Privacy Policy

Privacy Policy

This website CristinaMichels.com and its associated website HealingColours.art (hereinafter jointly referred to as the “Website”) are owned and operated by Cristina Michels (hereinafter referred to as the “Owner”).

Personal data is processed in accordance with the Swiss Federal Act on Data Protection (FADP, RS 235.1) and its Ordinance.

This Privacy Policy applies solely to data collected online through the Website. It does not apply to data collected offline or through other channels.

Consent
By accessing the Website, you consent to this Privacy Policy and agree to its terms. If you do not agree with all of its terms, do not continue using the Website and its services.

Collection of personal data
The Data Owner collects and processes personal data only to the extent necessary to provide services or improve the user experience.

The data collected may include:

• First and last name
• Address
• Email address
• Phone number
• Payment details (managed by an external provider)
• Date, time, and place of birth (necessary for astrological services)
• Communications sent voluntarily (emails, messages, reviews, feedback)

Data is collected only to the extent necessary for the provision of services.

Purpose of processing
Personal data is processed for the following purposes:

• Execution of the contract and provision of the requested services
• Order and booking management
• Communication with the customer
• Event organization
• Billing and administrative management
• Service improvement
• Prevention of abuse or fraud
• Compliance with legal obligations

Processing is based on:

• contractual performance
• user consent (where required)
• the legitimate interest of the Data Controller
• legal obligations

Testimonials

Any testimonials or reviews may only be published with the explicit consent of the person concerned. It is always possible to request their modification or deletion.

Payments

Payments are processed through external providers (e.g., PayPal).
Payment data is transmitted via an encrypted connection directly to the payment provider and processed in accordance with the relevant privacy policy.

Disclosure to third parties
Personal data may be disclosed to:

• Technical service providers (hosting, IT, payment)
• Professional advisors (accountants, lawyers)
• Public authorities, if required by law

Data is not sold to third parties.

In the event of data being transferred abroad (e.g., to the United States), this is done in accordance with Articles 16 et seq. of the Swiss Federal Act on Data Protection (FADP), ensuring adequate contractual guarantees or transfers to countries recognized as having an adequate level of protection

Hosting and data storage
The Website is hosted on servers located in Switzerland.

Personal data is stored only for as long as necessary to achieve the purposes indicated above or to comply with legal obligations.

Google Analytics & Google Fonts
The Website may use services provided by Google (e.g., Google Analytics, Google Fonts).

These services may involve the transfer of data abroad (USA). The use of these services complies with the guarantees provided for by the LPD.

The user can disable Google Analytics using the opt-out tools provided by Google.

Log files
The Website uses technical logs that may include:

• IP address
• Browser type
• Internet provider
• Date and time of access
• Pages visited

This data is used for security and statistical analysis and is not combined with other personal data.

Cookies
The Website uses technical cookies and, where applicable, analytical cookies.

The user may:

• Disable cookies through browser settings
• Delete cookies at any time

If non-essential cookies are used, consent is requested via a banner in accordance with applicable legislation.

Rights of the data subject (pursuant to the LPD)
The user has the right to:

• Obtain information about the data processed
• Request its correction
• Request its deletion (within the limits permitted by law)
• Limit processing
• Object to processing
• Request the delivery or transmission of data

Requests must be sent to the Data Owner.
A response will be provided within the terms established by law.

GDPR Addendum – EU Residents
If services are offered to individuals residing in the European Union, personal data is processed in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR), where applicable under Article 3 GDPR.

EU residents have the right to:

• access their personal data
• request rectification or deletion
• restrict or object to processing
• request data portability
• withdraw consent at any time
• lodge a complaint with a competent supervisory authority

Processing is based on contract performance, consent, legal obligations, or legitimate interest (Art. 6 GDPR).

Any international data transfers are carried out in accordance with Articles 44 et seq. GDPR using appropriate safeguards.

Changes
The Data Owner reserves the right to change this Policy at any time.
The updated version will be published on the Website with an indication of the date.

Last update: 26 February 2026