EkhartYoga B.V., Joop Geesinkweg 901-999, Amsterdam, 1114 AB, Netherlands, operates an online yoga studio under the Internet address www.yogaeasy.com under the brand name “YogaEasy”, whose members can practice yoga with high-quality instruction videos, inform themselves about yoga in the magazine and exchange ideas in forums (hereinafter referred to as "YogaEasy)". We take the protection of your data very seriously. YogaEasy has set itself the goal of treating your data with the strictest confidentiality.
YogaEasy will not pass on your data to third parties unless this is necessary for the provision of the services you have requested, there is a legal obligation to do so or you have expressly requested that your data be passed on. Your data will be protected by YogaEasy against unauthorised access by third parties with the help of efficient technical means of protection.
The following provisions provide you with detailed information on the handling of your data when using YogaEasy.
The following data protection provisions inform you about the processing of personal data when you use our online yoga studio and generally when you visit our website www.yogaeasy.com. (If you use our YogaEasy app, separate data protection provisions apply, which you can access both in the product description of the respective app store and within the app).
1. Name and contact details of the controller
2. Collection and storage of personal data and the nature and purpose of their use
3. Cookies
4. Analysis and tracking tools
5. Use of Google Remarketing Services
6. Use of Facebook Pixel, Custom Audiences, Facebook Conversion and Insights
7. Social plug-ins
8. Integration of further services from third-party providers
9. Content and data protection on the pages of third-party providers
10. Additional information on the use of the YogaEasy app
11. Recipient of your data
12 Data erasure and storage duration
13. Rights of data subjects
14. Right of objection
15. Right to withdraw consent
16. Data security
17 Status and amendment of these data protection provisions
EkhartYoga B.V.
Joop Geesinkweg 901-999
Amsterdam, 1114 AB
Netherlands
Managing Directors: Audrey Wolfovski, Henrike Fröchling
Mail: support@yogaeasy.com
a) When visiting the website
When you visit our website www.yogaeasy.com, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is recorded without any action on your part and stored until it is automatically deleted after 14 days:
IP address and host name
Access time/timestamp
Browser/device type used by the visitor
Operating system used by the visitor
Content of the request (specific page)
Access status / http status code
Number of pages viewed
Last page opened before leaving the website´
We process the aforementioned data for the following purposes:
Ensuring a smooth connection to the website,
To ensure a comfortable use of our website,
Evaluation of system security and stability.
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. We do not use the data collected for the purpose of drawing conclusions about your person. This data is also not merged with other data. However, we reserve the right to check the log files retrospectively if we become aware of specific indications of unlawful use.
We also use cookies and analysis services when you visit our website. You can find more detailed explanations on this in sections 3 and 4 of this privacy policy.
b) Creating a data profile when you register for our services by providing your e-mail address.
When you register for our services via our website (this includes newsletter registration, registration for a free trial membership and registration with a paid membership), a data profile is automatically created for communication and personalisation of the user experience.
The service providers used in this context are our customer engagement tools CleverTap (Leanplum) and Zapier.
CleverTap (formerly Leanplum)
The services of “CleverTap", operated by CleverTap Inc. (European headquarters: Weesperstraat 61, #421, Amsterdam. 1018VNNetherlands) are used to personalise communication. As a result, your email address and other data collected when you use our website (see below) will also be processed and stored on CleverTap servers in the USA.
https://www.dataprivacyframework.gov
You can find CleverTaps privacy policy here:
https://clevertap.com/privacy-policy/
CleverTap helps us to build long-term and sustainable customer relationships, in particular through the use of personalised content and targeted customer contact via our app and website, through the use of emails, in-app messages and push notifications. On our behalf, the service analyses the use of our website by our users. In this way, we try to understand how our users interact with the YogaEasy website. CleverTapL also enables us to analyse and improve our digital advertising campaigns. For this purpose, the following data, among other things, is transmitted to CleverTapL from the device you are using Information about your browser and operating system, as well as cookies stored on your browser.
The legal basis for data processing is the fulfilment of our contract with you pursuant to Art. 6 para. 1 lit. b and our legitimate interest pursuant to Art. 6 para. 1 lit. f.The legal basis according to the Telecommunications Telemedia Data Protection Act with regard to the storage and processing of information is § 25 para. 2 no. 2 TTDSG: The storage is absolutely necessary so that the provider of a telemedia service requested by the user.
We use the CleverTapL service to tailor and optimise the service you have booked to your needs.
Zapier
We use Zapier, operated by Zapier Inc., 548 Market St #62411, San Francisco, CA 94104, USA, to automate workflows and data transfers between our systems.
In this context, personal data such as your name, email address, and communication content may be processed and transferred between integrated systems.
The processing is carried out for the purpose of automating communication processes and ensuring efficient internal workflows.
The legal basis is Art. 6 para. 1 lit. b GDPR (performance of a contract), Art. 6 para. 1, lit. a GDPR (consent), and Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient process management), as applicable.
c) When registering for our free trial membership (registration)
If you would like to register for our free trial membership, all we need from you is a valid email address and a password of your choice. The information you provide when registering is required in order to grant you free access to the content of our online yoga studio for a limited period of time, usually 7 days. The legal basis for the processing of your personal data is Art. 6 para. 1 sentence 1 lit. b GDPR. After your trial membership expires, the email address you used will continue to be stored for a certain period of time. This storage takes place from the point of view of our legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, for the purpose of preventing abusive multiple registrations for our free trial membership.
d) When concluding a paid membership
If you decide for a paid membership with us, we need information such as your location to execute the contract in order to determine the correct VAT rate for the country in which you are located for the digital service to be purchased. We collect your location data by means of geolocalization. The collection and processing of this data is based on Art. 6 para. 1 lit. c GDPR (compliance with a legal obligation), as we are obliged under EU regulations to calculate and pay VAT according to your location, and on Art. 6 para. 1 lit. f GDPR (legitimate interest), as we have a legitimate interest in properly fulfilling our tax obligations and ensuring that the correct tax rates are applied to our customers. The location data is only collected for this purpose and is not stored for longer than is necessary to fulfill our tax obligations.
If you decide to pay for a membership with us, we also require additional information such as your name, address and payment details, depending on the payment method you choose (e.g. SEPA data for direct debit) in order to fulfil the contract with you. The following additional data may be required for the necessary payment processing: For the payment of a yoga pass by credit card, YogaEasy requires your full name, your e-mail address and your credit card details. The credit card number will not be stored by YogaEasy and will be forwarded directly to the payment service provider (see below). When paying for a Yoga Pass via direct debit, YogaEasy collects your full name, your address, your e-mail address, your current account details and, for tax purposes, your country of origin. When paying via Paypal, we do not store any payment data. The processing of this personal data is based on Art. 6 para. 1 sentence 1 lit. b GDPR.
Inclusion of payment service providers
Payment services
We integrate payment services from third-party companies on our website. When you make a purchase from us, your payment details (e.g. name, payment amount, account details, credit card number) are processed by the payment service provider for the purpose of payment processing. The respective contractual and data protection provisions of the respective providers apply to these transactions. The payment service providers are used on the basis of Art. 6 para. 1 lit. b GDPR (contract processing) and in the interest of a smooth, convenient and secure payment process (Art. 6 para. 1 lit. f GDPR). Insofar as your consent is requested for certain actions, Art. 6 para. 1 lit. a GDPR is the legal basis for data processing; consent can be revoked at any time for the future.
We use the following payment services / payment service providers on this website:
PayPal
The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as "PayPal").
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find details here: https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full.
Details can be found in PayPal's privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.
Stripe
The provider for customers within the EU is Stripe Payments Europe, Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland (hereinafter referred to as "Stripe").
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://stripe.com/de/privacy and https://stripe.com/de/guides/general-data-protection-regulation.
You can find details on this in Stripe's privacy policy at the following link: https://stripe.com/de/privacy.
ChargeBee
We use the ChargeBee payment system for our website. The service provider is the American company Chargebee Inc, 340 S Lemon Avenue, #1537, Walnut, California 91789, USA.
ChargeBee also processes your data in the USA, among other places. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This may entail various risks for the legality and security of data processing.
ChargeBee uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 GDPR) as the basis for data processing with recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or data transfer there. Standard Contractual Clauses (SCCs) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there.
Through these clauses, ChargeBee undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among others: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find more information on the standard contractual clauses in ChargeBee's Data Processing Addendum at https://www.chargebee.com/privacy/dpa/.
You can find more information about the data processed through the use of ChargeBee in the privacy policy at https://www.chargebee.com/privacy/.
Payone
If you choose to pay for your membership by credit card or PayPal, we will use external service providers (either BS PAYONE GmbH or PayPal (Europe) S.à.r.l. et Cie, S.C.A.) to process the payment. The legal basis for this is Art. 6 para. 1 lit. b GDPR.
Your data, such as your name and address, account or credit card numbers, check digits, passwords, TANs, etc., will be processed to the extent necessary to complete the payment. However, the payment data entered will only be processed by the payment service providers and stored by them. This means that we do not receive any account or credit card-related information, but only information regarding confirmation or rejection of the payment. As part of a possible identity and credit check, the payment service providers may also pass on data to credit agencies. For more detailed information, please refer to the general terms and conditions and data protection provisions of the respective payment service provider, which are available on their websites/applications as part of the transactions.
e) Voluntary provision of further personal data
As part of your membership with us, you also have the opportunity to provide additional information about yourself, which can help us in particular to personalise our offer for you. This information includes in particular your age, gender, previous yoga experience and preferred yoga styles, as well as your motivation for participating in our programme.
Based on your information, we can customise our offer, i.e. in particular the videos shown to you on your start page, to make them more interesting for you. For example, we will then suggest videos that best suit your chosen yoga style and the sporting constitution you have specified, or we will not show you any videos that are recognisably uninteresting or unsuitable for you. Your details may also be used by us for the purposes of statistical analysis and to improve the services we offer our customers; your data will only be processed in anonymised form.
The legal basis for the processing of your voluntarily provided data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, insofar as your voluntary information concerns data relating to your health.
You can revoke your consent at any time with effect for the future by informing us of this by sending an email to datenschutz@yogaeasy.de (please specify which of your data the revocation relates to!). However, you can also simply delete (or change) your voluntary personal data yourself in your profile area (at www.yogaeasy.com/mein-konto); further processing for the above-mentioned purposes is then excluded.
f) Data processing within the scope of the user account
As a registered member, you automatically have your own user account in which you can manage your personal details. Once you have logged in with us, this is available to you at any time in your user account. The data in your user account cannot be viewed by third parties.
The personal data stored here includes all the information you provided when booking your membership (see sections 2 b), c), d) and e) above). You have the option of correcting all of this information here (such as your address, the payment method you have chosen or the yoga styles you are interested in) or, in the case of voluntarily provided information, to simply delete it.
For your tax purposes, you will also find your previous invoices under the tab “Purchases & Payments” in your user account. In your personal account you can also create playlists, find your library and you will find a list of the videos you have recently watched (“Watch history”).
The legal basis for the storage of the data in your user account is, insofar as the data is required for the performance of the contract with you, Art. 6 para. 1 lit. b GDPR; insofar as it is not required for this purpose (this applies to your voluntarily provided information), the processing is based on your consent, Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by informing us of this by email to datenschutz@yogaeasy.de. You can also simply delete your (voluntary) personal data within your user account. Further processing is then excluded.
g) Marketing to existing customers
We may also process the data you provide when you sign up for membership with us in order to inform you about other YogaEasy offers. The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in customer loyalty and the promotion of our business activities by providing product information based on your previous orders. You can object to the sending of such information e-mails at any time without incurring any costs other than the transmission costs according to the basic tariffs. To do so, simply send an email to support@yogaeasy.com or click on the unsubscribe link at the end of each of our information emails.
h) For enquiries to our support team
When having a question, you can either search our help center (https://help.streaming-subscription.com/en/) or you can contact us via our contact form.
If you contact us via the contact form, your request will be processed as follows, based on the sample setting:
For anything related to our video platform, you are directed to the service provider Uscreen. For anything payment or company related, you are directed to YogaEasy support.
aa) If you have questions about content, we, YogaEasy, will process your request.
You are welcome to contact our support team with your concerns about using our services, in particular by sending an email to support@yogaeasy.com or using the contact form on https://studio.yogaeasy.com/pages/faqs-contact.
If you contact us by email, the transmission of your data is encrypted using the Secure Socket Layer (SSL), a security standard that is supported by most internet browsers and mail servers.
When you contact us via our contact form, we process the personal data you provide, in particular, name, email address, account and/or contract data, content of your request.
The processing is carried out exclusively for the purpose of handling your inquiry and providing customer support. The legal basis is Art. 6(1)(b) GDPR (performance of a contract) and Art. 6(1)(f) GDPR (legitimate interest in appropriate customer communication).
Support requests and the related data are generally stored for the duration of the contractual relationship or for possible follow-up questions (maximum 2 years) and thereafter only to the extent that statutory retention obligations exist or the data is required for the establishment, exercise, or defense of legal claims.
bb) We use the service provider Uscreen for the technical provision of our video platform. In the context of technical support requests, it may be necessary to forward your request to Uscreen. Uscreen starts with the chatbot called ‘Fin’. If that does not resolve the issue, you are in email contact with a member of the Uscreen Member Support team until resolution.
The following personal data may be transferred: email address, account and/or contract data, information about the device used and platform usage, description of the technical issue.
The transfer is carried out for the purpose of error analysis, technical assistance, and ensuring the proper functioning of the platform.
The legal basis for processing is Art. 6(1)(b) GDPR (performance of a contract) and Art. 6(1)(f) GDPR (legitimate interest in efficient and professional handling of technical support cases).
A data processing agreement pursuant to Art. 28 GDPR has been concluded with Uscreen. A transfer of personal data to the United States cannot be excluded. The transfer is carried out on the basis of appropriate safeguards pursuant to Art. 46 GDPR, in particular by concluding Standard Contractual Clauses (SCCs) and, where applicable, certification under the EU-U.S. Data Privacy Framework).
cc) To support the customer service of the service provider Uscreen, Uscreen uses an AI-powered chatbot called ‘Fin’
The processing of user input is automated. Chat histories are not manually reviewed. The content entered when using the chatbot is not stored on a permanent basis and is not used for training the system.
Personal data may be transferred to the United States. A data processing agreement has been concluded with the provider. The transfer is carried out on the basis of appropriate safeguards pursuant to Art. 46 GDPR, in particular Standard Contractual Clauses (SCCs) and, where applicable, certification under the EU-U.S. Data Privacy Framework).
The legal basis for processing is Art. 6(1)(f) GDPR (legitimate interest in efficient and continuously available customer communication) and, where required, Art. 6(1)(a) GDPR (consent).
i) When registering for our newsletter
If you register for our free newsletter, we will use your email address to send it to you. We will then provide you with regular updates on new yoga videos, programmes, articles and special offers from YogaEasy.
We use the so-called double opt-in procedure to subscribe to our newsletter. This means that after you have registered, we will send you an email to the email address you have provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 1 month, your information will be blocked and automatically deleted. The provision of further data in addition to your e-mail address is voluntary and is used to be able to address you personally.
After your confirmation, we store your e-mail address for the purpose of sending you the newsletter. In addition, we store the IP addresses you use and the times of registration and confirmation in order to be able to prove your registration and, if necessary, to clarify any possible misuse of your personal data. The legal basis is your express consent (Art. 6 para. 1 sentence 1 lit. a GDPR).
You can revoke your consent at any time with effect for the future or object to receiving further newsletters, for example via a link at the end of each newsletter. Alternatively, you can also send your cancellation request to support@yogaeasy.com by email at any time.
j) When you use our newsletter - Notes on the use of CleverTap
Statistical survey and evaluation of user behaviour
When you open our newsletter or interact with it, your behaviour is evaluated as follows: The emails sent via CleverTap contain so-called web beacons or tracking pixels. These are one-pixel image files that are stored on the Leanplum server and are retrieved from there when you open our newsletter. As part of this retrieval, the data mentioned in section 2 lit. a (technical information, such as information about the browser and your system, as well as your IP address and time of retrieval) is first collected and used for the technical improvement of the service (the delivery of our newsletter).
The information obtained as part of the statistical survey (e.g. whether or when a newsletter was opened and which links contained therein were clicked) can be assigned to the individual recipients of the newsletter for technical reasons. However, neither we nor Leanplum pursue the goal of monitoring individual newsletter recipients. Rather, the analyses help us to recognise the reading habits of our users in general and to adapt our content to them or to send different content according to the interests of different user groups.
We would like to point out that CleverTap states that it may also use the above-mentioned data for the purpose of improving its own services and for its own commercial purposes. However, Leanplum will not use the data to write to you personally and will not pass your data on to third parties.
Data processing when accessing the CleverTap website
In some cases, you may be redirected to the CleverTap website when using our newsletter, for example if you click on the link (contained in every newsletter) to access the newsletter online, or if you subsequently wish to correct your email address. CleverTaps privacy policy is also only available on their website.
In this context, we would like to point out that cookies are used on the CleverTap websites, which lead to the processing of personal data by CleverTap, its partners and the service providers used (such as Google Analytics). We have no influence on this data processing. If necessary, please refer to CleverTaps privacy policy (see above).
Legal basis and cancellation options
The legal basis for data processing when using CleverTap is your consent, Art. 6 para. 1 sentence 1 lit. a GDPR.
You can object to receiving our newsletter, for example by clicking on the corresponding unsubscribe link at the end of each newsletter. You will not incur any costs for unsubscribing from the newsletter (see § 7 UWG (3) 4.). Alternatively, you can unsubscribe from the newsletter at any time by sending an email to support@yogaeasy.com or unsubscribe from the newsletter directly in your customer account.
We would like to point out that tracking by the web beacon is also not possible if you have deactivated the display of images in your e-mail programme. In this case, the newsletter will not be displayed in full and you may not be able to use all the functions. However, allowing the images to be displayed manually would again lead to the tracking described above.
k) When using the videos
Your use of the videos is technically recorded and analysed by the service provider Uscreen i. In addition to the log data caused by accessing the respective video in accordance with section 2. a), we collect the following data: the watch progress/duration and the video engagement metrics as your user ID and the respective video ID. This makes it possible, for example, for us to restart a video that you have not watched in full from the point up to which you had already watched it the next time you access it. It also allows us to recommend other videos that you might be particularly interested in (for example, because you seem to particularly like a certain yoga teacher or you have often practised certain yoga styles or yoga for certain areas of the body). The above data processing is therefore necessary in order to make our online yoga programme as simple and effective for you as you may expect it to be. The legal basis for this data processing is therefore Art. 6 para. 1 lit. b GDPR.
l) In your evaluation of videos
You can mark a video as a "favourite". If you also comment on a video, your comment will be visible (see also the following section "When using the comment function"). Marking a video will be used to improve the personal recommendations made to you for further videos and, if applicable, to include the video in the "Favourites" sections of your personal profile.
The legal basis for the above data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in the continuous improvement of our offer, in particular in increasing the accuracy of personalised recommendations for our users.
m) When using the comment function
Part of our online offer is also the possibility to comment on our videos and the posts in our blog. However, this function is reserved exclusively for our registered members. When a comment is submitted, the comment is accordingly attributed to the respective member and the user name is displayed together with the time the comment was submitted.
Furthermore, when a comment is submitted, the IP address of the commenter is stored for a period of seven days so that, if necessary, the author of an inappropriate or illegal comment (for which we as the operator of the website can be held responsible) can be identified.
The legal basis for the aforementioned data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interests lie in the continuous improvement of our offer, in particular in making it easy to find videos that are suitable for the respective user and to exchange information about the videos viewed with us or other users, as well as in the prevention and, if necessary, prosecution of illegal comments.
The comments remain stored permanently - or until the member concerned objects at any time. If you wish to object, please contact datenschutz@yogaeasy.de.
n) In our competitions
If you decide to take part in competitions organised by us, we will generally ask you to provide us with your name and email address so that we can inform you if you win and to ensure that each participant only takes part in the competition once. For some competitions, further information may be required in individual cases (e.g. age etc.). Data provided for a competition will only ever be used to run the competition and will only be stored for as long as is necessary to run the competition. The legal basis for the processing of your personal data in the context of competition entries is your consent, Art. 6 para. 1 sentence 1 lit. a GDPR. Further details can be found in the respective information directly in the competition.
General information
We use cookies and other similar technologies (hereinafter collectively referred to as "cookies") on our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware. Cookies contain characteristic character strings that enable the browser to be uniquely identified when the website is called up again. However, this does not mean that we gain direct knowledge of your identity.
The use of cookies serves to
enable the provision of our online services in the first place
find out how our online offering is generally used in order to optimise the user experience
provide you with personalised functions and content, as well as to
to optimise our advertising and marketing activities, in particular to be able to place targeted advertising
Types and activation/deactivation of cookies
The cookies used can be divided into the groups explained in more detail below. Apart from the so-called "functional" cookies that are technically necessary for the provision of our website, you can activate or deactivate cookies as you wish. To do this, please use our cookie settings area. There you will also find a list of all the cookies we use in detail.
(i) Technically necessary ("functional") cookies:
Some cookies are necessary to ensure some of the basic functions of our website. They are therefore stored automatically when you visit our website and cannot be deactivated. These cookies save your preferences when you use our website, such as your personal cookie settings. They are also used to distribute the utilisation of our servers and thus keep our website available, as well as for security purposes.
The cookies used for communication and optimisation of the user experience (Leanplum and Mixpanel) only become active when you log in, in contrast to the cookies mentioned above.
(ii) Analysis cookies:
We use analysis cookies so that we can constantly improve our website technically and in terms of content. We use these cookies to collect data about how YogaEasy visitors use our website. This includes information on the most frequently visited pages, the most popular yoga videos and navigation behaviour. We use analytics cookies to create anonymised usage statistics about our website and videos. If you do not allow these cookies, we will unfortunately not be able to incorporate your behaviour into the optimisation of our offer.
(iii) Marketing cookies
Marketing cookies are placed on our website by selected marketing partners and social media. These third-party providers act as intermediaries to show you our content, news and offers on their channels. These third-party providers also use their cookies to collect data via our website in order to compile anonymised statistics on our behalf. Cookies are also set by social media services so that you can share our content with your yoga-interested friends and networks. These cookies are able to track your browsing behaviour across other websites and build a profile of your interests. This may affect the content and messages you see on other websites. If you do not allow these cookies, you will not be able to share YogaEasy content with others via these third-party services.
(iv) Communication & personalisation cookies
Communication & personalisation cookies help us to communicate better with our users. No communication tools are currently in use.
You can also preset your browser so that no cookies or only certain types of cookies are stored on your computer or a message always appears before a new cookie is created. Cookies that have already been saved can also be deleted at any time via the browser settings. We would like to point out that the complete deactivation of cookies may mean that you will not be able to use all the functions of our online offer.
Further information can also be found in the explanations of the individual technologies used (see sections 4-7).
(v) Cookiebot (Consent Management)
We use Cookiebot, provided by Usercentrics A/S, Havnegade 39, 1058 Copenhagen, Denmark, to manage user consents for cookies and tracking technologies.
Cookiebot stores your consent status and preferences to ensure compliance with legal obligations. In this context, the following data may be processed: IP address (in anonymized form), consent status, browser information, date and time of consent.
The processing is carried out for the purpose of fulfilling our legal obligations under data protection law.
The legal basis is Art. 6 para. 1 lit. c GDPR (legal obligation) and Art. 6 para 1 lit. f GDPR (legitimate interest in legally compliant consent management).
Data is stored for as long as required to demonstrate compliance with legal obligations.
Legal basis
When operating technically necessary ("functional") cookies for the provision of our offer, the data processing carried out by these cookies is necessary to safeguard our legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
Data processing by other cookies (analysis, personalisation and marketing cookies, see also sections 4-7 below) is based on the consent you have given for this, Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future in our cookie settings.
With the measures described below, which are used by us, we want to ensure a needs-based design and the continuous optimisation of our offer.
The specific data processing purposes and data categories can be found in the information on the respective tools. All of the following measures are carried out on the basis of your previously granted consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating the respective measures in the cookie settings area.
a) Google Analytics
This website uses Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheater Parkway, Mountainview, California 94043, USA ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, your IP address will first be truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to analyse your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage.
The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
Irrespective of the use of the above-mentioned cookie settings, you can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not (also) be able to use all functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=de
This website uses Google Analytics with the extension "_anonymiseIp()". This means that IP addresses are further processed in abbreviated form, so that they cannot be linked to individuals. If the data collected about you is personally identifiable, it is immediately excluded and the personal data is deleted immediately. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Data Privacy Framework,
https://www.dataprivacyframework.gov
Further information on data protection in connection with Google Analytics can be found in the Google Analytics help centre:
https://support.google.com/analytics/answer/6004245?hl=de
b) Google Tag Manager
We use Google Tag Manager, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager is a tag management system that allows us to manage website tags via an interface. The tool itself does not store personal data and does not set cookies. It triggers other tags which may collect personal data. Google Tag Manager does not access this data.
The legal basis for the use of Google Tag Manager is Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient management and integration of website tools). Where consent is required for the triggered tools, the processing is based on Art. 6 para.1 lit. a GDPR (consent).
a) Google Adwords Conversion
We use the services of Google Adwords (from the provider Google LLC, 1600 Amphitheater Parkway, Mountainview, California 94043, USA ("Google")) to draw attention to our offers on external websites with the help of advertising material (so-called Google Adwords). We can determine how successful the individual advertising measures are in relation to the advertising campaign data. We are interested in showing you adverts that are relevant to you, making our website more interesting for you and achieving a fair calculation of advertising costs.
These adverts are delivered by Google via so-called "ad servers". For this purpose, we use ad server cookies, through which certain parameters for measuring success, such as the display of adverts or clicks by users, can be measured. If you reach our website via a Google advert and you have consented to the corresponding use of marketing cookies by us, Google Adwords will store a cookie on your PC. These cookies generally lose their validity after 30 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie.
These cookies enable Google to recognise your internet browser. If a user visits certain pages of an Adwords customer's website and the cookie stored on their computer has not yet expired, Google and the customer can recognise that the user clicked on the ad and was redirected to this page. A different cookie is assigned to each Adwords customer. Cookies can therefore not be tracked via the websites of Adwords customers. We ourselves do not collect and process any personal data in the aforementioned advertising measures. We only receive statistical analyses from Google. These analyses enable us to recognise which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material; in particular, we cannot identify users on the basis of this information.
b) Google Remarketing
In addition to Adwords Conversion, we use the Google Remarketing application. Through this application, adverts from our company can be displayed to you after and as a result of your visit to our website when you continue to use the internet. Provided you have given your prior consent, this is done by means of cookies stored in your browser, which are used by Google to record and evaluate your user behaviour when you visit various websites. This enables Google to recognise your previous visit to our website. According to its own statements, Google does not merge the data collected in the context of remarketing with your personal data, which may be stored by Google. In particular, according to Google, pseudonymisation is used in remarketing.
c) Processing of your data by Google
Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of the tools and therefore inform you according to our level of knowledge: By integrating the tools described above, Google receives the information that you have accessed the corresponding part of our website or clicked on an advert from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider will find out your IP address and store it.
d) Legal basis for the processing of your data / withdrawal of consent
The legal basis for the processing of your personal data through the use of the tools described above is your previously granted consent, Art. 6 para. 1 sentence 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating the respective measures in the cookie settings area.
Further information on data protection at Google can be found at: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at http://www.networkadvertising.org/.
Google has submitted to the EU-US Data Privacy Framework, https://www.dataprivacyframework.gov
e) Prevention of tracking (alternatives)
You can also prevent participation in the aforementioned tracking procedures in the following ways: 1. by setting your browser software accordingly, in particular by suppressing third-party cookies so that you do not receive any ads from third-party providers; 2. by deactivating cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com", https://www.google.de/settings/ads, whereby this setting will be deleted if you delete your cookies; 3. by deactivating the interest-based ads of the providers that are part of the "About Ads" self-regulation campaign via the link http://www.aboutads.info/choices, whereby this setting will be deleted if you delete your cookies; 4. by permanent deactivation in your browsers Firefox, Internet Explorer or Google Chrome under the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all the functions of this website to their full extent.
a) Facebook pixel, custom audiences, Facebook conversion
General information
On our website, we use the "Facebook pixel" of the social network Facebook (operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook")). If personal data is nevertheless transferred to Facebook servers in the USA, we would like to point out that Facebook has submitted to the EU-US Data Privacy Framework and thus offers a guarantee of compliance with European data protection law.
The use of the Facebook pixel makes it possible for adverts placed by us on Facebook to be targeted only to those Facebook users who have already been to our website (where the pixel was set) or to whom Facebook (based on the data collected by Facebook about these users) assigns certain characteristics that match those characteristics that we have reported to Facebook as relevant for the display of our adverts (so-called "custom audiences").
In addition, the Facebook pixel enables us to track the effectiveness of our Facebook adverts for statistical and market research purposes (so-called "conversion"), as it allows us to see if a user has also reached our website after clicking on one of our Facebook adverts.
If you are a member of Facebook and have allowed Facebook to do so via the privacy settings of your account, Facebook will also link the information collected about your visit to our website to your member account and use it for the targeted display of Facebook adverts. For us, however, the data collected remains anonymous, i.e. we cannot draw any conclusions about the identity of the user.
Legal basis / Revocation of consent
The legal basis for the processing of your personal data described above is your previously granted consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating the respective measures in the cookie settings area.
Information on data processing by Facebook can be found in the Facebook data policy at www.facebook.com/about/privacy. You can find more detailed information about the Facebook pixel and how it works at: https://www.facebook.com/business/help/651294705016616.
Prevention of tracking (alternatives)
As a member of Facebook, you can use the following link to object to data collection via the Facebook pixel or to make settings for the types of adverts you accept within Facebook: www.facebook.com/settings?tab=ads. The settings are platform-independent, i.e. they are adopted for all computers or mobile devices.
If you are not a Facebook member, you can prevent data processing by Facebook by activating the deactivation switch for the provider "Facebook" on the YourOnlineChoices website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/de/praferenzmanagement.
b) Insights
You can also find us with our own fan page on Facebook (https://www.facebook.com/yogaeasy). For this fan page, Facebook provides us with so-called "insights" about its users. This is aggregated data, i.e. statistical analyses of the use of our fan page. In this way, we can obtain information about the retrieval of individual contents of our fan page or the interaction with you. The underlying data processing is also carried out using personal data. However, it is not possible for us to draw conclusions about specific individuals (and their behaviour on our fan page) from the aggregated data transmitted to us by Facebook. The processing of your personal data is based on our legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR) in providing a website that is attractive to users and thus ultimately promotes our business interests.
We are jointly responsible with Facebook for data processing within the scope of our fan page in accordance with data protection law. We have concluded an agreement with Facebook that describes this responsibility in more detail (at https://www.facebook.com/legal/terms/page_controller_addendum). You can therefore contact both us and Facebook directly to process enquiries regarding your rights as a data subject, although asserting them against Facebook is much more effective due to its technical capabilities. Further information on the processing of personal data in the context of the provision of "Insights" and on exercising your rights as a data subject can be found at https://www.facebook.com/legal/terms/information_about_page_insights_data.
With your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR, we use so-called social plug-ins of the social networks Facebook and Pinterest on our website in order to make our offer better known and more interesting for users. Our data processing towards you is limited to the fact that by integrating the plug-in, we initiate the collection of data about you and its transmission to the respective operator of the plug-in (specifically, this is initially your IP and the other technical data that the server of the respective operator receives from you solely through your access to our site, see section 2 a.). Only in this respect are we also responsible to you under data protection law. You can revoke your consent to the use of social plug-ins at any time with effect for the future by deactivating the respective measures in the cookie settings area.
Responsibility for data protection compliance in other respects must be guaranteed by the respective provider of the plug-ins. You can visually recognise the provider of the plug-in by the use of its logo (often the initial letter in stylised form) or other markings on the respective button (e.g. "Like" for the Facebook Like button or "Remember me" for Pinterest).
When you access a web page on our website that contains such a plug-in activated on the basis of your consent, your browser establishes a direct connection with the plug-in provider's servers. The content of the plug-in is transmitted directly to your browser by the provider and integrated into the website. By integrating the plug-ins, the provider of the plug-in receives the information that you have accessed the corresponding page of our website. If you are logged in as a user of the respective provider, the provider can assign the visit to your user account.
By activating the marked plug-in, the plug-in provider receives information that you have accessed our website, and the data listed under point 2 a) of this declaration will be transmitted. For users in the EU (including the Netherlands), personal data is processed by the plug-in provider in accordance with the GDPR. This may include your IP address and interaction data. Data may be transferred outside the EU under GDPR safeguards; processing is governed by the provider’s privacy policy.
We have no influence on the data collected and data processing procedures, nor are we aware of the full scope of data collection, the purposes of processing or the storage periods. We also have no information on the deletion of the data collected by the plug-in provider.
The respective plug-in provider stores the data collected about you as user profiles and uses these for the purposes of advertising, market research and/or customising its website. Such an evaluation is carried out in particular (even for users who are not logged in) to display customised advertising and to inform other users of the social network about your activities on our website.
Data is transmitted regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected by us will be assigned directly to your existing account with the plug-in provider. If you click the plug-in button and, for example, link the page, the plug-in provider will also save this information in your user account and share it publicly with your contacts. If you do not want providers of social media plug-ins to assign the data collected via our website directly to your profile in the respective service, you must log out of the respective service before giving your consent to use the plug-ins.
Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the data protection declarations of these providers provided below. There you will also find further information on your rights in this regard and setting options to protect your privacy.
Addresses of the respective plug-in providers and URL with their data protection notices:
Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
http://www.facebook.com/policy.php;
Further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http://www.facebook.com/about/privacy/your-info#everyoneinfo.
Facebook Inc. (California, USA) has submitted to the EU-US Data Privacy Framework, which ensures compliance with the level of data protection applicable in the EU even in the event of any transfer of personal data to the USA.
https://www.dataprivacyframework.gov
Pinterest, Inc, 651 Brannan Street, San Francisco, CA 94103, USA
https://policy.pinterest.com/de/privacy-policy.
a) General
We use additional services from third-party providers within our website in order to make the content and functions provided by these third-party providers available to you. These may, for example, enable the integration of image or sound material or, for example, increase the security and user-friendliness of our website. Details of the individual services currently used can be found below.
The delivery of these services (i.e. the display in our online offer) technically requires that the respective third-party providers receive your IP address. Insofar as the integration of the following services is necessary to enable us to display essential content from our online yoga studio as part of your membership, the associated data processing is carried out to fulfil the contract concluded with you and thus on the basis of Art. 6 para. 1 lit. b GDPR. In addition, the data processing described above (and explained in more detail below) is carried out on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR. These interests include the analysis, optimisation (also in terms of user-friendliness) and economic operation of our online offering. Insofar as your consent is obtained in advance for individual data processing operations, the legal basis for the respective data processing is Art. 6 para. 1 lit. a GDPR.
b) Integration of Videos via Uscreen
We have integrated the SaaS platform Uscreen on our website to display and stream video content. Uscreen is a platform for hosting, managing, and distributing video content and related services. The use of Uscreen enables us to make our yoga videos available to you via our online yoga studio and to manage access within the framework of our subscription services. The operating company is Uscreen, Inc., 1201 Wilson Boulevard, 27th Floor, Arlington, VA 22209, USA.
In the context of providing and streaming video content, Uscreen may process personal data required for technical delivery, security, and usage analysis. This may include, in particular:
IP address
Date and time of access (timestamp)
Requested URL
Browser type and version (user agent)
Device information
Account and usage data
Statistical data relating to video consumption
Uscreen may use cookies or similar technologies to enable video playback, ensure platform security, and analyse the use of audiovisual content.
The processing is carried out for the purpose of providing the contractually agreed services and ensuring the technical functionality and security of the platform.
The legal basis for this processing is Art. 6 para. 1 lit. b GDPR (performance of a contract) and Art. 6 para.1 lit. f GDPR (legitimate interest in the secure and efficient provision and optimisation of our video services).
We have concluded a data processing agreement with Uscreen pursuant to Art. 28 GDPR. As Uscreen, Inc. is based in the United States, personal data may be transferred to the USA. Such transfer is carried out on the basis of appropriate safeguards pursuant to Art. 46 GDPR, in particular by concluding EU Standard Contractual Clauses (SCCs).
Further information on data processing by Uscreen can be found in Uscreen’s privacy policy at: https://www.uscreen.tv/privacy-policy.
c) Integration of audio content via SoundCloud
We use the so-called SoundCloud widget of the provider SoundCloud (SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin, Germany) for the integration of audio material.
With this widget, our podcasts, which are stored on SoundCloud, can be played directly on our website. SoundCloud measures the use of the respective podcasts by the users of our online offering and processes this in pseudonymised form for statistical and business purposes. Cookies are also used to create pseudonymous user profiles, for example to display interest-based adverts. For users who are members of Soundcloud, Soundcloud can assign the information about the use of the widgets, such as playing a track or clicking the "Like" button, directly to their profiles.
The aforementioned data processing is based on your consent, Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future in our cookie settings area.
Further information on data processing by SoundCloud can be found at https://soundcloud.com/pages/privacy.
d) OneTrust
We use a software solution from the provider OneTrust, LLC (with shared headquarters in: Dixon House, 1 Lloyd's Avenue, London, EC3N 3DQ, United Kingdom and: 1200 Abernathy Road, Atlanta, GA 30328, USA), with the help of which we can obtain and document the consent of our users to the use of cookies or other tracking technologies. For this purpose of documentation and so that a user does not have to select their chosen settings again each time they visit our website, OneTrust sets a cookie in which the selected cookie settings of the respective user are stored. This enables us to prevent cookies from being set in the user's browser only if the user has previously given their consent. The use of the OneTrust cookie is absolutely necessary for the above-mentioned purposes and thus serves both to fulfil legal requirements and to simplify the use of our website. This also constitutes our legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR, which serves as the legal basis for our use of OneTrust. OneTrust is also certified under the EU_US Data Privacy Shield Framework and thus offers a guarantee of compliance with European data protection law, even in the case of data processing outside the European Union (https://www.dataprivacyframework.gov)
e) Zendesk
We use the support widget from Zendesk, a customer service platform from Zendesk Inc, 989 Market Street #300, San Francisco, CA 94102, to process customer enquiries. For this purpose, necessary data such as surname, first name, postal address, telephone number and email address are collected via our website in order to be able to answer your questions.
Further information on data processing by Zendesk can be found in Zendesk's privacy policy at http://www.zendesk.com/ company/privacy.
If you contact us by e-mail or via a form, we will only use the personal data you provide to process the specific enquiry. The data provided will be treated confidentially. The data provided and the message history with our Service Desk will be stored for follow-up questions and subsequent contact. The legal basis for this is an order processing contract with Zendesk in accordance with Art. 28 GDPR and the EU standard contractual clauses concluded with Zendesk.
f) Intercom
We use the support widget provided by Intercom, a customer messaging platform operated by Intercom, Inc., 55 2nd Street, 4th Floor, San Francisco, CA 94105, USA to process customer enquiries (e.g. technical enquiries).
For this purpose, necessary data such as first name, last name, email address, telephone number (not mandatory), and the content of your request may be collected via our website in order to respond to your enquiry.
Further information on data processing by Intercom can be found in Intercom’s privacy policy at: https://www.intercom.com/legal/privacy.
If you contact us by email or via a form, we will use the personal data you provide solely for the purpose of processing your specific enquiry. The data provided will be treated confidentially. The information you provide and the message history with our service team may be stored for the purpose of handling follow-up questions and subsequent communication.
g) Unbounce
We use Unbounce, operated by Unbounce Marketing Solutions Inc., 400–401 West Georgia Street, Vancouver, BC V6B 5A1, Canada, to display pop-up messages.
In this context, personal data such as IP address, device information, and interaction data may be processed. If you enter data into a form displayed via Unbounce, the data you provide (e.g. name, email address) will be processed for the specified purpose.
The processing is carried out for marketing, lead generation, and optimization of our online offering.
The legal basis is Art. 6 para. 1 lit. a GDPR (consent), where required, and Art. 6 para. 1 lit. f GDPR (legitimate interest in marketing and optimization of our services).
On the online platforms of some third-party providers (Face
book, Pinterest, Instagram, Soundcloud or YouTube) there are YogaEasy groups or profiles whose users have the opportunity to publish their own content there. We expressly refer to the terms of use applicable to the respective third-party providers, in particular the corresponding data protection regulations. We are not responsible for the content published by the users on these forums and in particular do not adopt it as our own.
On our website you will also find corresponding links to our channels or profiles on the respective online platforms of the third-party providers (recognisable by the respective, greyed-out logo of the third-party provider). These are not so-called social plug-ins, but simple links. Your visit to our website alone does not result in any data exchange with the websites of these third-party providers (see our information on the social plug-ins used). This is only the case if you decide to access the corresponding service of the third-party provider by clicking on one of the symbols. For information on the processing of your personal data that takes place there, please refer to the data protection declarations of the respective provider.
In addition to our online offering, we provide you with a mobile app that you can download to your mobile device. Separate data protection provisions apply to the use of this app, which you can view in the respective app stores and within the app.
We only transfer your data to third parties if this is permitted by law, if you have given your consent or if the transfer is necessary to fulfil our business purposes.
For example, we transfer personal data to third parties in the context of making a payment (payment service providers), to fulfil the contract concluded with you (providers who enable us to provide our online services), or to support marketing measures (e.g. newsletter mailing service providers). Furthermore, we may transfer personal data to public bodies and institutions (tax offices, authorities, customs offices) if there is a legal or regulatory obligation to do so, or to legal advisors and debt collection agencies for the purpose of enforcing contractual claims.
Details about recipients or categories of recipients of your data can also be found within these data protection provisions as part of our explanations of the individual processing situations.
We will delete your personal data as soon as the purpose of storage no longer applies or you revoke your previously granted consent to storage and the deletion does not conflict with any statutory retention obligations. If your data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. This means that the data will be blocked and not processed for other purposes, e.g. if it must be retained for commercial or tax law reasons.
If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:
to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of appeal, the origin of your data if it was not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information on its details;
in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us;
to demand the erasure of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the fulfilment of a legal obligation or for the establishment, exercise or defence of legal claims;
in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it for the assertion, exercise or defence of legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR;
in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller;
in accordance with Art. 7 para. 3 GDPR, to revoke your consent once given to us at any time. As a result, we may no longer continue the data processing that was based on this consent in the future;
to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.
In accordance with Art. 21 para. 1 GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6 para. 1 lit. f GDPR; this also applies to profiling based on this provision. When exercising this objection, you must provide us with your personal reasons why we should not process your personal data. We will examine your objection and either discontinue or adapt the data processing or show you compelling reasons on our part worthy of protection on the basis of which we may continue the processing.
If personal data relating to you is processed on the basis of Art. 6 para. 1 lit. f GDPR for the purpose of direct marketing, you have the right to object at any time to the processing of personal data relating to you for the purpose of such marketing without giving reasons in accordance with Art. 21 para. 2 GDPR; this also applies to profiling insofar as it is associated with such direct marketing. If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.
To exercise your right to object, simply send an e-mail to datenschutz@yogaeasy.de.
Specific technical options for exercising your right of cancellation or objection may exist for individual types of data processing. We may have already informed you of this in the explanation of the respective data processing measures.
You have the right to revoke a declaration of consent under data protection law at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
We also use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.
To prevent unauthorised access by third parties, all data that you enter during the registration process on our website is transmitted in encrypted form via an SSL server.
This Privacy Policy is currently valid and was last updated on March 2026.
The further development of our website and changes to legal or regulatory requirements may necessitate changes to this privacy policy. You can find the current data protection provisions at any time on our website at www.yogaeasy.com/privacy.
(Updated March 2026)