Privacy Policy

Last updated: November 25, 2025

This Privacy Policy explains how Embodied Wisdom Coaching Oy (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit or interact with lauravanhapelto.com (the “Website”), purchase services or digital products, or communicate with us.

We are committed to protecting your privacy and handling your personal information with care, in accordance with the EU General Data Protection Regulation (GDPR) and applicable Finnish laws.

1. Data Controller

Embodied Wisdom Coaching Oy
Business ID (Y-tunnus): 3506890-2
Contact: laura@vanhapelto.com

2. What Personal Data We Collect

We collect personal data in the following categories:

A. Data you provide directly

When you fill in a form, book a session, join the newsletter, create an account, or make a purchase, we may collect:

• First and last name

• Email address

• Phone number (optional)

• Billing address

• Payment-related details (never stored by us—see section 6)

• Any information you share in a contact form or email

B. Automatically collected data (Device Information)

When you visit the Website, we automatically collect:

• IP address

• Web browser type and version

• Time zone

• Device type

• Pages viewed

• Referring websites

• Interaction patterns on the Site

• Cookies (see section 7)

This information is used for analytics, performance, security, and improving the website.

C. Data related to purchases and bookings

When you purchase coaching services, workshops, or digital products, we process:

• Order details

• Transaction date

• Purchased products/services

• Payment status

This is necessary to fulfill your order and maintain records.

3. How We Use Your Personal Data

We use your personal data for the following purposes:

• To deliver coaching sessions, courses, workshops, and digital products

• To process payments and send order confirmations

• To manage your account (if applicable)

• To send newsletters or updates (only with your explicit consent)

• To respond to inquiries or customer support requests

• To analyze website behavior and improve user experience

• To comply with legal obligations (financial records, tax laws, etc.)

We process only the data necessary for each purpose.

4. Legal Basis for Processing (GDPR)

We process your personal data based on:

• Consent — when you subscribe to newsletters or accept cookies

• Contract — when you purchase services, digital products, or engage in coaching

• Legitimate interest — for analytics, website functioning, and communication

• Legal obligation — for bookkeeping, taxation, and regulatory compliance

5. How Long We Keep Your Data

We retain personal data only as long as necessary:

• Order and financial data: 6 years (required by Finnish accounting laws)

• Newsletter subscription data: until you unsubscribe

• Contact form messages: typically 1 year, unless needed for ongoing communication

• Analytics and cookies: according to cookie type and your consent

• Coaching-related information: only as long as needed to maintain the coaching relationship (unless legal or ethical obligations require retention)

You can request deletion at any time (see section 10).

6. Payment Processing (Stripe & PayPal)

We use third-party payment processors to handle payments securely.

Stripe

When paying by card, your payment information is processed directly by Stripe Payments Europe Ltd. We never see or store your full card details.

Stripe Privacy Policy:
https://stripe.com/privacy

PayPal

If enabled, PayPal handles payments and processes your data independently.

PayPal Privacy Statement:
https://www.paypal.com/webapps/mpp/ua/privacy-full

7. Cookies & Analytics

Our website uses cookies and similar technologies to:

• enable website functionality

• improve performance

• analyze traffic

• understand how users interact with the site

You can manage cookie preferences through your browser or cookie banner.

If we use analytics tools such as Google Analytics or Hostinger Insights, these services may set cookies in accordance with their own policies.

8. Sharing Your Data

We share your data only with trusted service providers who are essential for operating this website and delivering our services. These include:

• Hostinger (website hosting and email marketing services via Hostinger Reach)

• Stripe (payment processing for card payments)

• PayPal (payment processing, if used)

• Accounting software (for legally required bookkeeping and financial reporting)

We do not sell, rent, or trade your personal data.

9. International Data Transfers

Some of our service providers (e.g., Stripe, email marketing tools) may store data outside the EU/EEA.
We ensure such transfers comply with GDPR through:

• Standard Contractual Clauses (SCCs)

• Adequacy decisions

• Other appropriate safeguards

10. Your GDPR Rights

As an EU resident, you have the right to:

• Access your data

• Correct inaccurate data

• Request deletion (right to be forgotten)

• Restrict processing

• Object to processing

• Withdraw consent at any time

• Transfer your data to another provider (data portability)

• Refuse automated decision-making or profiling
  

To exercise any of these rights, email: laura@vanhapelto.com

11. Security

We use reasonable technical and organizational measures to protect your personal data against:

• unauthorized access

• misuse

• loss

• disclosure

• alteration
  

However, no internet transmission is 100% secure.

12. Links to Other Websites

Our Website may contain external links.
We are not responsible for the privacy practices or content of third-party sites.

13. Changes to This Policy

We may update this Privacy Policy occasionally.
The latest version will always be available on this page.

14. Contact Us

If you have questions about this Policy or your personal data, contact:

Embodied Wisdom Coaching Oy
Email: laura@vanhapelto.com