or Dedicated Server Services
The Administrator, for the operation of the Service, uses the services of an external hosting, VPS, or Dedicated Server provider – Tani i szybki hosting WWW. Tanie domeny z hostingiem w SeoHost.pl All data collected and processed in the Service are stored and processed within the infrastructure of the provider located within the European Union. Access to this data may occur due to maintenance works carried out by the provider’s personnel. Access to these data is governed by an agreement between the Administrator and the Provider.
Data Processing Agreement – Website Maintenance Services
The Administrator, for the maintenance of the Service, uses the services of an external provider – kauaistudio1@gmail.com – The personnel of this entity has access to data entered by users during registration, account editing, and/or data related to the Newsletter service. Access to these data is governed by an agreement between the Administrator and the Provider.
Data Processing in the Case of Online Payments
For online payment transactions, all payment-related data is directly provided by the User to the payment provider –
Stripe (Stripe Inc., 510 Townsend Street, San Francisco, CA 94103, USA)
Klarna (Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Organization number: 556737-0431)
Przelewy24 (PayPro SA, headquartered in Poznań, 60-327, Kanclerska Street 15, KRS 0000347935, NIP 7792369887, REGON 301345068)
Selected data necessary for transaction processing is subsequently transmitted by this provider to the Administrator. The transfer of data is governed by an agreement between the Administrator and the Provider.
§10 Method of Processing Personal Data
Personal Data Provided Voluntarily by Users:
Personal data will not be transferred outside the European Union unless they are made public as a result of an individual User’s actions (e.g., entering a comment or post), which makes the data accessible to any person visiting the Service.
Personal data will not be used for automated decision-making (profiling).
Personal data will not be sold to third parties.
Anonymous Data (non-personal data) Collected Automatically:
Anonymous data (non-personal data) may be transferred outside the European Union.
Anonymous data (non-personal data) will not be used for automated decision-making (profiling).
Anonymous data (non-personal data) will not be sold to third parties.
§11 Legal Basis for Processing Personal Data
The Service collects and processes Users’ data based on:
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation – GDPR)
Article 6(1)(a): the data subject has given consent to the processing of their personal data for one or more specific purposes.
Article 6(1)(b): processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract.
Article 6(1)(f): processing is necessary for the purposes of the legitimate interests pursued by the Administrator or by a third party.
The Act of 10 May 2018 on the Protection of Personal Data (Polish Journal of Laws 2018, item 1000).
The Act of 16 July 2004 on Telecommunications Law (Polish Journal of Laws 2004, No. 171, item 1800).
The Act of 4 February 1994 on Copyright and Related Rights (Polish Journal of Laws 1994, No. 24, item 83).
§12 Period of Processing Personal Data
Personal Data Provided Voluntarily by Users:
As a rule, the indicated personal data are stored only for the duration of the Service provided by the Administrator. They are deleted or anonymized within 30 days of the termination of the service (e.g., account deletion, unsubscribing from the Newsletter, etc.).
An exception is a situation that requires securing legitimate purposes for further processing of this data by the Administrator. In such cases, the Administrator will store the indicated data, upon the User’s request for deletion, for no longer than 3 years in cases of violations or suspected violations of the Service’s regulations by the User.
Anonymous Data (non-personal data) Collected Automatically:
Anonymous statistical data, which do not constitute personal data, are stored by the Administrator indefinitely for the purpose of maintaining Service statistics.
§13 User Rights Related to the Processing of Personal Data
The Service collects and processes Users’ data based on:
Right of Access to Personal Data
Users have the right to access their personal data, exercised upon request submitted to the Administrator.
Right to Rectification of Personal Data
Users have the right to request the Administrator to promptly rectify inaccurate personal data and/or complete incomplete personal data. This right is exercised upon request submitted to the Administrator.
Right to Erasure of Personal Data
Users have the right to request the Administrator to promptly delete their personal data. This right is exercised upon request submitted to the Administrator.
For user accounts, data deletion involves anonymization of data enabling User identification. The Administrator reserves the right to delay fulfilling a data deletion request to protect the Administrator’s legitimate interests (e.g., in cases where the User has violated the Terms of Service or the data was obtained through correspondence).
For the Newsletter service, the User can independently delete their personal data by using the link included in every email sent.
Right to Restriction of Personal Data Processing
Users have the right to restrict the processing of their personal data in situations outlined in Article 18 of the GDPR, including disputing the accuracy of the personal data. This right is exercised upon request submitted to the Administrator.
Right to Data Portability
Users have the right to receive their personal data from the Administrator in a structured, commonly used, machine-readable format. This right is exercised upon request submitted to the Administrator.
Right to Object to Personal Data Processing
Users have the right to object to the processing of their personal data in cases outlined in Article 21 of the GDPR. This right is exercised upon request submitted to the Administrator.
Right to File a Complaint
Users have the right to file a complaint with the supervisory authority responsible for personal data protection.
§14 Contact Information for the Administrator
The Administrator can be contacted via:
Postal Address: SOUL BODY HEALING at Oediamond Academy, 12 Fernmoor Drive, Irthlingborough, NN9 5TL
Email Address: team@izabelaskarzynska.com
Phone: +44 7592853258
§15 Service Requirements
Restricting the storage and access to Cookies on the User’s Device may cause certain functions of the Service to malfunction.
The Administrator assumes no liability for improperly functioning Service features in cases where the User restricts the ability to store and read Cookies.
§16 External Links
The Service—within articles, posts, entries, or User comments—may contain links to external websites not affiliated with the Service Owner. These links and the pages or files they direct to may pose risks to your Device or the security of your data. The Administrator assumes no responsibility for content located outside the Service.
§17 Changes to the Privacy Policy
The Administrator reserves the right to modify this Privacy Policy at any time without notifying Users regarding the handling of anonymous data or the use of Cookies.
The Administrator reserves the right to make changes to the Privacy Policy concerning the processing of Personal Data, of which Users with accounts or subscribed to the newsletter will be informed via email within 7 days of the amendments. Continued use of the services constitutes acknowledgment and acceptance of the changes to the Privacy Policy. If the User disagrees with the changes, they are required to delete their account or unsubscribe from the Newsletter service.
Changes to the Privacy Policy will be published on this subpage of the Service.
The changes come into effect upon publication.
Aug, 10, 2023