Home Letting Go About My courses Contact

Privacy Policy — Earthheld B.V.

Last updated: November 25th 2025

This Privacy Policy explains how Earthheld B.V. (“Company”, “we”, “us”, “our”) collects, uses, stores, and protects personal data in accordance with the General Data Protection Regulation (GDPR). By using our website, purchasing our products, or communicating with us, you agree to the practices described in this Policy.

1. Data Controller

Earthheld B.V.
KvK: 98436201
Herikerbergweg 290
1101 CT Amsterdam
The Netherlands
Email: [email protected]
Website: www.earthheld.com

2. Personal Data We Collect

We collect personal data to provide our services, fulfill contracts, improve user experience, and comply with legal obligations.

2.1 Data You Provide Directly

- Name
- Email address
- Billing and payment information (processed securely by third parties)
- Postal address (if required for invoicing)
- Information submitted through forms, questionnaires, or course participation
- Messages or comments sent to us

2.2 Automatically Collected Data

- IP address
- Device and browser information
- Pages visited and time spent on site
- Course progress and login data
- Cookies and tracking technologies

2.3 Sensitive Category Data

We do not intentionally collect sensitive personal data (e.g., health data), unless you voluntarily share it in a form or message. We recommend not sharing more than necessary.

2.4 Payment Information

Payments are processed securely by Stripe, PayPal, or other Kajabi-integrated providers. We do not store full credit card or banking data.

3. Purposes for Processing Personal Data

We use your data to:

- Provide access to purchased courses and digital content
- Process payments and send invoices
- Communicate essential program information
- Send newsletters (only with your consent)
- Improve our website, services, and user experience
- Provide customer support
- Comply with legal, tax, and administrative requirements

We do not sell personal data to third parties.

4. Legal Bases for Processing (GDPR)

We process personal data under the following legal bases:

Contractual necessity: to deliver purchased services and manage your account.
Consent: for newsletters, optional communications, and non-essential cookies.
Legal obligation: for tax, accounting, and regulatory compliance.
Legitimate interest: to improve services, prevent fraud, and maintain website security.

5. Data Retention Periods

We retain personal data only as long as necessary for the purposes for which it was collected or to comply with legal requirements.

Retention periods:

- Billing and invoice data: up to 7 years (required by Dutch law)
- Lead or inquiry data (no purchase): up to 2 years
- Newsletter subscription data: until you unsubscribe, plus up to 3 months for administrative processing
- Course participation data: as long as you maintain an active account, plus up to 2 years after termination
- Cookie and analytics data: according to our cookie policy and browser settings

6. Third Parties and Data Processors

We share personal data only with trusted service providers necessary for delivering our services, including:

- Kajabi (course and website platform)
- Payment processors (Stripe, PayPal)
- Email marketing services
- Website analytics providers
- Cloud hosting providers

These parties process data only on our behalf and in accordance with GDPR.

7. International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA), such as in the United States. When transferring data outside the EEA, we ensure appropriate safeguards are in place, including:

- Standard Contractual Clauses (SCCs)
- Data encryption
- Strict access controls

8. Cookies and Tracking Technologies

We use cookies and similar technologies to improve functionality, analyze website traffic, personalize content, and support marketing.

Types of cookies we use:

- Functional cookies (necessary for site operation)
- Analytical cookies (e.g., Google Analytics)
- Marketing cookies (e.g., Facebook Pixel, Instagram integrations, YouTube embeds)

On your first visit, we request consent for non-essential cookies. You can withdraw your consent at any time via your browser settings or cookie banner.

9. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling that produces legal or significant effects on you.

10. Children’s Privacy

Our services are not intended for individuals under 18 years old. We do not knowingly collect data from minors. If we discover such data was collected, we will delete it immediately.

11. Your Rights Under GDPR

You have the following rights regarding your personal data:

- Right to access
- Right to rectification (correction)
- Right to erasure (“right to be forgotten”)
- Right to restrict processing
- Right to object
- Right to data portability
- Right to withdraw consent at any time (for consent-based processing)
- Right to lodge a complaint with the Dutch Data Protection Authority (“Autoriteit Persoonsgegevens”)

To exercise these rights, email us at [email protected].

12. Data Security

We implement technical and organizational measures to protect your data, including encryption, secure servers, and limited access. However, no digital system is entirely secure. You use our site at your own risk.

13. Updates to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page and apply immediately upon posting. Continued use of our services indicates acceptance of the updated Policy.

14. Contact

If you have questions about this Privacy Policy or how your data is handled, contact us:

Earthheld B.V.
Herikerbergweg 290
1101 CT Amsterdam
The Netherlands
Email: [email protected]