Yoga Bible

Privacy Policy

Here we explain how we process your personal data when you use our websites, sign up for training programs/courses, participate in classes, purchase digital services, work with us, or use Namaste Online.

Data controller: Hot Yoga Copenhagen ApS CVR: 41295252 VAT: DK41295252
Address: Torvegade 66, 1400 Copenhagen K, Denmark Phone +45 53 88 12 09 Email info@yogabible.dk
Applies to: YogaBible.dk and associated brands/services (see section 2)
Last updated:
Important: We only process personal data when we have a legal basis (e.g., agreement, consent, legal obligation, or legitimate interest). We only collect what is necessary, and we protect your data.
1) What is personal data?

Personal data is information that can identify you directly or indirectly. This could be your name, email address, telephone number, IP address, purchase history, participation in teams, videos/photos in which you can be recognized, etc.

2) Who does this privacy policy apply to?

The policy applies to all our brands/services when Hot Yoga Copenhagen ApS is the data controller — including YogaBible.dk and YogaBible.com as well as our sub-brands (Hot Yoga Copenhagen, Vibro Yoga, Namaste Studios, and Namaste Online).

If a third party (e.g., an external partner) is the data controller for a specific activity, you will be informed separately.

3) What data do we collect?

A) Contact and account information

  • Name, email, phone number
  • Address (if relevant for invoice/contract)
  • Login/account information (if you have access to a platform)

B) Purchase and payment

  • Purchase history, invoice information, payment status, installment agreements, and fees
  • We do not normally receive your full card details — these are handled by the payment provider.

C) Participation, training, and certification

  • Registrations, attendance, class/workshop participation
  • Educational progression, assignments, feedback, certificate status
  • Information necessary for issuing certificates and documentation (including any Yoga Alliance-related documentation)

D) Communication

  • Emails, messages, form submissions, and customer service history
  • Marketing opt-in/opt-out (newsletter, campaigns)

E) Photo, video, and audio (if applicable)

  • Recordings from classes, events, and Namaste Online (see section 5)
  • Photo production (Yoga Photography): images, deliveries, and any selection/approval workflow

F) Technical data (website)

  • IP address, device/browser, sessions, error logs
  • Cookies and similar technologies (see section 10)
Health information: As a rule, we do not ask for health data. If you voluntarily share information about injuries/pregnancy/health in order to ensure appropriate adjustments to teaching, we will only process this information to the extent necessary and with appropriate protection.
4) Purpose & legal basis (why and on what basis?)

We typically process data for these purposes

  • Providing services (classes, courses, YTT, mentorship, digital products) — basis: agreement/contract.
  • Administration (bookings, attendance, program flow, certification, support) — basis: agreement and legitimate interest.
  • Payment, invoicing, and accounting — basis: agreement and legal obligation.
  • Communication (practical information, changes, service messages) — basis: agreement/legitimate interest.
  • Marketing (newsletter, offers) — basis: consent or legitimate interest where legal, always with easy unsubscription.
  • Security and prevention of abuse — basis: legitimate interest.
  • Improvement of services (quality, feedback, statistics) — basis: legitimate interest and/or consent depending on the method.
  • Recruitment (Careers) — basis: legitimate interest and/or consent (see also section 8 on retention).
Consent can be withdrawn: If the processing is based on consent (e.g., marketing), you can withdraw your consent at any time. This does not affect the lawfulness of previous processing.
5) Recordings, photos & live stream (our standard)

Standard: In our environment, photo/video/audio recordings may be made in connection with teaching, training, and events. This means that you may be visible or audible in the material.

Why do we record?

  • Teaching and development of educational materials
  • Documentation and quality assurance
  • Marketing and sales of future education programs/courses

Namaste Online (live-only)

  • Namaste Online is live-streaming, and participants may be visible/audible in the stream.
  • You may not record, copy, re-upload, or redistribute our stream or teaching materials.

If you don't want to participate

  • Please notify us in advance: Write to info@yogabible.dk (preferably ≥ 24 hours in advance).
  • We try to adapt: Camera-free positioning / angle adjustment.
  • Limitation: During group activities, we cannot always guarantee complete exclusion from all angles.
Yoga Photography: We typically deliver 15–20 high-resolution, edited images. Delivery can take up to 30 days. Payment is due before delivery. Rights of use are subject to the specific agreement (typically personal, business, and commercial online use), and crediting may be part of the agreement.
6) Sharing of data & data processors (suppliers)

We only share your data when necessary to provide our services, comply with legal requirements, or protect our legitimate interests. When we use suppliers (data processors), we ensure appropriate agreements are in place where required.

Our typical systems and suppliers (examples)

  • Booking/membership/payment (studio): Mindbody (for handling bookings, memberships, attendance, and related operations).
  • Invoicing/finance: e-conomic (invoicing and accounting).
  • Payment link/terminal (physical payment): Zettle (payment and transaction management).
  • Website/CMS & forms: Squarespace (operation of YogaBible.dk and page functions).
  • Email operations: Google Workspace/Gmail (communication and customer service).
  • Email campaigns (ad hoc): GMass and/or Squarespace email features (e.g., campaigns/mass mailings).
  • Analytics: Google Analytics and Squarespace Analytics (traffic and performance measurement).
  • Marketing tracking: Meta Pixel (measurement/advertising, subject to consent; see section 10).
Important: We do not share personal data with "random" third parties. Sharing only takes place when necessary and legal — e.g., to deliver what you have purchased, send an invoice, or operate the site. You can always ask us for a current list of significant data processors.
7) Transfer outside the EU/EEA

Some suppliers (e.g., tech and analytics providers) may have operations or subcontractors outside the EU/EEA. If we transfer personal data outside the EU/EEA, we ensure a legal basis for the transfer and appropriate security measures (typically standard contracts and supplementary measures where relevant).

8) Storage, deletion & retention

We store personal data for as long as necessary for the purpose and then delete or anonymize it — unless we are required to store data for longer (e.g., for accounting purposes).

Typical retention periods (adjusted as needed)

  • Accounts/invoices/payments: typically 5 years from the end of the financial year (legal requirement).
  • Education administration: as long as necessary to administer and document education/certification.
  • Customer service and dialogue: typically 12–24 months depending on the type of case.
  • Marketing list: until you unsubscribe or we no longer have a legal basis.
  • Careers (applicants): typically up to 6 months after recruitment is completed, unless longer storage has been agreed.
  • Recordings: stored for as long as relevant for the purpose (teaching/production/marketing) and with appropriate access control.
Please note: We cannot always delete invoice/accounting-related data before the statutory retention periods expire.
9) Your rights

You have rights under the GDPR. Depending on the situation, you may request:

  • Insight into your data
  • Correction of incorrect data
  • Deletion (where we have no legal requirement/basis for storage)
  • Restriction of processing
  • Data portability (where applicable)
  • Objection to processing based on legitimate interest
  • Withdrawal of consent (e.g., marketing)

Please send your request to info@yogabible.dk. For security reasons, we may ask for appropriate identification.

10) Cookies & tracking (Google Analytics, Meta Pixel, Squarespace)

We use cookies and similar technologies to make the website work, improve performance, and (if you agree) measure marketing and traffic.

We typically use

  • Squarespace (necessary cookies): to make the site work properly and securely.
  • Google Analytics (statistics): helps us understand how the site is used (traffic, pages, behavior).
  • Meta Pixel (marketing): helps measure ads and retargeting/optimization on Meta platforms.
  • Squarespace Analytics: supplementary statistics/insights into site performance.

Consent

Necessary cookies may be active to ensure functionality and security. Statistics and marketing cookies are only used to the extent that it is legal — and where required, only with your consent.

Cookie choices: You can typically change or withdraw your cookie consent via the cookie banner on the site (if enabled) and/or via your browser settings. If you disable cookies, parts of the site may not function as well.
11) Security

We protect your data with appropriate technical and organizational measures. This includes, among other things, access control, restriction of access to a "need-to-know" basis, updating of systems, and secure handling of data by suppliers.

No system is 100% secure, but we take data security seriously and work professionally to ensure it.

12) Contact, complaints & changes

Contact us

Complaint

If you are dissatisfied with our processing of your personal data, we would like to try to resolve the issue first. You also have the right to complain to the Data Protection Authority.

Changes

We may update this privacy policy as necessary (e.g., changes in suppliers or legislation). The latest version is always available on our website.

GDPR request

Would you like to exercise your rights (access, deletion, correction, etc.)? Write to us — we will respond quickly and professionally.

Submit GDPR request See your rights