Privacy Policy

Effective date: 1. of May 2026

Data Controller:
Aneta Staltari

Website: https://monrosecodes.com
Email: andaria@monrosecodes.com

1. Purpose of Personal Data Processing

The main purpose of processing personal data is to provide services and communicate with clients.

The Controller is engaged in the following activities in particular:

  • providing services in the field of personal development and healing,
  • individual consultations and client support,
  • selling online programs and educational materials,
  • organizing workshops and other activities.

Specific purposes of processing include:

  • delivery of ordered services and contract fulfilment,
  • communication with clients before and after service provision,
  • handling inquiries submitted via email or contact forms,
  • sending newsletters with updates and offers,
  • client record-keeping for organisational and accounting purposes.

2. Legal Basis for Processing

Personal data is processed on the following legal bases:

  • performance of a contract – provision of ordered services or products,
  • legitimate interest of the Controller – communication with clients and informing about related services,
  • consent of the data subject – primarily for newsletter marketing.

Consent is always voluntary and may be withdrawn at any time via the unsubscribe link in emails or by contacting the Controller directly.

3. Types of Data Processed

The following categories of personal data may be processed:

  • contact details (name, email, and optionally phone number),
  • order and service-related information,
  • communication between the client and the Controller,
  • any additional data voluntarily provided by the client.

Without providing necessary data, it is not possible to conclude a contractual relationship or deliver services.

4. Data Collection

Personal data is collected directly from clients through orders, forms, and email communication.

5. Processing Methods

Data is processed both manually and automatically using standard software tools (email systems, booking and invoicing tools, and mailing services).

Automated decision-making and profiling
The Controller does not carry out automated individual decision-making or profiling.

6. Data Recipients

Personal data may be shared with service providers ensuring technical operation, such as:

  • email marketing provider (MailerLite),
  • payment gateway (Stripe),
  • hosting and web service providers,
  • accounting services.

Personal data is never sold to third parties.

7. Data Storage Location

Data is primarily processed within the EU/EEA. If data is transferred outside this area, appropriate safeguards are ensured in accordance with applicable legislation.

8. Data Retention Period

Personal data is stored:

  • for the duration of the contractual relationship,
  • after its termination for the period necessary to protect the Controller’s legal rights (typically the limitation period),
  • for newsletters until consent is withdrawn.

9. Your Rights

You have the right to:

  • request information about data processing,
  • request correction of inaccurate data,
  • request deletion of personal data,
  • request restriction of processing,
  • object to processing,
  • request data portability,
  • file a complaint with the Czech Data Protection Authority (www.uoou.cz).

You may unsubscribe from newsletters at any time using the link in each email.

10. Data Security

The Controller has implemented appropriate technical and organizational measures, including:

  • password-protected access to systems and devices,
  • use of verified service providers,
  • restricted access to personal data.

Contact

For any questions regarding personal data protection, please contact:
andaria@monrosecodes.com