Privacy Policy

This Privacy Policy describes how personal data of users of the website eulaliafotografia.com and the connected course platform is collected and processed.

Cirrenz Eulalia Twarog
Emil-Schmid-Str. 13
75378 Bad Liebenzell, Germany
VAT ID: DE357051460
Email: [email protected]

1. Data Controller

The controller of your personal data is:

Eulalia Twarog
Emil-Schmid-Str. 13, 75378 Bad Liebenzell
Email: [email protected]

2. Types of Personal Data Collected

3. Purposes of Data Processing

4. Legal Basis

5. Marketing to Existing Customers

If you purchase a course, we may use your email address to send you information about similar products. Each message contains an unsubscribe link allowing you to opt out at any time.

6. Cookies

We use cookies for technical, analytical, and marketing purposes. Users may adjust cookie settings in their browser.

7. Analytics and Marketing Tools

8. Data Recipients

9. Hosting & Server Infrastructure

9.1 Hetzner – server hosting

The website and parts of the database, including stored consents and form data, are hosted by Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany. Hetzner processes personal data on our behalf in accordance with Art. 28 GDPR.

9.2 Cloudflare – domain, DNS and CDN

Domain management, DNS, the content delivery network (CDN) and protection against attacks are provided by Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA. Data may be transferred to the USA. Where the relevant provider is certified under the EU-US Data Privacy Framework (DPF), the transfer is based on the European Commission's adequacy decision; additionally or otherwise, Standard Contractual Clauses (SCC) apply.

9.3 Bunny – CDN and media delivery

For delivering media and static content through a content delivery network we use BunnyWay d.o.o. (Bunny.net), Cesta komandanta Staneta 4A, 1215 Medvode, Slovenia. Bunny processes technical connection data on our behalf in accordance with Art. 28 GDPR.

9.4 Vercel – course platform hosting

The course platform, including logins and user accounts, is hosted by Vercel Inc., Walnut, CA, USA. Data may be transferred to the USA. Where the relevant provider is certified under the EU-US Data Privacy Framework (DPF), the transfer is based on the European Commission's adequacy decision; additionally or otherwise, Standard Contractual Clauses (SCC) apply.

10. Transactional Email Services

10.1 Resend

For sending password reset emails, login confirmations and account activation messages, we use Resend Inc., USA. Resend processes email addresses and technical delivery data under Art. 28 GDPR. Where Resend is certified under the EU-US Data Privacy Framework (DPF), transfers are based on the European Commission's adequacy decision; additionally or otherwise, Standard Contractual Clauses (SCC) apply.

11. Data Retention

Data is stored for the duration of the contract, for marketing purposes (until consent is withdrawn), and according to legal requirements.

12. User Rights

13. Data Security

We use SSL encryption and appropriate organisational and technical safeguards.

14. Complaints

You may submit a complaint to the competent data protection authority in Germany (BfDI).

15. Minors

Our website and courses are not intended for individuals under 16 years of age.

16. Changes to This Policy

The current version of this Privacy Policy is always available on this page.

17. Accessibility

As a micro-enterprise within the meaning of Section 2 No. 17 of the German Accessibility Strengthening Act (Barrierefreiheitsstärkungsgesetz, BFSG) – fewer than 10 employees and an annual turnover or balance sheet total of no more than EUR 2 million – we are, with regard to the provision of services, not subject to the obligations of this Act pursuant to Section 3 (3) BFSG. Nevertheless, we strive to make our website as accessible as possible for all users. If you encounter any barriers, please contact us at [email protected].

Updated: June 2026