PRIVACY POLICY – SILENT MOMENTS

Last updated: 11 February 2026

1. Data Controller

Silent Sessions Oy Business ID: 3592682-3 Bulevardi 11 A 13 00120 Helsinki, Finland Email: contact@silentsessionsofficial.com

Silent Sessions Oy operates under the marketing name Silent Moments and acts as the data controller for personal data described in this Privacy Policy.

2. Scope of This Policy

This Privacy Policy explains how we collect, use, store, and protect personal data in connection with:

  • wellness sessions and events (including Silent Yoga and similar services)

  • bookings and customer communication

  • website use and related services.

We process personal data in accordance with:

  • the EU General Data Protection Regulation (GDPR)

  • applicable Finnish data protection legislation

  • other relevant laws and regulations.

3. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

Identification and Contact Information

  • name

  • email address

  • phone number

  • billing details where applicable.

Booking and Service Data

  • reservation details

  • participation information

  • customer communication records.

Technical Website Data

  • IP address and device/browser information

  • website usage information collected via essential cookies.

We do not intentionally collect health data, sensitive personal data, or personal data through headphones used during sessions.

4. Purposes and Legal Basis for Processing

Personal data is processed for the following purposes:

Contract Performance

  • managing bookings and participation

  • delivering wellness services

  • customer communication.

Legal Obligations

  • accounting and financial reporting requirements

  • compliance with applicable laws.

Legitimate Interests

  • maintaining service quality and security

  • resolving customer service matters

  • improving operational processes.

Personal data will not be used for direct marketing unless explicit consent has been obtained.

5. Sources of Personal Data

Personal data is primarily collected:

  • directly from customers during booking

  • via the website booking system

  • through customer communications.

6. Data Sharing and Transfers

Personal data may be processed by carefully selected service providers, including:

  • website hosting providers (e.g. Squarespace)

  • booking and payment service providers

  • accounting and IT service providers.

Such providers process data only on our behalf and under appropriate contractual safeguards.

We do not sell personal data or disclose it for third-party marketing purposes.

Where personal data is transferred outside the European Economic Area (EEA), appropriate safeguards such as standard contractual clauses are applied where required.

7. Data Retention

Personal data is retained only as long as necessary for:

  • providing services and managing customer relationships

  • fulfilling legal obligations (e.g. accounting requirements)

  • resolving potential disputes.

Data no longer required is securely deleted or anonymised.

8. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • access control and authentication measures

  • secure systems and data storage

  • organisational confidentiality practices.

Access to personal data is restricted to authorised personnel only.

9. Photography and Event Media

Photos or videos may occasionally be taken during sessions.

Identifiable images or recordings of individuals will not be used for marketing or publication without prior consent.

Participants may request not to appear in such materials.

10. Data of Minors

Participation of minors requires guardian consent.

Where personal data of minors is processed, additional care is taken to ensure compliance with applicable data protection requirements.

11. Data Subject Rights

Under applicable data protection laws, individuals have the right to:

  • access their personal data

  • request correction of inaccurate data

  • request erasure where applicable

  • restrict or object to processing

  • withdraw consent where processing is consent-based

  • lodge a complaint with a supervisory authority.

Requests should be directed to: contact@silentsessionsofficial.com

We aim to respond within one month of receiving a valid request.

12. Cookies and Website Technologies

Our website is hosted on Squarespace and uses cookies and similar technologies to:

  • ensure functionality and security

  • enable booking services

  • maintain website performance

  • analyse general usage trends where applicable.

Further details are provided in our Cookie Policy.

13. Changes to This Privacy Policy

Silent Sessions Oy reserves the right to update this Privacy Policy as necessary to reflect legal, operational, or technical changes.

The latest version will always be available on our website.