Privacy Policy

1) Introduction and Contact Details of the Controller

1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we inform you about the handling of your personal data when using our website. Personal data is any information that can be used to personally identify you.

1.2 The controller for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Alma Berchtold, home of life – Alma Berchtold, Agricolastraße 5, 80687 Munich, Germany, Tel: 0179 4710454, Email: hallo@homeoflife.de. The controller is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data.

2) Data Collection When Visiting Our Website

2.1 When you visit our website purely for informational purposes, i.e., if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website:

• Our visited website

• Date and time of access

• Amount of data sent in bytes

• Source/reference from which you reached the page

• Browser used

• Operating system used

• IP address used (possibly in anonymized form)

Processing is carried out pursuant to Art. 6(1)(f) GDPR based on our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used otherwise. However, we reserve the right to check the server log files retrospectively if there are specific indications of unlawful use.

2.2 This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries to the controller). You can recognize an encrypted connection by the string “https://” and the lock symbol in your browser’s address bar.

3) Hosting & Content Delivery Network

We use a provider to host our website and display its content. The provider operates its services, either directly or via selected subcontractors, exclusively on servers within the European Union.

All data collected on our website is processed on these servers.

We have concluded a data processing agreement with the provider to ensure the protection of our site visitors’ data and to prohibit unauthorized disclosure to third parties.

4) Cookies

To make visiting our website attractive and to enable the use of certain features, we use cookies — small text files stored on your device. Some cookies are automatically deleted after closing the browser (“session cookies”), while others remain on your device for a longer period and allow us to save page settings (“persistent cookies”). You can find the duration of storage in your browser’s cookie settings.

If personal data is also processed through cookies, this is done in accordance with Art. 6(1)(b) GDPR (performance of a contract), Art. 6(1)(a) GDPR (consent), or Art. 6(1)(f) GDPR (legitimate interest in optimal website functionality and a user-friendly experience).

You can configure your browser to notify you about cookie settings and decide individually on their acceptance or exclude cookies for certain cases or in general.

Please note that disabling cookies may limit the functionality of our website.

5) Contacting Us

When contacting us (e.g., via contact form or email), personal data is collected. The data collected in a contact form is visible on the form itself. This data is used exclusively for responding to your request and the technical administration associated with it.

The legal basis for processing this data is our legitimate interest in responding to your request (Art. 6(1)(f) GDPR). If your contact is aimed at concluding a contract, the legal basis is Art. 6(1)(b) GDPR.

Your data will be deleted once your inquiry has been fully resolved and provided that no statutory retention obligations exist.

6) Comment Function

When using the comment function on this website, your comment, the time of posting, and the name you provide will be saved and published on the site. Additionally, your IP address will be logged and stored for security reasons, e.g., in case of unlawful content.

We require your email address to contact you if a third party objects to your content as unlawful.

The legal basis for data storage is Art. 6(1)(b) and (f) GDPR. We reserve the right to delete comments if they are reported as unlawful by third parties.

7) Use of Customer Data for Direct Marketing

7.1 Newsletter Subscription

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only required information is your email address. Other details are voluntary and used to address you personally. We use the double opt-in process, meaning you will only receive emails if you confirm your subscription via a confirmation email.

By clicking the confirmation link, you consent to the use of your personal data (Art. 6(1)(a) GDPR). We store your IP address and the time of subscription to trace possible misuse.

You can unsubscribe at any time using the link in the newsletter or by contacting us. After unsubscribing, your data will be deleted unless you consent to further use or we are legally permitted to store it longer.

7.2 Brevo (formerly Sendinblue)

We send our newsletters using: Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin, Germany

Based on our legitimate interest (Art. 6(1)(f) GDPR), your data is shared with this provider for the purpose of sending newsletters on our behalf.

With your explicit consent (Art. 6(1)(a) GDPR), the provider also performs statistical analysis using web beacons/pixels to measure open rates and interactions. Device info (IP, browser, OS) is collected but not linked to other data.

You can revoke your consent to tracking at any time.

A data processing agreement has been concluded to protect your data.

8) Website Functionality

8.1 Vimeo

This website uses plugins from: Vimeo.com, Inc., 330 West 34th Street, 10th Floor, New York, NY 10001, USA

When you access a page with such a plugin, your browser connects directly to Vimeo’s servers, transmitting your IP address and other info. If you play a video, cookies may be used for analytics and abuse prevention. If you are logged into your Vimeo account, your interaction may be linked to it. Log out before playing to avoid this.

Processing only occurs with your consent (Art. 6(1)(a) GDPR), which can be revoked via the cookie consent tool. Vimeo is certified under the EU-US Data Privacy Framework.

8.2 YouTube

This site uses plugins from: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data may also be transmitted to: Google LLC, USA

Same conditions as Vimeo regarding cookies, login status, and consent apply. Google is also certified under the EU-US Data Privacy Framework.

8.3 Spotify

This website integrates music playback features from: Spotify AB, Birger Jarlsgatan 61, 113 56 Stockholm, Sweden

When visiting this page, a connection is established to Spotify’s servers even if you’re not logged in or don’t have an account. Your IP address may be transmitted but not used to personally identify you.

If logged in, playback interactions may be linked to your account. Log out to avoid this.

Data processing is based on our legitimate interest (Art. 6(1)(f) GDPR) in offering an engaging user experience.

You can prevent the loading of Spotify features using browser add-ons such as “NoScript” (https://noscript.net/).

9) Tools and Miscellaneous

Cookie Consent Tool

This website uses a cookie consent tool to collect valid user consents. The tool appears as an interactive interface when you visit the site and allows you to choose which cookies to allow.

Only consented cookies will be loaded. Technically necessary cookies are set to store preferences. Normally, no personal data is processed.

If personal data (e.g., IP address) is processed to save or log preferences, it is based on Art. 6(1)(f) GDPR (legitimate interest in lawful and user-specific cookie management).

Art. 6(1)(c) GDPR also applies as we are legally required to obtain consent for non-essential cookies.

If necessary, we have a data processing agreement with the provider.

10) Data Subject Rights

10.1 Under applicable data protection law, you have the following rights:

• Right to access (Art. 15 GDPR)

• Right to rectification (Art. 16 GDPR)

• Right to erasure (Art. 17 GDPR)

• Right to restriction of processing (Art. 18 GDPR)

• Right to notification (Art. 19 GDPR)

• Right to data portability (Art. 20 GDPR)

• Right to withdraw consent (Art. 7(3) GDPR)

• Right to lodge a complaint (Art. 77 GDPR)

10.2 RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA BASED ON OUR LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION.

IF YOU OBJECT, WE WILL STOP PROCESSING THE AFFECTED DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS OR THE PROCESSING SERVES TO ESTABLISH, EXERCISE, OR DEFEND LEGAL CLAIMS.

IF WE PROCESS YOUR DATA FOR DIRECT MARKETING, YOU MAY OBJECT AT ANY TIME.

IF YOU DO SO, WE WILL CEASE PROCESSING YOUR DATA FOR MARKETING PURPOSES.

 

11) Duration of Storage of Personal Data

The storage duration depends on the legal basis, the purpose of processing, and — where applicable — statutory retention periods.

•If processed based on consent (Art. 6(1)(a) GDPR), data is stored until consent is withdrawn.

•If retention periods apply under law (e.g., commercial/tax), data is deleted once the period ends, unless still needed.

•If processed under Art. 6(1)(f) GDPR, data is stored until you object, unless overriding legitimate grounds apply.

•For direct marketing, data is kept until you object per Art. 21(2) GDPR.

Unless otherwise specified, personal data is deleted when it is no longer needed for the original purpose.

Envelope Pinterest Spotify

based in Germany –
supporting healing journeys around the world

© All rights reserved. home of life 2025