Privacy Policy
Effective date: 25.06.2026
Controller: TheWeekendClimber - Sole Proprietor
Address: TheWeekendClimber, 6020 Innsbruck, Austria
Email: toli@theweekendclimber.com
Jurisdiction: Innsbruck, Austria
Data Protection Law: General Data Protection Regulation (GDPR, EU 2016/679) and Austrian Data Protection Act (DSG).
1. Purpose of this Policy
This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website, purchase digital products, book a free 1:1 call, upload documents, or otherwise interact with our services.
"Personal data" means any information relating to an identified or identifiable person as defined in Article 4 (1) GDPR. By using this website, you agree to this Privacy Policy.
2. Data Controller and Contact
The responsible entity (Controller) within the meaning of Article 4 (7) GDPR is:
TheWeekendClimber - Sole Proprietor
TheWeekendClimber, 6020 Innsbruck, Austria
Email: toli@theweekendclimber.com
We currently have no appointed Data Protection Officer because we are not legally required to do so. For all data protection inquiries, please contact us via email.
3. Categories of Personal Data We Process
We may process the following categories of data depending on how you interact with us:
- Website and technical data: IP address, date and time, browser type and version, operating system, referrer URL, pages visited, time zone, and cookie identifiers.
- Account and purchase data: Name, email address, billing address, order details, product access information, and payment confirmation details.
- Form and document uploads (Tally.so): Any data or files you voluntarily provide when booking a call or uploading documents, such as photos, measurements, or plans.
- Scheduling data: Information needed to arrange and manage 1:1 calls, for example name, email, and preferred time.
- Communication data: Messages you send us by email or contact forms.
- Marketing data: Newsletter subscriptions, consent preferences, and email open or click statistics if you opt in.
We do not knowingly collect data from children under 18 years of age.
4. Purposes and Legal Bases of Processing (Art. 6 GDPR)
We process personal data only for legitimate purposes and on valid legal bases.
- Operating and securing the website, including displaying pages, preventing abuse, and managing cookies on the basis of Art. 6 (1)(f) GDPR, legitimate interest.
- Fulfilling contracts, including processing purchases, delivering digital products, and providing customer support on the basis of Art. 6 (1)(b) GDPR.
- Managing bookings, uploaded documents, and 1:1 calls on the basis of Art. 6 (1)(b) GDPR and, where necessary, Art. 6 (1)(f) GDPR.
- Sending newsletters or marketing emails only with your consent on the basis of Art. 6 (1)(a) GDPR.
- Meeting legal and accounting obligations on the basis of Art. 6 (1)(c) GDPR.
You may withdraw consent at any time without affecting prior lawful processing.
5. Service Providers and Data Processors
To operate efficiently, we use trusted third-party services that process data on our behalf under data processing agreements (Art. 28 GDPR) or as independent controllers where applicable.
(a) Kajabi, LLC
Platform provider hosting our website, checkout, videos, and email automation. Kajabi may process technical and account data on servers located in the USA under Standard Contractual Clauses (SCCs). Privacy Policy: https://kajabi.com/policies/privacy
(b) Tally.so
Form service used to collect uploaded documents or responses before booking a call. Data entered through Tally.so forms is stored securely on their servers, with EU data centers when possible. Privacy Policy: https://tally.so/privacy
(c) Google Calendar / Google LLC
Used to manage and synchronize 1:1 call appointments. When you book a session, your name, email, and chosen time slot may be stored in Google Calendar. Google LLC is based in the USA and complies with the EU-U.S. Data Privacy Framework. Privacy Policy: https://policies.google.com/privacy
(d) Payment Processors (via Kajabi)
Payments may be handled by Stripe or PayPal, which process data as independent controllers. We receive only limited transaction details required for delivery and accounting.
Stripe Privacy Policy: https://stripe.com/privacy
PayPal Privacy Policy: https://www.paypal.com/webapps/mpp/ua/privacy-full
(e) Optional future services
We may integrate additional EU-compliant tools for email delivery, analytics, video hosting, or CRM. All providers will be contractually bound to protect your data according to GDPR standards.
6. Cookies and Similar Technologies
We use cookies and comparable technologies to operate and improve our website.
- Essential cookies: required for site operation, login, checkout, and security.
- Analytics cookies: used only with your consent.
- Marketing cookies: used only with your consent.
When you first visit, a cookie banner appears allowing you to accept or reject non-essential cookies. You can revoke consent or change settings anytime in your browser. Blocking essential cookies may limit website functionality.
7. Communication and Emails
Transactional emails such as purchase confirmations and access details are necessary to fulfill the contract.
Marketing emails are sent only after consent. You can unsubscribe anytime via the link in each email or by contacting us.
8. Data Transfers Outside the EEA
If data is transferred outside the European Economic Area (EEA), we ensure an adequate level of protection via the EU-U.S. Data Privacy Framework or EU Standard Contractual Clauses (SCCs) approved by the European Commission.
9. Data Retention
We store personal data only as long as necessary for the intended purpose or as required by law.
- Communication and call records: up to 24 months after last contact.
- Marketing and newsletter data: until consent is withdrawn.
- Technical logs: up to 12 months unless needed longer for security.
- Uploaded documents: deleted after review or within 6 months unless explicitly agreed otherwise.
After expiry, data is deleted or anonymized.
10. Your Data Protection Rights (Art. 15-22 GDPR)
You have the right to:
- Access your personal data (Art. 15)
- Rectify inaccurate data (Art. 16)
- Erase data, right to be forgotten (Art. 17)
- Restrict processing (Art. 18)
- Object to processing based on legitimate interests (Art. 21)
- Data portability (Art. 20)
- Withdraw consent at any time (Art. 7 (3))
To exercise your rights, please contact us via toli@theweekendclimber.com. We may request identity verification.
If you believe we have processed your data unlawfully, you may complain to the Austrian Data Protection Authority (DSB):
Barichgasse 40-42, 1030 Vienna, Austria
Website: https://www.dsb.gv.at
Email: dsb@dsb.gv.at
11. Security Measures
We use technical and organizational measures to protect your data, including HTTPS encryption, restricted access, and secure storage. However, no system is completely secure, so please protect your login credentials and devices.
12. Social Links and Embedded Content
Our website may include external links or embedded videos, for example YouTube or Instagram. Once you click or load such content, the external provider may collect data under its own privacy policy. We do not control or assume responsibility for these third-party sites.
13. No Sale of Personal Data
We do not sell, rent, or trade your personal data to third parties.
14. Changes to This Privacy Policy
We may update this policy occasionally. The most current version will always be available on this website with its effective date. Material changes will be clearly indicated.
15. Contact
For any data protection questions or requests, please contact:
TheWeekendClimber - Sole Proprietor
TheWeekendClimber, 6020 Innsbruck, Austria
Email: toli@theweekendclimber.com