top of page
PRIVACY POLICY

PRIVACY POLICY

Privacy Policy

Last updated: November 26, 2025

1. Controller

The party responsible within the meaning of the EU General Data Protection Regulation (GDPR) and other national data protection laws is:

Julia Götz
Luxury Hair & Make-up / Bridal Stylist Online Academy
Steubenstr. 81
68199 Mannheim – Germany
Email: mail(at)juliagoetz.de

(Please send all inquiries exclusively via the contact form.)
Website: www.juliagoetz.com

2. General Information

We take your privacy seriously and handle your personal data confidentially and in accordance with legal data protection regulations.

The use of our website is generally possible without providing personal data. If personal data (such as name, address, or email address) is collected, this is always done on a voluntary basis wherever possible.

We would like to point out that data transmission over the Internet (e.g., communication via email) may have security vulnerabilities. A complete protection of data from access by third parties is not possible.

3. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right to access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (“right to be forgotten”, Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to data portability (Art. 20 GDPR)

  • Right to object to processing (Art. 21 GDPR)

  • Right to withdraw consent (Art. 7 para. 3 GDPR)

  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

Right to Object

If we process your personal data on the basis of Art. 6(1)(f) GDPR (legitimate interest), you have the right to object to this processing at any time for reasons arising from your particular situation.
If the objection concerns direct marketing, you can object at any time without giving reasons.

Please send any such objection to:
Email: mailatjuliagoetz.de

4. Hosting

Our website is hosted by 1blu AG, Riedemannweg 60, 13627 Berlin, Germany.
We have signed a Data Processing Agreement (DPA) with 1blu in accordance with Art. 28 GDPR.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure and stable website operation).

 

5. Server Log Files

When you visit our website, the provider automatically collects and stores information in so-called server log files, which your browser automatically transmits. These may include:

  • Date and time of the request

  • Requested URL and referrer URL

  • Browser type and version

  • Operating system

  • IP address and hostname

  • HTTP status code and amount of data transferred

This data is not merged with other data sources.
The data is stored for security and technical reasons and deleted once it is no longer needed.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in technical stability and security).

 

6. SSL/TLS Encryption

For security reasons, our website uses SSL or TLS encryption. You can recognize an encrypted connection by “https://” and the lock icon in your browser bar. This ensures that transmitted data cannot be read by third parties.

 

7. Contacting Us

If you contact us (e.g. via contact form, email, or social media), we will process your data in order to handle your request.

Legal basis:

  • Art. 6(1)(b) GDPR (pre-contractual or contractual measures)

  • Art. 6(1)(f) GDPR (legitimate interest in effective communication)

Your data will be deleted once your inquiry has been fully processed and no legal retention obligations apply.

 

8. Use of our CRM (Kreativ.Management)

We use the Kreativ.Management CRM system (https://kreativ.management/) to manage client relationships, appointments, and communications.

The following data may be processed:

  • Contact information (e.g. name, email, phone number)

  • Project and booking details

  • Communication records (emails, notes, offers, invoices)

The service is provided by a company based in Austria.


We have concluded a Data Processing Agreement pursuant to Art. 28 GDPR.
Data is stored on servers located within the EU.

Purpose: Efficient management of customer and project data
Legal basis:

  • Art. 6(1)(b) GDPR (contract performance / pre-contractual measures)

  • Art. 6(1)(f) GDPR (legitimate interest in professional client management)

9. Administration, Accounting & Legal Obligations

We process data as necessary for internal administration, accounting, and compliance with legal obligations (e.g., tax retention periods).

Legal basis:
Art. 6(1)(c) GDPR (legal obligation) and Art. 6(1)(f) GDPR (legitimate interest in business continuity).

10. Scheduling with Calendly (Trial Appointments)

We use Calendly (Calendly LLC, 271 17th St NW, Ste 1000, Atlanta, GA 30363, USA) for scheduling trial appointments.

When you book a meeting through Calendly, the data you enter (name, email address, time slot, and possibly phone number or message) is transmitted to Calendly and synchronized with our calendar.

Calendly only accesses calendar data to check availability and avoid double bookings.

Data transfers to the USA are based on EU Standard Contractual Clauses (SCCs) to ensure an adequate level of data protection.

Purpose: Simplified online scheduling for trial sessions
Legal basis:

  • Art. 6(1)(b) GDPR (pre-contractual measures / contract performance)

  • Art. 6(1)(f) GDPR (legitimate interest in efficient scheduling)

  • Art. 6(1)(a) GDPR (consent, if applicable)

For more information: https://calendly.com/privacy

11. Scheduling with Zeeg.me (Coaching Sessions)

For coaching sessions and client bookings, we use Zeeg (https://zeeg.me), an EU-based scheduling service.

When you book a coaching session through Zeeg, the following data may be collected:

  • Name

  • Email address

  • Chosen date/time

  • Type of session or coaching package

  • Any additional details you provide (e.g., topics, goals)

The information is used solely for scheduling and organizing appointments.
We have a Data Processing Agreement with Zeeg in compliance with Art. 28 GDPR.

Legal basis:

  • Art. 6(1)(b) GDPR (contract performance / pre-contractual measures)

  • Art. 6(1)(f) GDPR (legitimate interest in user-friendly scheduling)

  • Art. 6(1)(a) GDPR (consent, where applicable)

Data is stored only as long as needed for the appointment and any required follow-up.

12. Online Meetings via Zoom

We use Zoom Video Communications, Inc., 55 Almaden Boulevard, San Jose, CA 95113, USA for online meetings and coaching sessions.

Zoom processes, among other data:

  • Name, email, and meeting details

  • Audio and video streams

  • Chat content (if used)

  • Technical metadata (IP address, device info)

We use Zoom under a Data Processing Agreement and EU Standard Contractual Clauses to ensure appropriate data protection safeguards.

Legal basis:

  • Art. 6(1)(b) GDPR (contractual / pre-contractual performance)

  • Art. 6(1)(f) GDPR (legitimate interest in secure and effective communication)

  • Art. 6(1)(a) GDPR (consent, e.g. if recording is activated)

More information: https://explore.zoom.us/en/privacy/

13. Embedded Content from Third Parties

Our website may embed content from external providers (so-called “third-party services”), such as:

  • Videos from Vimeo

  • Fonts from Google Fonts

  • Social sharing buttons (Shariff method)

When you access such content, your IP address may be transmitted to these providers.

We only use third-party tools that comply with European data protection standards or provide adequate safeguards (e.g., EU SCCs).

 

14. Cookies and Consent Management

Our website uses cookies and similar technologies to enable essential website functions and improve your user experience.

Types of Cookies:

  • Necessary cookies: for basic site operation

  • Functional cookies: to enhance performance or remember preferences

  • Analytics / marketing cookies: only with your consent

Legal basis:

  • Necessary cookies: Art. 6(1)(f) GDPR (legitimate interest)

  • Optional cookies: Art. 6(1)(a) GDPR (consent)

You can manage your cookie preferences via the cookie banner (Wix Consent Manager) or your browser settings.

 

15. Data Transfers Outside the EU/EEA

Whenever we transfer data to service providers outside the EU/EEA, this is done only when an adequate level of protection exists — for example, through EU Commission adequacy decisions or Standard Contractual Clauses (SCCs) with additional safeguards.

 

16. Data Retention

We store personal data only as long as necessary for the respective processing purposes, or as required by legal retention periods (e.g., tax law). Once the purpose is fulfilled or the retention period expires, the data will be deleted or anonymized.

 

17. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our data practices or legal requirements. The updated version will be published on this page with the revised date.

Last updated: November 26, 2025

Anker 1
Julia_Goetz_hair_makeup_JG_MONGRAMM_2020
bottom of page