Stunningspineglo.ddd
Disclaimer: Lifestyle scheduling and rhythm tips only—not medical, psychological, or legal advice. Individual results vary. CVR 37887366. Any paid service, price, and VAT on invoices are confirmed in writing before you are charged.

Legal · Denmark

Privacy policy

How we process personal data under the GDPR, the Danish Data Protection Act, and plain-language transparency.

GDPR Transparency Your rights

Free starter brief

Use the contact form or email us; we then send a short printable outline (anchors, energy pockets, one review prompt). Reply times vary. This is general lifestyle guidance—not therapy, medical advice, or a guaranteed outcome.

Request via contact form Email request

Last updated: 13 May 2026

1. Data controller

The controller responsible for personal data processed in connection with this website is:

Stunningspineglo.ddd
Sankt Jørgens Gade 119
5000 Odense
Denmark
Email: welcome@stunningspineglo.world
Phone: +45 22 81 83 26
CVR (Central Business Register): 37887366

Invoices and pre-contract information for Danish consumers will show this CVR together with VAT treatment as applicable to each transaction.

2. Applicable law in Denmark

Processing is governed primarily by Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“GDPR”).

Denmark has adopted supplementary national rules in the Danish Data Protection Act (databeskyttelsesloven; Act No. 502 of 23 May 2018 on supplementary provisions to the regulation on data protection, as amended), which supplements the GDPR in areas such as processing for journalistic, academic, artistic, or literary purposes, certain processing in employment relationships, and other topics where Member States may legislate under the GDPR. Where those topics are not relevant to this website, the GDPR remains the main frame of reference.

Rules on electronic communications and cookies are described in our Cookie policy and follow Danish implementation of Directive 2002/58/EC (ePrivacy), including the Danish executive order on information and consent for storage of or access to information in end-user terminal equipment, together with guidance from the Danish Data Protection Agency (Datatilsynet) and, for marketing aspects, the Danish Consumer Ombudsman (Forbrugerombudsmanden) where applicable.

3. Scope

This policy describes how we collect and process personal data when you visit stunningspineglo.world, use our contact channels, or interact with optional cookies and similar technologies. It is intended to meet our transparency duties under Articles 13 and 14 GDPR (information to data subjects), read together with the Danish Data Protection Act where national rules apply.

The policy applies to visitors, enquirers, and clients who interact with us through this domain. It does not cover processing by third-party platforms (for example embedded maps or font providers) except where we determine the purposes and means jointly with another controller or as described below.

4. Categories of personal data

Depending on how you interact with us, we may process:

  • Communication data: name, email address, telephone number if you provide it, and the content of your message.
  • Technical data: IP address, browser type, device type, referring URL, timestamps, and similar server log fields generated when you load pages or assets.
  • Cookie and preference data: records of your cookie choices stored locally in your browser (see our Cookie policy), and technical signals sent through Google Consent Mode v2 so optional Google tags can align with those choices without loading before you consent.

5. Purposes and legal bases

  • Responding to inquiries and delivering agreed services (Article 6(1)(b) GDPR): processing is necessary to take steps at your request prior to entering into, or performing, a contract for advisory or related services, or to answer pre-contractual questions.
  • Website operation and security (Article 6(1)(f) GDPR): we rely on a legitimate interest in operating a secure, stable website, including short-term logging for abuse prevention and troubleshooting, balanced against your interests and rights. Under Danish practice, legitimate interests are assessed with reference to Datatilsynet guidance on proportionality and transparency.
  • Non-essential cookies and similar technologies (Article 6(1)(a) GDPR and national ePrivacy rules): analytics or marketing tools are activated only after you give consent through the cookie banner (or equivalent), in line with Danish requirements for prior informed consent where consent is the legal basis.
  • Legal compliance (Article 6(1)(c) GDPR): where Danish or EU law requires retention, disclosure, or cooperation with competent authorities (for example tax, accounting, or court orders).

We do not seek to process special categories of personal data within the meaning of Article 9 GDPR. If you voluntarily include health or other sensitive information in a free-text message, we will only process it to handle your request and will ask you to minimise such content where possible.

6. Sources

We receive personal data directly from you (forms, email, phone) and indirectly through your device when you access our site (technical logs).

7. Recipients and processors

We do not sell your personal data. We may use processors (for example, hosting, email delivery, analytics if you consent, or embedded map providers) who process personal data on our behalf. With each processor we aim to conclude arrangements that meet Article 28 GDPR, including instructions, confidentiality, security, sub-processing rules, deletion or return of data, and audit cooperation, in a form appropriate to the size and nature of the processing.

Categories of recipients may include IT service providers, communications services, and professional advisers bound by confidentiality. Public authorities receive data only when legally required.

8. Transfers outside the European Economic Area

If a processor is located outside the EEA, we ensure a valid transfer mechanism under Chapter V GDPR (for example, Standard Contractual Clauses) supplemented by technical and organisational measures where required.

9. Retention

  • Inquiry emails: retained for up to twenty-four months after the last message in a thread unless a longer period is required for legitimate establishment, exercise, or defence of legal claims.
  • Server logs: typically rotated or deleted within ninety days unless longer retention is necessary for security investigations.
  • Cookie preference records: stored locally on your device until you clear site data or update choices.

10. Your rights under the GDPR (and Danish practice)

Subject to the conditions and limitations in the GDPR and the Danish Data Protection Act, you may have the following rights in respect of your personal data:

  • Right of access (Article 15) — to obtain confirmation of processing and a copy of certain information.
  • Right to rectification (Article 16) — to have inaccurate data corrected and incomplete data completed.
  • Right to erasure (“right to be forgotten”) (Article 17) — in specific circumstances.
  • Right to restriction of processing (Article 18) — in specific circumstances.
  • Right to data portability (Article 20) — where processing is based on consent or contract and is automated.
  • Right to object (Article 21) — including to processing based on legitimate interests, and to direct marketing where applicable.
  • Rights related to automated decision-making (Article 22) — we do not use this type of processing on this website.

Where processing is based on consent (Article 6(1)(a) GDPR), you may withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

To exercise any right, email welcome@stunningspineglo.world. We will respond without undue delay and in principle within one month, as required by Article 12 GDPR, unless the complexity of the request requires an extension (in which case we will inform you). We may request reasonable information to verify your identity before disclosing data or acting on a request.

11. Right to lodge a complaint (supervisory authority)

You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.

In Denmark, the supervisory authority is the Danish Data Protection Agency (Datatilsynet):
Carl Jacobsens Vej 35
DK-2500 Valby
Denmark
Website: www.datatilsynet.dk
Email: dt@datatilsynet.dk
Telephone: +45 33 19 32 00

You may also contact another EU/EEA supervisory authority if you prefer; a list is maintained by the European Data Protection Board.

12. Data protection officer

We have not appointed a data protection officer (DPO). Under Articles 37–39 GDPR, a DPO is required only where processing is carried out by a public authority or body (with exceptions), or where core activities consist of processing operations which require regular and systematic monitoring of data subjects on a large scale, or consist of processing on a large scale of special categories of data. Our current processing does not meet those thresholds. If that changes, we will publish an update here.

13. Security and personal data breaches

We implement appropriate technical and organisational measures in accordance with Article 32 GDPR, including access control, integrity of systems, and resilience. No method of transmission over the Internet is completely secure; you should use updated software and avoid sending unnecessary sensitive identifiers.

If a personal data breach is likely to result in a risk to your rights and freedoms, we will notify Datatilsynet without undue delay and, where feasible, within 72 hours in line with Article 33 GDPR, unless the breach is unlikely to result in a risk. Where the breach is likely to result in a high risk to you, we will also communicate with affected data subjects where required by Article 34 GDPR, unless an exception applies.

14. Automated decision-making

We do not use automated decision-making, including profiling, which produces legal or similarly significant effects concerning you within the meaning of Article 22 GDPR.

15. Children

This site is aimed at adults. We do not knowingly collect personal data from children under 13 (or higher age thresholds where national Danish rules on consent for information society services apply) without appropriate parental authority. If you believe we have received a child’s data in error, contact us and we will delete it promptly.

16. Changes

We may update this policy to reflect legal or operational changes. Material updates will be indicated by revising the “Last updated” date at the top.

17. Contact about privacy

For any question about this policy or our processing of personal data, contact us at the details under section 1. This document is provided for transparency and does not constitute individual legal advice.

Return home Contact