Privacy Policy | Shamanic Worlds

This privacy policy applies to the website shamanic-worlds.com, which is hosted as a static website on Vercel. Services that are only active in certain areas of the website are marked accordingly.

1. Data Protection at a Glance

General Information

The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data with which you can be personally identified. Detailed information can be found in the privacy policy below.

Data Collection on this Website

Data processing on this website is carried out by the website operators. Their contact details can be found in the section "Information about the responsible party".

Your data is collected, on the one hand, by you communicating it to us (e.g. via an opt-in form or a contact request). Other data is collected automatically or after your consent when you visit the website by our IT systems – above all technical data such as browser, operating system or time of page access.

You have the right at any time to receive free information about the origin, recipients and purpose of your stored personal data, as well as the right to correction or deletion. For this purpose you can contact us at any time.

2. Hosting and Content Delivery Networks

Static Website (Vercel)

This website is hosted by Vercel Inc., 340 Pine Street, San Francisco, CA 94107, USA. When our pages are accessed, technically necessary connection data (including IP address, browser type, time) is transmitted to Vercel. Details: https://vercel.com/legal/privacy-policy.

Domain Provision (ALL-INKL.COM)

Our domain is provided by ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68, 02742 Friedersdorf. Details: https://all-inkl.com/datenschutzinformationen/.

The use of all hosting services is based on Art. 6 paragraph 1 lit. f GDPR. We have a legitimate interest in the reliable presentation of our website. We have concluded a data processing agreement (DPA / German: AVV) with all hosting providers.

3. General Information and Mandatory Information

Information about the Responsible Party

Dr. Mark Hosak
Neckargasse 1, 69412 Eberbach
Phone: 0152 29566933
E-mail: info@shamanic-worlds.com

Eileen Wiesmann
Neckargasse 1, 69412 Eberbach
E-mail: eileen@shamanic-worlds.com

The responsible party is the natural person who, alone or jointly with others, decides on the purposes and means of processing personal data.

Storage Duration

Unless a more specific storage period has been mentioned within this privacy policy, your personal data will remain with us until the purpose for the data processing no longer applies. If you assert a justified request for deletion or revoke a consent, your data will be deleted, unless there are other legally permissible grounds for storage.

General Information on the Legal Bases

Insofar as you have consented to the data processing, we process your data on the basis of Art. 6 paragraph 1 lit. a GDPR. If your data is required for the fulfilment of a contract, processing is carried out on the basis of Art. 6 paragraph 1 lit. b GDPR. Further processing may take place on the basis of Art. 6 paragraph 1 lit. c or f GDPR.

Note on Data Transfer to the USA and Other Third Countries

Among other things, we use tools from companies based in the USA. When these tools are active, your personal data may be transferred to and processed in these third countries. We point out that no level of data protection comparable to that of the EU can be guaranteed in these countries.

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your express consent. You can revoke a consent already granted at any time. The lawfulness of the data processing that took place up to the revocation remains unaffected by the revocation.

Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)

IF THE DATA PROCESSING IS CARRIED OUT ON THE BASIS OF ART. 6 PARAGRAPH 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT AT ANY TIME, FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY.

Right of Appeal to the Competent Supervisory Authority

In the event of violations of the GDPR, those affected have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation.

Information, Deletion and Correction

You have the right at any time within the framework of the applicable legal provisions to free information about your stored personal data, as well as a right to correction or deletion of this data. For this purpose you can contact us at any time.

Right to Restriction of Processing

You have the right to demand the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful, or you need the data to assert legal claims.

SSL or TLS Encryption

For security reasons, this website uses SSL or TLS encryption. You can recognise an encrypted connection by the "https://" prefix and the lock symbol in your browser bar.

Objection to Advertising E-mails

The use of contact data published within the framework of the imprint obligation for the purpose of sending unsolicited advertising is hereby objected to. The operators expressly reserve the right to take legal action in the event of unsolicited transmission of advertising information.

4. Data Collection on this Website

Cookies

Our website uses cookies. Cookies are small data packets that are stored on your end device. Session cookies are automatically deleted at the end of your visit, permanent cookies remain on your end device until they are deleted. Technically necessary cookies are stored on the basis of Art. 6 paragraph 1 lit. f GDPR. For all other cookies, we obtain your consent.

Consent Management

[CCM19-Script-wird-nach-eRecht24-API-Key-Einrichtung-ergänzt]

Once consent management is active, our website will use CCM19 to obtain your consent for the storage of certain cookies on your end device or for the use of certain technologies, and to document this in a privacy-compliant manner. The provider of this technology is Papoo Software & Media GmbH, Auguststr. 4, 53229 Bonn (hereinafter "CCM19"). When you enter our website, a connection is established to CCM19's servers in order to obtain your consents and other declarations regarding the use of cookies. CCM19 then stores a cookie in your browser so that the consents you have given or their revocation can be assigned to you. The data recorded in this way is stored until you request us to delete it, you delete the CCM19 cookie yourself, or the purpose of the data storage no longer applies. Mandatory legal retention periods remain unaffected. The use of CCM19 takes place in order to obtain the legally required consents for the use of cookies. The legal basis for this is Art. 6 paragraph 1 sentence 1 lit. c GDPR. We have concluded a data processing agreement (DPA / AVV) with CCM19.

Server Log Files

The provider of the pages automatically collects and stores information in server log files: browser type and version, operating system used, referrer URL, host name of the accessing computer, time of the server request, IP address. A merging of this data with other data sources is not carried out. The collection takes place on the basis of Art. 6 paragraph 1 lit. f GDPR.

Inquiry by E-mail or Telephone

If you contact us by e-mail or telephone, your inquiry, including all personal data resulting therefrom, will be stored with us for the purpose of processing. We will not pass on this data without your consent. Legal basis: Art. 6 paragraph 1 lit. b or f GDPR.

Communication via WhatsApp

For communication we use, among other things, the instant messaging service WhatsApp. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Communication takes place via end-to-end encryption. However, WhatsApp receives access to metadata and shares data with its parent company Meta in the USA. We use WhatsApp in the "WhatsApp Business" variant without automatic synchronisation with the address book. Legal basis: Art. 6 paragraph 1 lit. f GDPR. Details: https://www.whatsapp.com/legal/#privacy-policy.

TidyCal (Appointment Booking)

For appointment bookings, we use TidyCal by AppSumo LLC, 1305 E 6th St, Austin, Texas 78702, USA. For the purpose of booking an appointment, you enter the requested data and the desired appointment. The appointment data is stored on TidyCal's servers. Legal basis: Art. 6 paragraph 1 lit. f GDPR. Details: https://tidycal.com/privacy. The data transfer to the USA is based on standard contractual clauses: https://tidycal.com/dpa.

5. Newsletter

Brevo (formerly Sendinblue)

This website uses Brevo for sending newsletters and e-mail sequences. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany. The data you enter for the purpose of receiving the newsletter is stored on the servers of Sendinblue GmbH in Germany.

With the help of Brevo, we are able to analyse our newsletter campaigns – e.g. whether a message was opened and which links were clicked. The data processing is carried out on the basis of your consent (Art. 6 paragraph 1 lit. a GDPR). You can revoke this consent at any time.

The data you have provided will be stored until you unsubscribe and will be deleted from the newsletter distribution list after unsubscribing. After you unsubscribe, your e-mail address may be stored on a blacklist if this is necessary to prevent future mailings (legitimate interest within the meaning of Art. 6 paragraph 1 lit. f GDPR). We have concluded a data processing agreement (DPA / AVV) with Brevo. Details: https://www.brevo.com/de/datenschutz-uebersicht/.

Newsletter Mailing to Existing Customers

If you book services with us and provide your e-mail address, this e-mail address may be used for sending newsletters, provided we inform you of this in advance. In such a case, only direct advertising for our own similar services will be sent via the newsletter. The mailing can be cancelled at any time. Legal basis: Art. 6 paragraph 1 lit. f GDPR in conjunction with § 7 paragraph 3 UWG (German Act Against Unfair Competition).

6. Plugins and Tools

YouTube with Extended Data Protection

This website embeds videos from YouTube. The operator is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. We use YouTube in extended data protection mode, which according to YouTube does not store any information about visitors before they start the video. As soon as you start a YouTube video, a connection to YouTube servers is established. Legal basis: Art. 6 paragraph 1 lit. f or lit. a GDPR. Details: https://policies.google.com/privacy.

Google Fonts

This page uses Google Fonts for the uniform display of font types, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When the page is accessed, your browser establishes a connection to Google's servers. Legal basis: Art. 6 paragraph 1 lit. f GDPR. Details: https://policies.google.com/privacy.

7. eCommerce and Payment Providers

Elopage / Ablefy

For the sale of services we use Elopage / Ablefy by ablefy GmbH, Kurfürstendamm 208, 10719 Berlin. When you click on one of our products, you will be redirected to the sales page on Elopage/Ablefy. The entire contract processing and payment processing takes place via Elopage/Ablefy. We have concluded a data processing agreement (DPA / AVV) with Ablefy. Details: https://myablefy.com/privacy. Legal basis: Art. 6 paragraph 1 lit. f GDPR.

Processing of Customer and Contract Data

We collect, process and use personal customer and contract data for the establishment and design of our contractual relationships. The customer data collected will be deleted after completion of the order or termination of the business relationship and expiry of the statutory retention periods. Legal basis: Art. 6 paragraph 1 lit. b GDPR.

8. Community

Skool Community

We use the Skool platform for our community. The provider is Skool Inc., 548 Market St PMB 54079, San Francisco, California 94104-5401, USA. When you join the community, you register directly with Skool. Details: https://www.skool.com/privacy.

9. Video Conferencing

Google Meet

For communication with our customers we use Google Meet by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When using it, personal data (e-mail address, duration of the conference, IP address, etc.) is processed by Google. Legal basis: Art. 6 paragraph 1 lit. b and f GDPR. Details: https://policies.google.com/privacy.

10. Podcast Embedding

Podigee

Our podcast episodes are delivered via Podigee. The provider is Podigee GmbH, Schlesische Straße 20, 10997 Berlin. When a podcast is played via the embedded player, a connection to Podigee's servers is established. Legal basis: Art. 6 paragraph 1 lit. f GDPR. Details: https://www.podigee.com/de/about/privacy/.

11. External Links

Our website contains links to external third-party websites over whose content we have no influence. The respective operators are responsible for the privacy provisions of these external pages. We recommend that you read the privacy policies of the linked platforms.