Privacy Policy
Last updated: 27 September 2025
This Privacy Policy explains how we collect, use, and protect your personal data when you visit therapybyieva.com or use our services.
1) Who We Are
Therapy by Ieva is the data controller. Contact: info@therapybyieva.com
2) What Data We Collect
- Contact & Booking forms – name, email, phone (if provided), session details.
- Payments & invoices – billing details required by Spanish law.
- Cookies & analytics – IP, browser type, usage patterns.
- Testimonials/Comments – only with explicit consent.
3) Legal Basis
- Consent – when you submit data voluntarily.
- Contract – to deliver the therapy sessions you request.
- Legal obligation – invoicing and tax compliance.
4) How Long We Keep Data
- Contact/booking data – up to 12 months.
- Invoices/client records – 5 years (per Spanish law).
- Testimonials – until you withdraw consent.
5) Sharing Data
We only share data with trusted service providers essential to running this site:
- Hosting provider (WordPress.org / hosting company).
- Email provider (for communication).
- Booking/payment processors (e.g., Calendly, Stripe, PayPal).
All providers comply with GDPR or have safeguards for international transfers (Standard Contractual Clauses).
6) Your Rights
Under GDPR, you have the right to:
- Access, rectify, or delete your personal data.
- Restrict or object to processing.
- Request portability of your data.
To exercise these rights, email us at info@therapybyieva.com.
7) Cookies
This site uses cookies for functionality and analytics. See our Cookie Policy for details.
8) International Transfers
Some providers (Google, Calendly, Mailchimp) may process data outside the EU. Safeguards such as Standard Contractual Clauses (SCCs) are applied.
9) Security
We implement technical and organizational measures to protect your data from unauthorized access, alteration, or loss.
10) Updates
This Privacy Policy may be updated. Changes will be posted here with the “Last updated” date above.