top of page

Privacy Policy

This Privacy Policy informs you about the nature, scope, and purpose of the collection and use of personal data when visiting our website www.thrivingself.co (hereinafter referred to as the “Website”).

We take the protection of your personal data very seriously and process it in accordance with the applicable data protection regulations, in particular the General Data Protection Regulation (EU) 2016/679 (GDPR), the German Federal Data Protection Act (BDSG) and the German Telecommunications and Telemedia Data Protection Act (TTDSG).

1. Controller

The entity responsible for data processing within the meaning of the GDPR and the BDSG is:

ThrivingSelf (sole proprietorship) by Alina Rösken
Responsible: Alina Rösken, Business Owner
Address: Venloerstraße 104, 50825 Köln, Germany
Email: teamthrivingself@gmail.com

2. General Information on Data Processing

We process personal data only to the extent necessary to provide a functional website, our content and services. Personal data is any information relating to an identified or identifiable natural person.

Data processing occurs only insofar as one of the legal bases set out in Art. 6(1) GDPR applies, or you have given your explicit consent.

3. Data Categories and Purposes of Processing

(a) Log Files and Technical Data

When accessing our Website, the browser used on your device automatically transmits information to our server. This data is temporarily stored in a so-called log file. The following information is collected automatically:

  • IP address of the requesting device

  • Date and time of access

  • Name and URL of the accessed file

  • Referrer URL (previously visited page)

  • Browser type, version and operating system

This data is processed to ensure a smooth connection setup, system security, and administrative evaluation of website stability. The legal basis is Art. 6(1)(f) GDPR, our legitimate interest in the secure and reliable operation of the Website.

(b) Contact Form and Email Contact

If you contact us via the contact form or by email, we process the information you provide (such as your name, email address and message content) in order to respond to your enquiry.

Data is processed for the purpose of communication pursuant to Art. 6(1)(b) GDPR (performance of a contract or pre-contractual measures). Your data will be deleted once the request has been conclusively answered, unless statutory retention obligations apply.

(c) Cookies

We use cookies on our Website. Cookies are small text files stored on your device by your browser.
They are used to make our Website more user-friendly, efficient, and secure.

We distinguish between:

  • Essential cookies, required for technical operation (Art. 6(1)(f) GDPR; § 25(2) TTDSG)

  • Analytics cookies, used only with your consent (Art. 6(1)(a) GDPR; § 25(1) TTDSG)

You can withdraw your consent at any time via our cookie settings or your browser preferences.

4. Use of Google Analytics

This Website uses Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). Google Analytics uses cookies to help us analyse how users interact with our site. The information generated by the cookie is usually transmitted to a Google server in the USA. We use IP anonymisation (“anonymizeIp”), which shortens your IP address within the EU/EEA before transmission. The use of Google Analytics is based on your consent (Art. 6(1)(a) GDPR). You may withdraw your consent at any time with effect for the future. Further information on Google’s data protection can be found at: https://policies.google.com/privacy

5. Hosting by Wix

Our Website is hosted by Wix.com Ltd. (40 Namal Tel Aviv St., Tel Aviv 6350671, Israel).
Wix provides web hosting, technical infrastructure, and platform services. Data processing takes place on Wix’s servers located in the EU, Israel, and the United States. Israel is recognised by the European Commission as providing an adequate level of data protection (Art. 45 GDPR). For data transfers to the USA, Wix relies on the EU Standard Contractual Clauses (SCCs). More information about Wix’s privacy practices is available here: https://www.wix.com/about/privacy The legal basis for the use of Wix is Art. 6(1)(f) GDPR, our legitimate interest in providing a secure and efficient online offering.

6. Data Retention and Storage

We store personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by law. Contact data and communication records are stored exclusively in our email inbox and deleted once no longer required.

7. Data Sharing and Recipients

Personal data will only be transmitted to third parties if this is necessary for the provision of our services, if we are legally obliged to do so, or if you have expressly consented. We ensure that any service providers engaged (such as hosting or analytics providers) process data exclusively in accordance with Art. 28 GDPR based on contractual data processing agreements.

8. International Data Transfers

Where data is transferred to countries outside the EU/EEA, this occurs only where an adequacy decision exists (Art. 45 GDPR) or appropriate safeguards are implemented (Art. 46 GDPR), such as the EU Standard Contractual Clauses.

9. Your Rights as a Data Subject

Under the GDPR, you have the following rights with respect to your personal data:

  • Right of access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to data portability (Art. 20 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right to withdraw consent (Art. 7(3) GDPR)

To exercise these rights, please contact us at teamthrivingself@gmail.com.

You also have the right to lodge a complaint with a data protection supervisory authority, in particular the authority of your habitual residence or of our business seat. In Germany, this is the Federal Commissioner for Data Protection and Freedom of Information (BfDI).

10. Data Security

We implement appropriate technical and organisational measures in accordance with Art. 32 GDPR to ensure an adequate level of protection of your personal data, considering the state of the art, implementation costs, and the nature, scope, and context of processing. However, please note that internet-based data transmissions may have inherent security vulnerabilities, and complete protection cannot be guaranteed.

11. Changes to this Privacy Policy

We reserve the right to amend this Privacy Policy at any time to reflect changes in legal requirements or in our data processing activities. The most recent version will always be available on this page.

Last updated: 22.10.2025

bottom of page