GDPR Compliance

GDPR Compliance Notice

1. Our Commitment to Data Privacy

Mind Zen Fit (“we”, “our”, “us”), headquartered in Switzerland, processes personal data in compliance with the General Data Protection Regulation (EU) 2016/679 (GDPR) for visitors and clients in the European Economic Area (EEA).

While based outside the EU, we apply GDPR standards to ensure your data is handled lawfully, transparently, and with respect for your rights.

2. Scope

This notice applies to any EU/EEA individual who interacts with:

  • Our website mindzenfit.com
  • Course enrollment or account creation
  • Newsletter subscriptions and marketing communications
  • Customer support inquiries

3. Legal Bases for Processing

We rely on the following GDPR legal bases:

  • Consent – for marketing, newsletters, and non-essential cookies
  • Contract – to deliver courses, coaching sessions, and platform access
  • Legal obligation – for accounting, tax, and record-keeping purposes
  • Legitimate interest – to enhance our services, security, and user experience

4. Your Rights Under GDPR

As an EU/EEA data subject, you have rights to:

  • Access the personal data we hold about you
  • Rectify any inaccurate or incomplete data
  • Erase your data (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability – receive your data in a structured, machine-readable format

5. Data Transfers Outside the EU

All personal data is stored on secure servers in Switzerland. Switzerland benefits from an EU adequacy decision, ensuring equivalent data protection standards.

6. Data Retention

We retain personal data only as long as necessary for the purposes collected:

  • Course enrollments and progress data: duration of participation plus 3 years
  • Support correspondence: 2 years after last interaction
  • Marketing consents: 12 months unless renewed

7. Data Protection Officer

Our Data Protection Officer (DPO) ensures compliance with GDPR:

📩 Data Protection Officer
📧 [email protected]
📞 +41 78 392 58 47

8. Supervisory Authority

If you believe your rights under GDPR have not been upheld, you may lodge a complaint with your national Data Protection Authority.