Privacy Policy

1. Data Controller

The person responsible for processing your personal data is Sofie Panfilova (hereinafter “we”, “us”), a clinical dietitian and the owner of sofievp.com. If you have questions about how we handle your data, you can reach us through the contact form on our website or via Telegram @sofievp.

2. What Data We Collect

We collect the minimum amount of data necessary to provide our services:

• Name and email address — when you fill out a contact form or subscribe to receive a free guide.
• Payment data — when you pay for services through Stripe. We do not store or have access to your credit card details — all payments are processed directly by Stripe.
• Analytics data — anonymous information about site visits (pages viewed, visit duration, device type, country) collected through Google Analytics 4.

3. How We Use Your Data

The data we collect is used exclusively for the following purposes:

• Responding to your inquiries through the contact form.
• Sending free nutrition guides that you have subscribed to.
• Processing payments for services.
• Analysing website traffic to improve content and user experience.

We do not sell or share your personal data with third parties for marketing purposes.

4. Cookies

Our website uses only essential cookies:

• Google Analytics 4 — analytics cookies for collecting anonymous visitor statistics (cookies: _ga, _ga_*). This data helps us understand which pages are most useful to visitors.
• Technical cookies — necessary for the proper functioning of the website.

We do not use advertising cookies or cookies that track users across other websites.

5. Email Communications

We use Brevo to send free guides and informational emails. By subscribing to a free guide, you agree to receive an email with the requested materials. We do not send spam, and we do not subscribe you to a regular mailing list without your explicit consent.

You can unsubscribe from any emails at any time by using the unsubscribe link included in every email or by contacting us directly.

6. Third-Party Services

Our website relies on the following third-party services, each of which has its own privacy policy:

• Google Analytics 4 — website traffic analytics. Google Privacy Policy.
• Stripe — payment processing. Stripe Privacy Policy.
• Brevo — email delivery. Brevo Privacy Policy.
• GitHub Pages — website hosting. GitHub Privacy Statement.

7. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

• Right of access — you can request information about what personal data we hold about you.
• Right to rectification — you can ask us to correct inaccurate or incomplete data.
• Right to erasure — you can request the deletion of your personal data.
• Right to data portability — you can request a copy of your data in a structured, commonly used format.
• Right to withdraw consent — you can withdraw your consent to data processing at any time.

To exercise any of these rights, contact us through the contact form on our website or via Telegram @sofievp. We will respond to your request within 30 days.

8. Data Retention

• Email addresses are stored until you unsubscribe from our mailing list or request deletion.
• Payment records are retained in accordance with applicable accounting and tax legislation requirements.
• Analytics data is automatically deleted by Google Analytics after the configured retention period (14 months).

9. Data Security

We take reasonable measures to protect your personal data. Our website uses HTTPS to encrypt data in transit. Payments are processed through Stripe, which is PCI DSS compliant. Access to your data is limited to the data controller (Sofie Panfilova) only.

10. Contact

If you have any questions about this privacy policy or how we process your data, please get in touch:

• Through the contact form on our website
• Telegram: @sofievp