Data protection information
General information
Why data protection and this information are important to us
Data protection is very important to us on this website and in our yoga studio. Above all, we want you as a user of our website, our FB page, on our Instagram pages or as a participant in one of our events or yoga classes to be well informed about how we handle your personal data. Only with the help of information and transparency on all pages can we avoid misunderstandings as best we can, establish real communication and, yes, also comply with the laws of the Digital Services Act ("DDG") and the EU General Data Protection Regulation ("GDPR"). In this data protection notice, we will endeavour to present our handling of data as accurately as possible and, above all, in such a way that it is as easy as possible for everyone to understand and comprehend. Where we use legal terms (e.g. "personal data"), these terms refer to the corresponding definitions in the GDPR.
We have implemented numerous technical and organisational measures in our company to ensure the protection of your data. However, data transmissions on the Internet in particular cannot always be 100% secure. You therefore have the option of providing us with data at any time by alternative means, e.g. by telephone or post. It is generally possible to use our website without transmitting personal data.
If you have any further questions, please feel free to contact us at any time.
Name and address of the controller
Peace Yoga Berlin GmbH - Moritz Ulrich and Niklas Noack Glogauer Strasse 19 10999 Berlin
E-Mail:info@peaceyoga.deFB - Pages: "Peace Yoga Berlin" and "Moritz Ulrich" Instagram: "PeaceYogaBerlin" and "downdogberlin" Website:www.peaceyoga.de
In the following, the words "we" and "us" refer to this company and its representatives.
Name and address of the data protection officer
We have an employee in our company who takes special care of data protection and is also available to answer your direct questions on this topic:
Data Protection Officer, Glogauer Strasse 19 10999 Berlin E-Mail: datenschutz@peaceyoga.de
Scope of the processing of personal data via the website
We process the personal data of our website users and participants to the extent necessary to provide a functional website and our content and services. Where necessary, we obtain declarations of consent. In all other cases, we process personal data on the basis of authorisation by statutory provisions (Art. 6 (1) GDPR).
When you visit our website, our web server temporarily records the domain name or IP address of the requesting computer as well as the access date, the client's file request (file name and URL), the HTTP response code, the number of bytes transferred during the connection and, if applicable, other technical information that we use for the technical processing of the use of the website (delivery of content, ensuring the functionality and security of the website, defence against cyber attacks and other misuse).
The temporary storage of the aforementioned information by the system for the duration of the session is necessary to enable the website to be delivered to your computer. Some of this data is also stored in the log files of our system. This data is not stored together with your IP address or other personal data.
This processing and storage is carried out to fulfil the existing user contract with you, insofar as it serves the technical processing of the use of the website (legal basis: Art. 6 para. 1 lit. b) GDPR) and otherwise to safeguard our legitimate interest in making our website as user-friendly, secure and attractive as possible and to promote the sale of our products and services (legal basis: Art. 6 para. 1 lit. f) GDPR). We assume that your interests do not conflict with this.
The following data is collected in detail for the operation of our website:
(1) Information about the browser type and version used (2) The user's operating system (3) The user's Internet service provider (4) The user's IP address (5) The date and time of access (6) Websites from which the user's system accesses our website (7) Websites that are accessed by the user's system directly via our website
The data is also stored in the log files of our system. This data is not stored together with other personal data of the user. This data is deleted after a maximum of 7 days.
In order to operate our website properly and display it correctly, it is necessary to temporarily store IP addresses, including in log files. If the data is stored in log files, this is the case after 7 days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or anonymised so that it is no longer possible to identify the calling client.
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection.
Integration of social media platforms such as Facebook and Instagram
Social media platforms are integrated into our website via a simple link. Data is only transferred to the following social media platforms when you click on the corresponding link. We have included links to the services of the following companies on our website:
Click on the icon Instagram establishes a direct connection to the services of Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. Please refer to the provider's privacy policy to find out what data is collected and how it is used: https://help.instagram.com/
Click on the icon Facebookestablishes a direct connection to the services of Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. Please refer to the provider's privacy policy to find out what data is collected and how it is used: facebook.com/help
Contact us via our contact form
You are welcome to use our contact form if you would like to get in touch with us. You can decide whether you would prefer to leave us your e-mail address or your telephone number so that we can contact you accordingly. We process your data in this context in accordance with Art. 6 para. 1 lit. b. for the execution of a contractual relationship or in the run-up to the initiation of a contractual relationship. The purpose of the processing is to contact you as you have requested.
Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 (1) a) of the GDPR serves as the legal basis. This is implemented in our company in particular when ordering a newsletter or with regard to the publication of photographs.
When processing personal data that is necessary for the fulfilment of a contract to which the data subject is a party, Art. 6 para. 1 b GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures. This applies if personal data is submitted to our studio for registration so that we can create and maintain a corresponding customer account. This legitimisation basis also applies if you register with us for a teacher training course or workshop or purchase other products or online products from our company.
Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 (1) (c) GDPR serves as the legal basis. This is the case, for example, if we need to store personal data for archiving and accounting purposes.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) d) GDPR serves as the legal basis. This is the case if a medical emergency arises in our studio in which we have to pass on personal data to medical authorities.
If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 (1) (f) GDPR serves as the legal basis for the processing. This is the case for the internal processing of personal data, e.g. for efficient billing.
Processing with the use of external service providers for order processing (Art 28 GDPR)
We use the following service providers to process personal data. We have concluded order processing contracts with service providers who are processors within the meaning of Art. 28 GDPR with the legally required content. We ensure that personal data is processed within Europe as far as possible. If personal data is also processed by Peace Yoga outside of Europe, we point out the corresponding processing below:
Eversports
To manage our bookings, we use the service provider eversports. 4, 1150 Vienna, Austria. When you visit a page linked to eversports (so-called IFrame), a connection to the eversports.de servers is established. The eversports.de server is informed which of our pages you have visited.
The use of eversports.de is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. We assume that your interests do not prevail here, as you also have an interest in a simple booking process with regard to our offer.
Further information on the handling of user data can be found in the eversports.de privacy policy at: https://www.eversports.de/h/privacy.
In order to create a user account, you must provide a user name, an e-mail address and a password of your choice in addition to the information required during a purchase.
specify. Please keep your username and password safe. We have no access to the password you have chosen. At your request, we will be happy to delete your user account within our online shop, which is provided by Eversports. Of course, you can also do this yourself at any time directly on the Eversprts website or within the Eversports app.
Member spot
We offer some workshops, online lessons and training courses via the Memberspot platform.
You can purchase your access to our Memberspot platform via Digistore24 (see below).
We have concluded an order processing contract in accordance with Art 28 GDPR with Memberspot GmbH, Rilkestr. 26, 71642 Ludwigsburg, Germany, which ensures that your personal data processed on our behalf by Memberspot when you register on our Memberspot site and use the products hosted there are processed in accordance with the applicable data protection regulations. This applies in any case to the email address with which you have verified yourself for our products on Memberspot. You also have the option on Memberspot to enter your real name or a pseudonym of your choice and to enter any other personal data about yourself in the community, such as your opinion or questions. You also have the option of uploading a profile picture on a voluntary basis. You can delete your real name, your pseudonym and your profile picture directly in your profile at any time.
If your membership of Memberspot ends, we will delete your data in accordance with the storage and archiving periods applicable to us.
MailerLite
We use MailerLite to automatically contact our customers via e-mail, insofar as we are authorised to do so by law. The address and company name of our contractual partner MailerLite is: UAB "MailerLite", J. Basanavičiaus 15, LT-03108 Vilnius, Lithuania. The email addresses of our newsletter recipients, as well as their other data described in this notice, are stored on MailerLite's servers in the EU.
In particular, we will be happy to send you a newsletter via MailerLite if you give us your express consent to do so.To subscribe to our newsletter, all you need to do is enter your e-mail address. Optionally, we ask you to enter your first name. This information is only used to personalise the newsletter and is not mandatory.
MailerLite uses this information to send and analyse the newsletter on our behalf. Furthermore, MailerLite may, according to its own information, use this data to optimise or improve its own services, e.g. to technically optimise the dispatch and presentation of the newsletter or for economic purposes in order to determine which countries the recipients come from. However, MailerLite does not use the data of our newsletter recipients to write to them itself or pass it on to third parties.
We trust in the reliability and IT and data security of MailerLite. MailerLite undertakes to comply with EU data protection regulations. Furthermore, we have concluded an order processing contract with the service provider. This is a contract in which MailerLite undertakes to protect the data of our users, to process it on our behalf in accordance with their data protection regulations and, in particular, not to pass it on to third parties. You can view MailerLite's privacy policy at view here.
Stripe
We use the payment service provider Stripe, 510 Townsend St., San Francisco, CA 94103, USA, to process digital payments. Further information on data protection via Strhttps://stripe.com/de/privacy.
Zapier
We use Zapier, a product from Hotmart B.V. (see address above), as a technical service provider that supports us with various technical requirements. Insofar as personal data can be viewed, we have concluded an order processing contract in accordance with Art. 28 GDPR. Further information on data protection at Zapier can be found here https://zapier.com/privacy.
Typeform
We create surveys with Typeform, Carrer de Bac de Roda, 163, Barcelona, CT, Spain.
Insofar as personal data is processed in this way, we have concluded an order processing contract. Further information on data protection at Typeform can be found here: https://admin.typeform.com/to/dwk6gt/
Manychat
We use the chatbot tool Manychat, a service of the service provider ManyChat, Inc, 2301 W Anderson Ln #102-105, Austin, TX 78757, USA. We use the tool in particular when you contact us via our profiles on Instagram. Your data is processed in order to respond to your enquiries, personalise the interaction with our chatbot and improve our services.
We process the following personal data when you use this tool:
- User profile information: Name, user name, profile picture and other public profile information, if you share this on Instagram on a voluntary basis.
- Message content that you send us via the chatbot,including text, images, and other media content.
- Usage data: Information about how you interact with the chatbot, including timestamps of your interactions.
- Contact information: E-mail address or telephone number, if you provide these on a voluntary basis as part of the chatbot communication.
- Device information Information about your device with which you use the chatbot
Your data is processed on the basis of Art. 6 para. 1 lit. f GDPR (legitimate interest) in order to offer you an efficient and user-friendly communication option. As you voluntarily share your personal data on Instagram, we assume that your interests do not conflict with this.
Manychat is certified according to the Data Privacy Framework, so that all data transfers to Manychat in the USA are assessed as appropriate on the basis of a decision by the EU Commission.
We trust in the reliability and IT and data security of ManyChat Inc. ManyChat Inc. is contractually obliged to comply with EU data protection regulations on the basis of an order processing contract. You can view the data protection provisions of ManyChat Inc. here. (https://manychat.com/legal/privacy)
Zoom
In some cases, we offer yoga classes online via livestream. For this offer we use the video conferencing tool ZOOM, an offer of Zoom Inc. 55 Almaden Boulevard, 95113 San Jose, USA. (www.zoom.us) After registering for livestream classes, you will receive a link that gives you direct access to the livestream. Please note that all participants in this one livestream yoga class will be able to see the name you have entered. You can change this at any time in the settings of the ZOOM app. If you decide to use your camera or microphone during the livestream yoga class, all participants will be able to see your video and hear you. Online livestream yoga classes are not recorded or saved.
We have concluded an order processing contract with Zoom that complies with the GDPR. Please note the additional data protection provisions of ZOOM, which you can view on their website.
ZETTLE by Paypal
If you purchase something in our boutique on site and pay for your purchase by card, we will process your payment via the payment service provider ZETTLE by Paypal, PayPal (Europe) S.à r.l. et Cie, S.C.A. (R.C.S. Luxembourg B 118 349from. ZETTLE by Paypalacts in this context as its own data controller within the meaning of data protection laws. You can view the data protection provisions of ZETTLE by Paypal here: https://www.zettle.com/de/rechtshinweise/datenschutzhinweise .
Note on the processing of personal data by Digistore24
Memberships for our digital platform on Memberspots are purchased via Digistore24, Digistore24 GmbH, St.-Godehard-Straße 32,
31139 Hildesheim, Germany. A contract is concluded exclusively with Digistore24. Digistore24 is solely responsible for the processing of personal data provided in Digistore24. If you purchase a membership for our Memberspot site via Digistore24, Digistore24 will send your e-mail address directly to Memberspot. Click here for Digistore24's privacy policy: https://www.digistore24.com/page/privacy/1/de
Use of Telegram with regard to individual offers
Our offer "Sanskrit Magic", and other offers where clearly indicated, is offered exclusively via the feed of the instant messaging service Telegram, a service of Telegram Messenger LLP, 71-75 Shelton Street, London, United Kingdom. Please note that you need an account with Telegram in order to receive the content of "Sanskrit Magic". Participation without an account is not possible. By setting up an account with Telegram, some of your personal data will also be transmitted to Telegram. Please note that this data is not transmitted to us. We do not receive any personal data from Telegram by playing the feed to you.
We are not responsible for data processing via Telegram and in particular do not have an order processing contract with Telegram. We currently use this service exclusively to provide this offer to you and reserve the right to use Telegram for other offers via Telegram.
We would like to point out that by using Telegram, personal data is processed and stored on Telegram's servers. These servers may be located anywhere in the world and therefore also in countries that do not have an adequate level of data protection compared to the EU. Data stored by Telegram in the cloud can be viewed by the company and possibly also by service providers that Telegram uses. The use of Telegram is generally regulated between you and Telegram and Telegram is fully responsible for the corresponding data processing.You can access Telegram's privacy policy here: https://telegram.org/privacy/de
Our legal basis for the use of Telegram is Article 6(1)(f) GDPR, as we have a legitimate interest in displaying our offer via a technically proficient feed that can reach many of our users. Since only users who use Telegram on the basis of their voluntary consent participate in our challenge via Telegram, we can assume that there are no overriding interests of our users that conflict with this.
Privacy policy for visitors to this website
Cookies
Our website only uses technically necessary cookies. Cookies are text files that are stored in or by the Internet browser on the user's computer system. When a user accesses a website, a cookie may be stored on the user's operating system.
We use cookies to make our website more user-friendly. We use the following technically necessary cookie, which is only implemented for the duration of the session:
nitroCachedPage1
Duration of storage: Session
Beyond this, no other cookies are set, in particular we do not track our users through cookies on our website.
Anonymised web tracking through Trackboxx
On our site we use the Web analysis service Trackboxx. We use it to statistically evaluate visitor access and analyse the use of our website. The data is collected anonymously for the aforementioned purpose and stored on a server in Germany and is therefore fully subject to the requirements of the GDPR.
In order to use Trackboxx, no cookies are set and no personal data is stored. Instead, your IP address is immediately anonymised using a non-traceable hash value and this anonymous user ID generated in this way is used for tracking as long as you are on our website. This user ID cannot be legally or technically assigned to a specific person. The code for generating the anonymous user IDs is changed daily. It is therefore not possible to "recognise" you when you visit our website again.
There is no cross-site tracking, linking of data with other sources or forwarding of information to third parties.
The legal basis for the processing of the IP address into an anonymous user ID is Art. 6, para. 1, lit. f, GDPR. Our legitimate interest lies in the needs-based design and optimisation of our website.
If you still do not want to help improve our site, you can control this at any time using the "Do-Not-Track" function in your browser.
Allow tracking
My visitor data flows into the web analysis.
Newsletter
The following information explains the content of our newsletter as well as the registration, dispatch and statistical evaluation procedure and your rights of objection. By subscribing to our newsletter, you agree to receive it and to the procedures described. We know that this is a lot of information, simply because you want to subscribe to our newsletter. However, the law currently provides for this, so we comply with it.
Content of the newsletter
We only send newsletters, e-mails and other electronic notifications with promotional information (hereinafter "newsletter") with your express and informed consent. In addition, our newsletters contain information about special price offers, our upcoming yoga events and yoga in general, interesting articles on the subject of yoga on our own or our friends' websites.
Double opt-in and logging
The registration for our newsletter takes place in a so-called double opt-in procedure. This means that after registering, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that no-one can register with other people's email addresses. Subscriptions to the newsletter are logged in order to be able to prove the registration process in accordance with legal requirements. This includes storing the time of registration and confirmation as well as the IP address. Changes to your data stored by MailerLite are also logged.
Statistical survey and analyses via newsletter
Our newsletters contain a so-called "web-beacon", i.e. a pixel-sized file that is retrieved from the ActiveCampaign server when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval, is initially collected. This information is used for the technical improvement of the services based on the technical data or the target groups and your reading behaviour based on their retrieval locations (which can be determined with the help of the IP address) or the access times.
The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients; however, it is neither our endeavour nor that of MailerLite to observe individual users. Rather, the analyses help us to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. By giving your consent to receive the newsletter, you also consent to the processing and use of this data.
Online access and data management
There are cases in which we direct newsletter recipients to the MailerLite website. For example, our newsletters contain a link that newsletter recipients can use to access them online (e.g. in the event of display problems in the email programme). Newsletter recipients can also correct their data, such as their email address, at a later date. MailerLite's privacy policy is also only available on their website. In this context, we would like to point out that cookies are used on MailerLite's websites and therefore personal data is processed by MailerLite, its partners and service providers used (e.g. Google Analytics). We have no influence on this data collection. Further information can be found in MailerLite's privacy policy. We would also like to draw your attention to the options for objecting to the collection of data for advertising purposes on the websites http://www.aboutads.info/choices/ and http://www.youronlinechoices.com/ (for the European region).
Cancellation/revocation
You can unsubscribe from our newsletter at any time by sending an email to datenschutz@peaceyoga.de, i.e. revoke your consent. Your consent to receiving the newsletter via MailerLite and the statistical analyses will then expire at the same time. Unfortunately, it is not possible to cancel the sending of the newsletter via MailerLite or the statistical analyses separately.
You will find a link to cancel/unsubscribe from the newsletter at the end of each newsletter.
What data is required when placing an order and thus concluding a contract?
In order to place an order with "Eversports" or to purchase access to one of our events, you are required to provide certain data. These include
E-mail address
Full name
Address
How long and where do we store this data and why?
In order to fulfil the contractual relationship within the meaning of Art. 6.1b GDPR, we store the data until the end or fulfilment of the contract and beyond that for accounting reasons for the time required by law.
When you purchase an event, course or workshop from "Eversports", your data is automatically entered into our Customer data processing software Eversportsto ensure that you can be granted access to the relevant event. You can view this data at any time, have it deleted if legally possible, or request it in a standard file format. We would like to point out that you can object to the use of your e-mail address for advertising purposes at any time without incurring any costs other than the transmission costs according to the basic rates.
How can you pay there? Where is the data transmitted to? The payment service providers (so-called clearing companies) currently commissioned by Eversports in our online shop are STRIPE (payment with VISA, Mastercard or American Express) as well as GooglePay, ApplePay and Klarna. Within the meaning of the GDPR, they are themselves "controllers" of the data you provide in the context of contract processing with us. You can find their data protection notices on their websites.
Privacy policy for visitors to our yoga studio
To whom do these provisions apply?
These special provisions apply to all natural persons who visit our premises at Glogauer Straße 19, 10999 Berlin.
Video recordings
We want to ensure your safety and the smooth running of our yoga studio with this video surveillance and explain briefly why and how exactly we do this.
Video surveillance is carried out in our premises in the entrance area and in the area of our boutique. The camera images are stored digitally on site for 72 hours, whereby we ensure that neither sound recordings are made nor other areas are filmed. Unfortunately, we have already had several thefts in the past, so we decided - ultimately for the protection of our customers - to install video surveillance.
The video camera thus serves to safeguard our domiciliary rights as well as to detect and prosecute criminal offences and to enforce possible civil law claims. The legal basis for this is § 4 para. 1 no. 2,3 BDSG-2017 in conjunction with Article 6 para. 1 lit. f) GDPR.
The recordings will only be analysed in the event of a suspected breach of domiciliary rights or suspicion of a criminal offence.
Recordings from video surveillance systems are regularly deleted after 3 days at the latest, unless the recordings indicate the suspicion of a criminal offence.
Video recordings are not transmitted to third countries.
Privacy policy for students of our yoga studio
When do these provisions apply?
If you take advantage of one of our offers in our premises at Glogauer Str. 19, 10999 Berlin or Eisenbahnstr. 5, 10997 Berlin. These offers include free yoga classes, workshops, concerts and other events, most of which are subject to a fee. To make this information easier to read, we have summarised all these offers under the heading of events.
What data do we store about you?
In order to attend events with us, you must have a user account created by us. To create this user account, you will fill out a form when you visit an event for the first time. We will store your data for the duration of your use of our services. To create a user account, it is necessary for you to share the following data with us:
Full name
Address
E - Mail address
We would like to point out that you can object to the use of your e-mail address for advertising purposes at any time without incurring any costs other than the transmission costs according to the basic rates.
Optionally, you can share the following data with us:
Telephone number
Recommendation
We store this data in the form you fill in and by entering it in our customer management software "Eversports", or in other programmes if this software is no longer available to us and we migrate the data to a new customer management software.
In order to improve our service and to inform you, for example, about the expiry of ticket packages or monthly contracts, we also store which events you have attended with us, when and how often. We do not pass this analysis data on to third parties and use it exclusively as part of our endeavours to provide you with an ever better offer. This data is also stored and, if necessary, analysed with the help of "Eversports". (Art. 6 para. 1 f) GDPR) We assume that your interests do not conflict with this.
Special features for the conclusion of monthly contracts
If you conclude a monthly contract with us, payment is made by SEPA direct debit. Your data like
IBAN (pseudonymised)
BIC
are thus additionally stored in "Eversports" and subsequently processed by a financial service provider commissioned by "Eversports".
After termination of your monthly contract, we will only store your data for as long as required by law.
Where do we store your data?
We store your data as part of a user account and on the basis of the conclusion of a contract for the fulfilment of which we are authorised in accordance with Art. 6 (1) b) GDPR. The data is stored in our customer data management software "Eversports". These are based in Austria, 1020 Vienna Jakov-Lind-Strasse 13 . You can view the general data protection provisions of Eversports here: https://www.eversports.at/h/privacy.You can also find more information on this above.
Do we also send you unsolicited emails?
Without your express consent (see "Newsletter" above), we will generally only send you transactional emails. These transactional emails include Purchase confirmations, invoices (only after you have requested them, of course) and payment reminders. Sending these emails is absolutely necessary for the smooth running of our company and direct, fast communication with you and is justified in accordance with Art. 6 Para. 1 b) GDPR. Of course, these emails are not regular and hopefully we will not need to send you any payment reminders.
We sometimes take the liberty of sending you notifications about your user account directly via Eversports (welcome e-mail, reminders to purchase new cards) as well as information about similar offers (in particular discounts and benefits). We would like to point out that you can object to this use of your e-mail address for advertising purposes at any time without incurring any costs other than the transmission costs according to the basic tariffs.
Furthermore, we will of course not send you any e-mails with information on similar offers if your contractual relationship with us has ended, you no longer have a user account with us or you no longer attend any of our events, or you have objected to the use of your e-mail addresses for advertising purposes.
When you fill out our registration form in the studio and create a personalised user account, you are welcome to tell us whether you
If you would like to receive our newsletter (all information on how we send it can be found you here)
and/or
prefer not to receive any further notifications about your user account.
Later you can contact us at any time, e.g. by e-mail to info@peaceyoga.de Let us know if you no longer wish to receive messages from us. You can also unsubscribe from these messages yourself in your Eversports profile. You can also revoke any consent you have given us at any time and object to the use of your data for advertising purposes at any time.
How long do we store your data?
For accounting reasons, we may be obliged to store pseudonymised data about purchases and payments made by you, as well as visits to our events, for the legally stipulated period. As a rule, this is 6 years, in some cases data is stored for up to 10 years.
How can you have your data changed?
You have the right to have incorrect data changed at any time. Simply send us an e-mail toinfo@peaceyoga.de and let us know which data you would like to change or add.
Processing of personal data by and onward processing by our partner companies Urban Sports Club and Wellpass
Urban Sports Club
If you are a member of the Urban Sports Club (Urban Sports GmbH
Michaelkirchstraße 20, 10179 Berlin, Germany), you can take part in our classes as part of your booked monthly quota. In this case, we will receive your first name and surname and the information as to which class you have booked into. We will then transfer this data to Eversports (see above). With regard to your membership of the Urban Sports Club, the data protection provisions of the Urban Sports Club apply.
EGYM Wellpass
If you are a member of EGYM Wellpass (EGYM Wellpass GmbH
Einsteinstraße 172, 81677 Munich), you can also take part in our classes. In this case, we will receive your first name and surname and the information about which class you have booked into. This data is automatically transferred to eversports by Wellpass. With regard to your EGYM Wellpass membership, the EGYM Wellpass data protection regulations apply.
Class Pass
If you are a member of Class Pass (ClassPass Europe B.V
Stadhouderskade 5-6, 1054 ES Amsterdam; Amsterdam, Section R, number 5443, Netherlands), you can also take part in our lessons. In this case, we will receive your first name and surname, an e-mail address created by Class Passand the information about which class you have booked into. This data is automatically transferred to eversports by Class Pass. With regard to your membership with Class Pass, the Class Pass privacy policy applies.
Your rights as a data subject
As a data subject, you have certain rights in relation to your personal data, which we are happy to explain below:
Right to information (Art. 15 GDPR) - Under the conditions set out in Art. 15 GDPR, you have the right to obtain from us confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data and certain information about its processing. Please note that this right is subject to certain legal restrictions (in particular according to § 34 BDSG).
You also have the opportunity to here independently log in to "Eversports" using the e-mail address you have provided, assign yourself a password and view your data and, in some cases, adjust and change it (e.g. your address, e-mail address, etc.)
Right of rectification (Art. 16 GDPR) - Under the conditions set out in Art. 16 GDPR, you have the right to obtain from us the rectification of inaccurate personal data and the completion of incomplete personal data concerning you.
Right to be forgotten (Art. 17 GDPR) - Under the conditions set out in Art. 17 GDPR, you have the right to obtain from us the erasure of certain personal data concerning you, e.g. data that are no longer necessary for legitimate purposes (e.g. establishment, exercise or defence of legal claims).
Right to restriction of processing (Art. 18 GDPR) - Under the conditions set out in Art. 18 GDPR, you have the right to obtain from us the restriction of processing of certain personal data, for example data that you claim is inaccurate.
Right to data portability (Art. 20 GDPR) - Under the conditions set out in Art. 20 GDPR, you have the right to transmit personal data concerning you, which are processed by automated means only on the basis of your consent or for the performance of a contract, to a third party in a machine-readable format or to require us to take steps at your request prior to entering into a contract.
Right of objection(Art. 21 para. 1 GDPR) - Under the conditions set out in Art. 21 GDPR, you have the right to object to certain processing of your personal data on grounds relating to your particular situation. In such a case, we cannot comply with your objection if there are compelling legitimate grounds for the processing which override your interests or if the processing is necessary for the establishment, exercise or defence of legal claims.
Right to object to direct advertising (Art. 21 para. 2 GDPR) - You can object to the further processing of your personal data for direct marketing purposes at any time, with the consequence that we will no longer process it for this purpose; this also applies to profiling insofar as it is associated with such direct marketing.
Automated decisions (Art. 22 GDPR) - Without your consent, we will not make any decisions that have a legal effect on you or significantly affect you in a similar way and that are based solely on automated processing (including profiling).
Consents- If you give your consent for processing, this is voluntary, unless we inform you otherwise in advance, and refusal of consent will not be sanctioned. You are entitled to withdraw your consent at any time. Such a revocation does not affect the legality of the processing carried out on the basis of the consent until the revocation. Processing on a legal basis other than your consent also remains unaffected by the revocation. In this respect, however, you can also exercise the aforementioned statutory rights (e.g. the right to object pursuant to section 6 et seq.). In particular, you can revoke any consent to the use of your email address or telephone number for direct marketing at any time and object to the further use of your email address or telephone number for this purpose at any time without incurring any costs other than the transmission costs of your provider according to the basic tariffs.
Right of appeal- You have the right to lodge a complaint with a supervisory authority. This may include the supervisory authority responsible for your place of residence or the supervisory authority generally responsible for us (Section 1.3.).
The data protection supervisory authority responsible for us is
Berlin Commissioner for Data Protection and Information Security
Address
Alt-Moabit 59-61
10555 Berlin
Germany
Contactability of the data protection supervisory authority
tel: +49 30 13889-0
Fax: +49 30 2155050
mailbox@datenschutz-berlin.de
If you wish to submit a complaint, you can use the complaint form available at https://kontakt.datenschutz-berlin.de l.
You can contact us in any form to exercise your rights, in particular to revoke any consent you may have given, including via the contact details provided in the legal notice. In order to exercise your rights, it may be necessary for you to identify yourself to us as the data subject.
Status of the privacy policy: May 2024. If you have any questions about data protection at Peace Yoga Berlin, please contact datenschutz@peaceyoga.de.
DE_DE
EN