Privacy Policy
OceanMinded (operated by Markus Mutter) takes the privacy of your personal data seriously. This policy explains what data we collect, how we use it, and what rights you have — in plain language, because that’s how we work.
This policy complies with the EU General Data Protection Regulation (GDPR) and the Spanish Organic Law on Data Protection and Digital Rights (LOPDGDD 3/2018).
1. Who Is Responsible for Your Data?
Data Controller:
Markus Mutter – OceanMinded
Chiclana de la Frontera, Andalusia, Spain
Email: hello@ocean-minded.eu
Website: www.oceanminded.eu
2. What Data We Collect and Why
| Data | Purpose | Legal Basis |
|---|---|---|
| Name, email address | Booking confirmations, programme communication | Contract performance |
| Health information (voluntarily provided) | Safety assessment for freediving & breathwork | Legitimate interest / explicit consent |
| Payment data | Processing bookings and refunds | Contract performance |
| IP address, browser data | Website analytics (anonymised where possible) | Legitimate interest |
| Email address (newsletter) | Sending updates, offers, and content | Consent |
We collect only what we need. We do not sell your data. Ever.
3. How Long We Keep Your Data
- Booking and payment records: 7 years (Spanish tax law requirement)
- Coaching and health records: 3 years after last session, unless you request earlier deletion
- Newsletter subscribers: Until you unsubscribe
- Website analytics: Maximum 14 months
4. Who We Share Your Data With
We only share your data with trusted third-party service providers necessary to operate our services:
- Payment processors (e.g. Stripe, PayPal) — for secure payment handling
- Email platforms (e.g. Mailchimp, ConvertKit) — for newsletters and booking confirmations
- Webflow — website hosting and form submissions
- Scheduling tools (e.g. Calendly) — for booking calls and sessions
- Google Analytics — for anonymised website usage analytics
All processors are contractually bound to GDPR-compliant data handling. We do not transfer your data outside the EU/EEA without appropriate safeguards in place.
We do not sell or share your personal data with third parties for marketing purposes.
5. Your Rights
Under GDPR and LOPDGDD, you have the right to:
- Access — request a copy of the personal data we hold about you
- Rectification — ask us to correct inaccurate or incomplete data
- Erasure — request deletion of your data (“right to be forgotten”)
- Restriction — ask us to limit how we process your data
- Portability — receive your data in a machine-readable format
- Object — object to processing based on legitimate interest
- Withdraw consent — at any time, where processing is based on consent (e.g. newsletter)
To exercise any of these rights, email hello@ocean-minded.eu. We will respond within 30 days.
If you are not satisfied with our response, you have the right to lodge a complaint with the Agencia Española de Protección de Datos (AEPD) at www.aepd.es.
6. Cookies
Our website uses cookies to ensure basic functionality and to understand how visitors use the site. For full details, please see our Cookie Policy.
- Essential cookies: Required for the site to function. Cannot be disabled.
- Analytics cookies: Help us understand site usage (anonymised). Only set with your consent.
7. Data Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. All payment processing is handled by PCI-DSS-compliant third-party providers. We never store full card details.
8. Changes to This Policy
We may update this policy from time to time. Any significant changes will be communicated via email or a notice on our website. The date at the top of this page always reflects the most recent version.
9. Contact
OceanMinded – Markus Mutter
Chiclana de la Frontera, Andalusia, Spain
Email: hello@ocean-minded.eu
Website: www.oceanminded.eu

