Privacy Policy
Soul-Connecting Spaces AB | Last updated: 24 March 2026
This Privacy Policy explains how Soul-Connecting Spaces AB ("we", "us", or "our") collects, uses, and protects your personal data when you visit our website or sign up for our newsletter. We are committed to handling your data responsibly and in compliance with the General Data Protection Regulation (GDPR) and applicable Swedish data protection law.
​
1. Who we are
Soul-Connecting Spaces AB is the data controller responsible for your personal data.
If you have any questions about this policy or how we handle your data, please contact us at:
Soul-Connecting Spaces AB
Email: hello@soulconnectingspaces.com
2. What data we collect
Email addresses
When you sign up for our newsletter, we collect your email address. This is provided voluntarily by you.
Phone Number
We collect your phone number at the time of booking to confirm your reservation and contact you with any booking-related updates. This information is stored securely and will not be used for any other purpose without your consent.
Account information
If you create an account on our website, we collect the information you provide during registration, which may include your name, email address, and password.
Cookies and analytics data
We use cookies and similar tracking technologies to understand how visitors use our website. This may include:
Pages visited and time spent on the site
Browser type and device information
Approximate geographic location (country/city level)
Referral source (how you found our site)
This data is collected through Google Analytics and Wix's built-in analytics tools. You can opt out of analytics cookies via our cookie consent banner.
​
3. How we use your data
We use your personal data only for the purposes it was collected for:
Email address: to send you our newsletter and updates about our work
Account information: to provide access to account-specific features on the website
Analytics data: to understand how our website is used and improve the user experience
We do not sell your personal data to third parties. We do not use your data for automated decision-making or profiling.
​
4. Legal basis for processing
We process your personal data on the following legal bases under GDPR:
Consent (Article 6(1)(a)): for newsletter subscriptions and non-essential cookies. You can withdraw your consent at any time.
Legitimate interests (Article 6(1)(f)): for basic website analytics to improve our service, where this does not override your rights and interests.
​
5. Third-party services and data transfers
Substack
Our newsletter is managed through Substack, Inc., a company based in the United States. When you subscribe to our newsletter, your email address is stored on Substack's servers in the United States.
Substack complies with GDPR through Standard Contractual Clauses (SCCs) approved by the European Commission, which provide appropriate safeguards for the transfer of personal data outside the EU/EEA. For more information, see Substack's Privacy Policy at substack.com/privacy.
You can unsubscribe from the newsletter at any time by clicking the unsubscribe link included in every email.
​
Wix
Our website is hosted by Wix.com Ltd. Wix may process certain technical data (such as IP addresses and usage logs) as part of hosting our website. Wix complies with GDPR. For more information, see Wix's Privacy Policy at wix.com/about/privacy.
Google Analytics
We use Google Analytics to collect anonymised data about how visitors use our website. Google may transfer this data to servers in the United States. Google complies with GDPR through Standard Contractual Clauses. You can opt out of Google Analytics tracking by using the Google Analytics Opt-out Browser Add-on (tools.google.com/dlpage/gaoptout) or by declining analytics cookies in our cookie consent banner.
​
6. Cookies
We use the following types of cookies on our website:
Essential cookies: required for the website to function. These cannot be disabled.
Analytics cookies: help us understand how visitors use the site (Google Analytics, Wix Analytics). These are only set with your consent.
You can manage your cookie preferences at any time through the cookie settings banner on our website. For more information about cookies, visit allaboutcookies.org.
​
7. How long we keep your data
Email addresses: kept for as long as you remain subscribed to our newsletter. Deleted promptly upon unsubscribe.
Account information: kept for as long as your account is active. You may delete your account at any time.
Analytics data: retained in aggregated, anonymised form for up to 26 months, in line with Google Analytics default settings.
​
8. Your rights under GDPR
As a resident of the EU/EEA, you have the following rights regarding your personal data:
Right of access: you can request a copy of the personal data we hold about you.
Right to rectification: you can ask us to correct inaccurate or incomplete data.
Right to erasure: you can ask us to delete your personal data (the "right to be forgotten").
Right to restrict processing: you can ask us to limit how we use your data.
Right to data portability: you can request your data in a structured, machine-readable format.
Right to object: you can object to processing based on legitimate interests.
Right to withdraw consent: where processing is based on consent, you can withdraw it at any time without affecting the lawfulness of prior processing.
To exercise any of these rights, please contact us at: hello@soulconnectingspaces.com
You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY) at imy.se.
​
9. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the "last updated" date at the top of this page. We encourage you to review this policy periodically.
​
10. Contact us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Soul-Connecting Spaces AB
Email: hello@soulconnectingspaces.com