Privacy Policy
Yoga Journaling (referred to as "we" or "Yoga Journaling") takes the protection of your personal data seriously. This Privacy Policy explains what personal information we collect when you use our platform yoga-journaling.com, how we use it, and what rights you have.
This policy follows the Swiss Federal Act on Data Protection (FADP) and — for users in the European Economic Area — the EU General Data Protection Regulation (GDPR).
1. Data Controller
c/o Panda und Pinguin GmbH
Neptunstrasse 20
8032 Zurich
Switzerland
Email: membership@yoga-journaling.com
2. What Data We Collect
2.1 Data You Provide to Us
- Account data: name, email address, password (stored encrypted), and optionally a profile picture or studio logo
- Payment data: we do not store your payment information ourselves; it is processed directly by our payment provider Stripe (see Section 4)
- Content data: yoga sequences, notes, calendar entries and other content you create on the platform
- Communications: if you contact us by email, we store your message in order to respond
2.2 Data Collected Automatically
- Server logs: IP address, browser type, operating system, time of access, pages visited — used solely for technical operation and security
- Cookies and similar technologies: for keeping you signed in (session cookies) and, where applicable, to remember your language preference
3. How We Use Your Data
- To provide and operate the platform, including your personal account
- To handle your subscription (Creator, Pro, Mentor) including payments, invoices and reminders
- To send transactional emails (confirmations, invoices, technical notices)
- To send our newsletter — only if you have actively opted in; you can unsubscribe at any time using the link in every email or by writing to us
- To improve and develop the platform
- To meet legal obligations (accounting, tax)
4. Third-Party Services and Data Processors
We use carefully selected service providers to operate the platform. Data processing agreements are in place with all of them where required by law:
- Hosting: Vercel Inc. (USA) — provides web server infrastructure
- Database: Supabase Inc. (USA) — stores account and content data
- Payment processing: Stripe Payments Europe Ltd. (Ireland) — processes credit card and SEPA payments
- Email delivery: Klaviyo Inc. (USA) — sends transactional and marketing emails
- File storage: Shopify CDN — hosts public PDF and image files (e.g. Flow of the Month downloads)
Where data is transferred to the United States, we rely on the EU Standard Contractual Clauses and (for certified US recipients) on the EU-U.S. Data Privacy Framework.
5. Data Retention
We store your data only for as long as necessary for the purposes set out above, or as required by law (for example, ten years for accounting records under Swiss commercial law). After you cancel your account, your content is deleted within 30 days; data we are legally required to retain remains stored until the end of the retention period.
6. Your Rights
You have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Delete your data (where no legal retention obligation applies)
- Restrict processing
- Receive your data in a structured, portable format
- Withdraw consent previously given, with effect for the future
- Lodge a complaint with the competent supervisory authority — in Switzerland, the Federal Data Protection and Information Commissioner (FDPIC); in the EU, your local data protection authority
To exercise any of these rights, please contact us at membership@yoga-journaling.com.
7. Data Security
We take appropriate technical and organisational measures to protect your data against unauthorised access, loss and tampering. These include encrypted transmission via HTTPS, encrypted password storage, regular backups and restricted access rights. Despite all due care, complete security on the internet cannot be guaranteed.
8. Changes to This Policy
We may update this Privacy Policy from time to time, for example when we add new features or when legal requirements change. The current version is always available on this page. We will notify you by email of any material changes.