SUMMARY

This Privacy Policy of Legally She Can GmbH governs all interactions with us, including use of our website, our communications, and our services. By accessing or using any of the above, you acknowledge that you have read and understood the full Policy set out below. Consent is obtained only where required by law, for example for marketing communications or non-essential cookies.

 

 

FULL PRIVACY DECLARATION OF LEGALLY SHE CAN GMBH

 

The following data protection declaration applies to Legally She Can, www.legallyshecan.com, www.legallyfluentacademy.com, www.legallyshecan.co and its sub-domains, affiliated sites, and Legally She Can’s pages and accounts on Facebook, Instagram, LinkedIn, Pinterest, Tiktok, Twitter, and Youtube. (“Website”/”Site”/“Websites”/”Sites”).

 

It defines the principles under which we process all personal data that we collect from you or that you provide. We respect your privacy choices and understand your need to keep your personal information confidential. We are committed to safeguarding all information we collect from you when you use or access our content, services, and/or products.

 

Our commitment to protecting your privacy and ensuring transparent communication aligns with the principles of legal fluency that drive our business practices.

 

If you are a User, visitor, viewer, subscriber, client, and/or customer of our Sites (referred to collectively as “User,” “You,” or “Your”), please read this Privacy Policy in its entirety before using, viewing, downloading, purchasing from, or accessing our Site, content, services, and/or products.

 

By using our Sites, you acknowledge this Privacy Policy. We rely on the specific lawful bases set out below (e.g., contract, legitimate interests, consent where required, or legal obligation).

 

If you do not acknowledge these terms, please do not access our Sites or engage any of our Services.

 

 

General Information about the collection of personal data and provider identification

1. Personal data includes all information that relates to an identified or identifiable individual, such as names, addresses, email addresses, User behavior, and similar data.

2. By consenting to our use of cookies in accordance with this policy when you first visit our website, you permit us to use cookies on subsequent visits.

3. These Sites and Legally She Can GmbH are represented by Vena Verga-Danemar (“I”/ “We”/ “Us”/“Our”) and located in Schlierenstrasse Zurich Uitikon, Switzerland.  You can contact us at strategy@legallyshecan.com.

 

 

WHAT DO WE COLLECT?

We collect, store, and use the following personal data:

 

1. Personal Identification Information (First Name, Last Name, Date of Birth, E-mail Address, Physical Address, Telephone/Mobile Number) 

2. Billing and Payment Information (Billing and Shipping Address, Payment Details processed by our payment service provider; we do not store full card numbers, only limited identifiers such as last four digits and expiry date) 

3. Photos, Profile Picture, or Bio

4. Booking and Scheduling Data (Date and time of booked sessions, time zone, preferences) 

5. Communications Data (Emails, chat messages, support requests, and notes exchanged before, during, or after calls) 

6. Social Media Data (Social media handles, public interactions such as comments, tags, or direct messages)

7. Session Recordings (with prior notice/consent where legally required) 

8. Technical and Location Data (IP address, device/browser information, approximate location) 

9. Other Voluntary Information (Any additional data you choose to provide when engaging with our services)

 

We also collect, store, and use data regarding your behavior, such as purchase data and information from your computer, including your IP Address, Geographical Location, Browser Type, Time Zone, Operating System, Browser Version, Pages on our Site that you visit, the time and date of your visit, and the duration spent on those pages.

 

Additionally, we collect information from any communications you send to us via email or through our website, including the content and metadata of such communications.

 

 

HOW DO WE COLLECT YOUR PERSONAL DATA?

In most instances, you provide us with the data we collect. We collect and process data when you:

 

1. Register with our Sites or create an account on our websites.

2. Subscribe to our e-mail list or newsletter.

3. Purchase anything from our Sites.

4. Download anything from our Sites, including freebies, lead magnets, and the like.

5. Contact us through e-mail or the contact button on our Sites.

6. Enter our Sites to gain access to courses, membership areas, blogs, and private groups.

7. Leave a review or feedback.

8. Voluntarily complete a customer survey.

9. Allow us to interview you.

 

We collect information about your computer, including your IP address, geographical location, browser type and version, and operating system through automated data collection technologies, including Facebook Pixels, Google Analytics, Cookies, and similar methods, as detailed below. This means we are already collecting this data when you browse our Site.

 

We collect communication content and metadata when you post it to our Sites or mobile application, and when our website generates metadata in connection with your communication.

 

Before disclosing the personal information of another person to us, you must obtain that person’s consent to disclose and process their personal information in accordance with this policy.

 

 

OUR LEGAL BASIS FOR COLLECTING AND PROCESSING YOUR INFORMATION 

Personal data that you voluntarily submit to us through our Site or other means will be used for:

 

1. Enabling your use of the services available on our sites – Performance of a contract.

2. Allowing you to access our private groups – Performance of a contract.

3. Processing your orders – Performance of a contract.

4. Sending you goods you purchased from us – Performance of a contract.

5. Supplying services you purchased from us – Performance of a contract.

6. Managing the account you created on our sites – Performance of a contract.

7. Sending statements, invoices, payment reminders, and collecting payments - Performance of a contract and compliance with legal obligations (e.g., accounting, tax).

8. Sending newsletters if you subscribe - Consent (you may withdraw at any time).

9. Sending marketing communications related to our business or carefully selected third parties – Consent for electronic marketing (email, SMS) and legitimate interests for postal marketing; you may opt out at any time.

10.  Administering our sites and business operations.

11.   Personalizing our site for you – Consent (cookies) and legitimate interests (user experience) 

12.  Providing third parties with aggregated or anonymized statistical information about our Users – Legitimate interests; this data does not identify individuals.

13.  Sending non-marketing commercial communications.

14.  Sending you email notifications that you have specifically requested.

15.  Handling inquiries and complaints made by or about you relating to our site, products, or services – Legitimate interests and, where applicable, performance of a contract.

16.  Keeping our sites secure and preventing fraud – Legitimate interests and legal obligations.

17.  Verifying compliance with the terms and conditions governing the use of our sites (including monitoring private messages sent to us through our site’s private messaging service) - Legitimate interests.

18.  Complying with legal obligations (e.g., accounting, consumer law, data protection) – Legal obligation.

19.  Protecting the life or physical safety of the data subject – Vital interests.

 

If you submit personal information for publication on our site, we will publish and otherwise use that information in accordance with the license you grant us.

 

Without your express consent, we will not provide your personal information to any third party for their direct marketing, or for any other third party's marketing purposes.

 

 

WE WILL DISCLOSE YOUR PERSONAL INFORMATION IN THE FOLLOWING INSTANCES:

We will never sell or trade your personal information.

 

We may disclose your personal information to any of our employees, insurers, professional advisers, agents, suppliers, or subcontractors as reasonably necessary for the purposes set out in this policy. 

We will disclose your personal information under the following circumstances:

 

1. As required by law.

2. In connection with any ongoing or prospective legal proceedings.

3. To establish, exercise, or defend our legal rights, including providing information to others for the purposes of fraud prevention and credit risk reduction.

4. To the purchaser (or prospective purchaser) of any business or asset that we are selling or considering selling; and

5. To any person whom we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would likely order disclosure of that personal information.

 

Except as provided in this policy, we will not provide your personal information to third parties.

 

 

DETAILS ABOUT OUR PLATFORM AND SERVICE PROVIDER

Our website and online services run on Wix and Kartra (the “Hosts”). The Hosts provide the platform we use to publish content, manage forms, and offer our products and services. Your data may be stored in the Hosts’ infrastructure, including their databases and applications, in line with their privacy terms and our data processing agreements.

The Hosts and certain integrated tools may use analytics to understand traffic and usage. When you visit our website, the Host may collect, for example:

 

1. your device or computer IP address,
2. date and time of access,
3. the name and URL of the file or page accessed,
4. the referrer URL,
5. operating system and browser type,
6. the country of access, and
7. your internet service provider.

 

Where the Hosts process personal data to provide their services to us, they act as our processors. In limited cases, they may process data as independent controllers in accordance with their own privacy notices. Cookies and similar technologies used by the Hosts are explained in our Cookie Policy.

 

Review their privacy policies here:

• Wix Privacy Policy: https://www.wix.com/about/privacy
• Kartra Privacy Policy: https://kartra.com/privacy-policy/

 

 

DETAILS ABOUT OUR PRIVATE GROUPS

Our Private Group Business Hive (“Private Group”) is hosted by Wix (“Group Platform”). When you join our Private Group, your data will be stored by our Group Platform in their database and general applications.

 

When you comment or provide feedback within these groups, it is possible that your name, photo, and sometimes your location, will become accessible to other group members.

 

Our Group Platform utilizes analytic tools to measure traffic and usage trends, which may include the collection of the following data:

 

1. The IP address of the computer or device you use to visit our website,

2. The date and time of your access,

3. The name and URL of the data accessed,

4. The website from which access to our domain is made,

5. The operating system of your computer, and the browser used,

6. The country from which you access our website, and

7. The name of your internet service provider.

 

This data is stored and managed by our Group Platform and is subject to their Privacy Policy which you can access here: https://www.wix.com/about/privacy

 

 

INTERNATIONAL DATA TRANSFERS

We may store, process, and share personal data in countries other than your country of residence. Current destinations include Israel, the EU/EEA, the United Kingdom, Switzerland, the Philippines, and the United States. We have staff in the Philippines, which means your personal data may be processed there. The laws in these countries may differ from those in your country of residence and may not offer the same level of protection.

Transfer mechanisms we use

 

• We rely on adequacy decisions that recognize Israel as providing an adequate level of protection under GDPR Article 45 and under Swiss law.

 

• Where the recipient participates in the EU–U.S. Data Privacy Framework (DPF), we rely on that adequacy decision under GDPR Article 45. For UK personal data, we rely on the UK Extension to the DPF. For Swiss personal data, we rely on the Swiss–U.S. DPF.
  Where a U.S. recipient is not DPF-certified, we use the European Commission’s Standard Contractual Clauses (SCCs) under GDPR Article 46, supported by a Transfer Impact Assessment (TIA) and supplementary measures as needed. For UK personal data we use the International Data Transfer Agreement (IDTA) or the UK Addendum to the SCCs. For Swiss personal data we use the SCCs as recognized by the FDPIC.

 

• We use a virtual assistant located in the Philippines. For this reason, limited personal data is accessed from that location. We restrict the transfer to what is necessary, specifically name and email address for administrative tasks such as scheduling and customer support. No other personal data is transferred to the virtual assistant.

These transfers rely on the European Commission’s Standard Contractual Clauses under GDPR Article 46. Where relevant, we use the UK International Data Transfer Agreement or UK Addendum and the SCCs as recognized by the FDPIC for Swiss personal data. We complete a Transfer Impact Assessment and apply supplementary measures where appropriate. The virtual assistant acts as our processor under a written data processing agreement, is bound by confidentiality, follows our documented instructions, and implements appropriate security measures.

 

We keep records of the transfer tools we use and monitor legal developments. If a framework changes, we will adjust our transfer mechanism and update this Policy where needed.

Public content: Personal information you choose to publish on our sites may be accessible worldwide. We cannot prevent third parties from using or misusing information you make public.

 

 

WHAT ARE YOUR RIGHTS?

1. Right to Access. You have the right to request copies of your personal information from us, subject to the following:

• The supply of appropriate evidence of your identity, such as a photocopy of your passport.

• You have the right to obtain confirmation as to whether we process your personal data and, if so, to access that data. Requests are free of charge. However, if a request is manifestly unfounded, excessive, or repetitive, we may charge an administrative fee of 25.00 Swiss Francs (CHF) Swiss Francs (CHF) or refuse to act on the request, as permitted by law.

• We may withhold the personal information you request to the extent permitted by law.

• You may instruct us at any time not to process your personal information for marketing purposes.

• You also have the right to lodge a complaint with your local supervisory authority if you believe we have violated data protection laws (GDPR Art. 77; FADP Art. 32).

   

2. Right to Erasure. You may request deletion of your personal data in the circumstances set out in GDPR Art. 17 / FADP.

    

3. Right to Withdraw Consent: Where we rely on consent (for example, non-essential cookies), you may withdraw it at any time, without affecting the lawfulness of processing before withdrawal.

    

4. Right to Restrict Processing. You have the right to request that we restrict the processing of your personal information under certain conditions.

    

5. Right to Object to Processing. You may object at any time to our use of your personal data for direct marketing (we will stop immediately). You may also object to processing based on legitimate interests; in such cases, we will stop unless we demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.

    

6. Right to Data Portability. You have the right to request that we transfer the data we have collected to another organization or directly to you, under certain conditions.

    

7. Right to Rectification. You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete information you believe is incomplete.

    

8. Right to Opt-Out. We only share your information with third parties for marketing with your consent (opt-in). You can withdraw your consent (opt-out) at any time by contacting us at strategy@legallyshecan.com or using the provided unsubscribe tools. We have thirty (30) days to respond to your request.

 

We may deny your requests in certain instances; for example, if we cannot verify that you are the owner of the information, or if we are legally required to retain a copy of the personal information. In such cases, we will communicate this fact to you in writing. 

 

Legally, you may appeal our decision by responding to the communication denying your request.

 

 

YOU HAVE A RIGHT TO UNSUBSCRIBE

If you wish to unsubscribe from our email list at any time, please send an email to strategy@legallyshecan.com or follow the instructions provided at the bottom of every email we send.

 

Our email service provider allows us to segment and tag our leads. As a result, it is possible that you may be part of several segments or lists, particularly if you interact with us through different methods. For example, you might have sent an inquiry, downloaded a lead magnet, watched a specific presentation, or purchased a particular service or product. Consequently, when you unsubscribe using the link in an email, you may only be unsubscribing from a specific segment or list.

 

To completely unsubscribe from all of our lists, you may need to send an email to strategy@legallyshecan.com.

 

 

HOW DO WE RESPOND TO “DO NOT TRACK” REQUESTS?

We do not respond to legacy “Do Not Track” signals, as no industry standard exists. However, where required by law (e.g., California CPRA), we honor browser-based opt-out preference signals such as Global Privacy Control (GPC) for opting out of “sale” or “sharing” of personal information.

 

 

HOW LONG DO WE RETAIN YOUR DATA?

Questionnaire responses used to draft your documents

We collect certain answers through questionnaires to prepare your documents.

• We keep these answers only as long as needed to draft, review, and finalize your documents.

• Once the matter is completed or you ask us to delete your answers, we delete our working copies within seven (7) days.

• Questionnaire answers are entered and stored in Gavel. Access is restricted and is visible only to Vena Verga-Danemar for the purpose of providing the service. 

 

Other records

We retain personal data for as long as necessary to achieve the purposes described in this Privacy Policy. We may keep data after a matter or exchange concludes when this is needed for records, to answer questions, or to meet legal obligations.

 

Notwithstanding the above, we may retain documents containing personal data:

1. To the extent required by law.

2. If we believe the documents may be relevant to ongoing or prospective legal proceedings.

3. To establish, exercise, or defend legal claims, including providing information to others for fraud prevention and credit risk reduction.

• Accounting and contract records: kept for up to ten (10) years to comply with statutory retention duties.

• Marketing and analytics data: deleted or anonymized sooner, especially if you withdraw consent or object to processing.

• Routine communications (e.g., emails, messages): retained only as long as needed for the relevant purpose, then deleted or archived in line with our retention schedule.

• Marketing opt-out: if you unsubscribe or request that we stop sending marketing communications, we will keep minimal information (for example, your name and email address) on a suppression list so we can honor your request.

 

 

SECURITY OF YOUR PERSONAL INFORMATION

1. www.legallyshecan.com uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content. Third parties cannot read the data you transmit to us.

2. We will take appropriate technical and organizational measures to protect your personal information against unauthorized access, loss, misuse, alteration, or disclosure, in line with GDPR Art. 32 and FADP Art. 8.

3. As we use our Host’s platform for our website, we are subject to the processes used by our Host to protect your data, including the use of firewalls and encryption for payments.

4. We primarily operate digitally; if physical documents are created, they are stored securely and destroyed when no longer required.

5. You acknowledge that transmitting information over the Internet is inherently insecure, and we cannot guarantee the security of data sent over the Internet.

6. You are responsible for keeping the password you use to access our Sites. We will not ask you for your password except when you log in to our website.

 

Data Breach Notification

Where we become aware of a personal data breach, we will assess its risks and notify the competent supervisory authority within the applicable legal timeframe (e.g., GDPR/UK GDPR) and notify affected individuals where required by law (including under FADP and applicable laws where you reside).

 

 

COOKIES AND TRACKING TOOLS

Cookies

Our Site uses cookies. These small text files allow us to store specific, User-related information on your device while you are using our Site. Cookies enable us to determine the frequency of use and the number of Users of the pages on our Site, as well as to analyze the behavior of our Site Users. They make our offerings more User-friendly.

 

Cookies are stored beyond the end of a browser session and can be retrieved when you revisit the Site. If you prefer not to have cookies stored, you should adjust your internet browser settings to refuse cookies.

 

We have a separate cookies policy that explains what cookies we use and how you can choose to accept or reject them. You can read it here.

 

You can also delete cookies. If you are in Europe, you can learn more about how to delete cookies at www.youronlinechoices.com. 

 

Note, however, that deleting cookies may negatively impact the usability of many websites.

 

Meta (Facebook/Instagram) Pixel
We load Meta Pixel only after your consent (EU/UK/CH) through our cookie banner. Pixel data may be transferred to the U.S. under the DPF (where applicable) or SCCs with supplementary measures. You can withdraw consent at any time via the banner settings.

 

We Use Google Analytics (GA4)
We use Google Analytics 4 to analyze Site usage. In the EU/UK/Switzerland, we deploy Analytics only after you give consent via our cookie banner. We enable IP anonymization and limit data retention where available. Where Google transfers data to the U.S., we rely on Google’s participation in the EU-U.S. DPF/UK Extension/Swiss-U.S. DPF (where applicable) or SCCs with supplementary measures. You may opt out using the Google Analytics opt-out add-on.

 

 

OPT-OUT OF TARGETED ADVERTISING

You can opt-out of targeted advertising by visiting the following websites:

Network Advertising Initiative (NAI): http://www.networkadvertising.org/choices/

Digital Advertising Alliance (DAA): http://www.aboutads.info/choices/

 

 

PRIVACY POLICY ON CHILDREN

Our Sites are not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If you are under 18, please do not provide any information on our Sites.

 

If you are a parent or guardian and believe that your child has provided us with personal information, please contact us.

 

If we become aware that we have collected personal data from anyone under the age of 18 without verifying parental consent, we will take steps to remove the information from our system.

 

 

WE WILL NEVER SELL YOUR INFORMATION

We do not sell your personal information. We also do not “share” personal information for cross-context behavioral advertising or similar profiling, unless permitted by law and subject to your right to opt out.

 

Where required (for example, under the California Consumer Privacy Act as amended by the CPRA), we provide a “Do Not Sell or Share My Personal Information” mechanism and honor browser-based opt-out preference signals such as Global Privacy Control (GPC).

 

 

YOUR PERSONAL DATA WHEN YOU PURCHASE ANYTHING FROM OUR SITES

Payments are processed by our payment providers under their privacy notices. Our providers may store tokenized payment credentials on our behalf to enable authorized transactions (e.g., booking charges, no-show fees), and we may access limited payment identifiers (such as the last four digits and expiry month/year).

 

We utilize the following payment gateways:

 

PayPal

If payment is made via the payment service provider "PayPal," PayPal will process the payment in accordance with its Terms of Use, which are available at www.paypal.com.

 

Depending on the payment method selected through PayPal, the personal data transmitted to PayPal may be forwarded to credit agencies. This transfer is conducted to perform identity and credit checks related to the order you have placed. 

 

Detailed information on which credit agencies are involved and the specific data collected, processed, stored, and shared by PayPal can be found in PayPal's Privacy Policy at https://www.paypal.com/va/legalhub/privacy-full

 

Credit Card Payment Processed by Stripe

Payments on our Sites may be processed by our provider Stripe, Inc. (U.S.). Stripe acts as an independent controller of payment data. Transfers of personal data to Stripe rely on its participation in the EU–U.S. DPF, UK Extension, and Swiss–U.S. DPF, or on the SCCs with supplementary measures if required. We do not collect or store full card numbers. We may receive limited identifiers (e.g., last four digits and expiry month/year) for records.

 

If you have questions about Stripe’s Privacy Policy, please contact privacy@stripe.com.

 

Payment through Bank Transfer

If you choose offline payment through Bank Transfer, we will have access to the following information:

 

1. Your name

2. Your Phone number

3. E-mail address

4. You Bank Account Number

 

However, we do not have control, nor are we responsible for how Banking institutions handle these details. 

 

If you choose payment via Bank Transfer, you can read about our bank’s Privacy Policy here: https://www.ubs.com/global/en/legal/privacy/switzerland.html

 

TWINT

Payments on our Sites may also be processed via TWINT AG (Switzerland) in cooperation with our bank. When you pay with TWINT, we may receive limited identifiers (e.g., your name and mobile number) in order to allocate your payment.

 

TWINT acts as an independent controller of payment data. Transfers of personal data are handled within Switzerland and the EEA. TWINT processes your personal data in accordance with its own Privacy Policy: https://www.twint.ch/en/data-privacy/.

 

We do not control how TWINT or our bank process your payment data.

 

WIX Payments

Payments on our Sites may also be processed via Wix Payments, operated by Wix.com Ltd. (Israel/United States/EU affiliates). When you pay using Wix Payments, we may receive limited details necessary to confirm your transaction, such as your payment method, billing information, and transaction history.

 

Wix acts as an independent controller of payment data. Transfers of personal data outside Switzerland, the EEA, or the UK rely on the EU Standard Contractual Clauses (SCCs) or equivalent safeguards, as required by law.

 

We do not collect or store full payment details and have no control over how Wix processes your data beyond what is necessary to complete your transaction.

 

You can read Wix’s Privacy Policy here: https://www.wix.com/about/privacy

 

 

USE OF SOCIAL MEDIA PLUG-INS

We currently use the following social media plug-ins: Facebook, Instagram, LinkedIn, and Pinterest

 

You may interact with us through our social media accounts and other third-party applications we utilize. To the extent practicable, this Privacy Policy applies to those interactions.

 

Please be aware that personal information you provide or transmit via these social media accounts or third-party applications is typically collected and processed by the respective platform providers as independent controllers, not by us. Such information is therefore subject to the privacy policies of those providers, who may also use cookies and similar technologies.

 

To understand how our social media and third-party application providers collect and use your data, we encourage you to review their respective privacy policies here:

 

Meta Platforms, Inc (Facebook): https://www.facebook.com/privacy/policy 

Meta Platforms, Inc (Instagram): https://privacycenter.instagram.com/policy

Pinterest: https://policy.pinterest.com/en/privacy-policy

LinkedIn, Inc.: https://www.linkedin.com/legal/privacy-policy

 

 

THIRD-PARTY LINKS

Our sites may contain links to websites not operated by us. If you click on a third-party link, you will be directed to that third-party's site. We strongly advise you to review the Privacy Policy of every site you visit.

 

We do not control, and are not responsible for, the content, privacy policies, or practices of any third-party sites or services.

 

 

OUR SOCIAL MEDIA ACCOUNTS, SOFTWARE, PLATFORMS AND THIRD-PARTY APPLICATIONS WE USE

You may interact with us through our social media accounts, software, platforms and other third-party applications we utilize. To the extent practicable, this Privacy Policy applies to those interactions.

 

Please be aware that the personal information you transmit to our social media accounts or through third-party applications is typically collected by the platform providers, not by us. Therefore, such information is subject to the privacy policies of those providers, who also utilize cookies.

 

To understand how our social media and third-party application providers collect and use your data, we encourage you to review their respective privacy policies here:

 

Facebook

Owner: Meta Platforms, Inc 

Transfer basis: Certified under the EU–U.S. DPF, UK Extension, and Swiss–U.S. DPF.

Privacy Policy: https://www.facebook.com/privacy/policy 

 

Instagram

Owner: Meta Platforms, Inc 

Transfer basis: Certified under the EU–U.S. DPF, UK Extension, and Swiss–U.S. DPF.

Privacy Policy: https://www.facebook.com/privacy/policy

 

TikTok

Owner: TikTok Ireland

Transfer basis: EU/Swiss adequacy.

Privacy Policy: https://www.tiktok.com/legal/page/eea/privacy-policy/en

 

Pinterest

Owner: Pinterest Inc

Privacy Policy: https://policy.pinterest.com/en/privacy-policy

 

Youtube
Owner: Google LLC

Transfer basis: Certified under the EU–U.S. DPF, UK Extension, and Swiss–U.S. DPF.

Privacy Policy: https://policies.google.com/privacy?hl=en

 

Linkedin
Owner: LinkedIn, Inc. with LinkedIn Ireland Unlimited Company as EU controller

Transfer basis: Certified under the EU–U.S. DPF, UK Extension, and Swiss–U.S. DPF.

Privacy Policy: https://www.linkedin.com/legal/privacy-policy

 

Owner: X Corp (formerly Twitter, Inc.)
Transfer basis: Standard Contractual Clauses (SCCs) for transfers outside the EU/CH/UK.
Privacy Policy: https://x.com/en/privacy

 

Calendly

Owner: Calendly, LLC

Transfer basis: Certified under the EU–U.S. DPF, UK Extension, and Swiss–U.S. DPF.

Privacy Policy: https://calendly.com/pages/privacy

 

Zoom

Owner: Zoom Video Communications, Inc.

Transfer basis: Certified under the EU–U.S. DPF, UK Extension, and Swiss–U.S. DPF.

Privacy Policy: https://zoom.us/privacy

 

Kartra
Owner: Genesis Digital LLC

Transfer basis: Standard Contractual Clauses (SCCs) for transfers outside the EU/CH/UK.
Privacy Policy: https://home.kartra.com/privacypolicy

 

Wix

Owner: Wix.com Ltd. (Israel, with global subsidiaries)

Transfer basis: EU/Swiss adequacy (Israel); where data is transferred to the U.S., Standard Contractual Clauses (SCCs) for transfers outside the EU/CH/UK.

Privacy Policy: https://www.wix.com/about/privacy
 

NameCheap

Owner: NameCheap, Inc. (U.S.)

Transfer basis: Standard Contractual Clauses (SCCs) for transfers outside the EU/CH/UK.

Privacy Policy: https://www.namecheap.com/legal/general/privacy-policy/

Adobe Acrobat / Acrobat Sign
Owner: Adobe Inc. (U.S.)
Transfer basis: EU–U.S. / Swiss–U.S. / UK Extension to the Data Privacy Framework (DPF). Where DPF does not apply, Standard Contractual Clauses (SCCs) (and, where applicable, UK IDTA/UK Addendum; SCCs recognized by the FDPIC).
Privacy Policy: https://www.adobe.com/privacy/policy.htm

 

Gavel (including Gavel Research)
Owner: Documate, Inc. d/b/a Gavel (U.S.)
Transfer basis: Standard Contractual Clauses (SCCs) under a signed agreement (and, where applicable, UK IDTA/UK Addendum; SCCs recognized by the FDPIC).
Privacy Policy: https://www.gavel.io/privacy

 

Google Workspace (Gmail, Google Calendar, Google Drive, etc.)
Owner: Google LLC (U.S.)
Transfer basis: EU–U.S. / Swiss–U.S. / UK Extension to the Data Privacy Framework (DPF). Where DPF does not apply, Standard Contractual Clauses (SCCs) and, where applicable, the UK IDTA or UK Addendum, and the SCCs recognized by the FDPIC.
Privacy Policy: https://cloud.google.com/terms/cloud-privacy-notice

 

 

OUR E-MAIL POLICY

If you choose to communicate with us via email, we may retain the content of your email communications, including your email address. These communications are protected under the provisions outlined in this Privacy Policy.

 

All emails sent to us are treated as confidential. We do not disclose, sell, transfer, or lease our email lists to any third parties, except as specified in this Privacy Policy.

 

In compliance with the U.S. CAN-SPAM Act, all emails from us will clearly identify the sender’s name and provide explicit instructions on how to contact us. Additionally, our emails will include detailed instructions on how to unsubscribe from our email list.

 

Each email we send will include a link to unsubscribe from our email list. You can use this link to stop receiving future communications.

 

Email, SMS, and other third-party channels are not fully secure. We use reasonable safeguards, but once messages leave our systems or transit over third-party networks/devices, confidentiality and delivery may be outside our control. Nothing in this Policy limits our obligations under applicable privacy and data-protection laws.

 

 

BASIS OF THIS DATA PROTECTION DECLARATION

This Privacy Policy is designed to meet transparency duties under: EU GDPR, UK GDPR & DPA 2018, Swiss FADP, U.S. laws including COPPA, U.S. CAN-SPAM Act and if applicable, CPRA.

 

 

COMPLAINTS

If you have complaints about how we process your data, or you feel that we did not address your concerns, you may contact the Data Protection Authority listed below or the relevant Data Protection Authority in your jurisdiction.

 

Autoriteit Persoonsgegevens (AP)
Phone: +31 70 888 8500
Website: https://autoriteitpersoonsgegevens.nl

 

Swedish Authority for Privacy Protection (IMY)
Phone: +46 8 657 61 00
Website: https://www.imy.se

 

Swiss Federal Data Protection and Information Commissioner (FDPIC)
Phone: +41 58 462 43 95
Website: https://www.edoeb.admin.ch

 

 

AMENDMENTS TO THE DATA PROTECTION DECLARATION

We reserve the right to amend this Privacy Policy to reflect changes in legal requirements or modifications to our services and data processing practices. Amendments will apply solely to statements regarding data processing. We may update this Privacy Policy from time to time. If we make material changes, we will notify you (e.g., by email or a notice on our website). Where required by law, we will seek your consent to those changes.

 

Users are encouraged to regularly review this Privacy Policy.

 

These Terms were drafted for us by Legally She Can to reflect our commitment to upholding the highest standards in business practices.

 

If you have any questions or complaints regarding this Privacy Policy, please contact us at strategy@legallyshecan.com.