Privacy Policy

As of May 2026 · This policy applies to the website webinar.marcolifecoach.com and all associated registration and workshop processes. It provides information about the nature, scope and purposes of the processing of personal data in accordance with the EU General Data Protection Regulation (GDPR), the Swiss Federal Act on Data Protection (FADP / revDSG / nDSG), and where applicable UK GDPR.

Contents

Controller
What data we process
Purposes and legal bases
Services & third-party providers
Tracking & advertising cookies
Data transfers to the USA
Storage periods
Your rights
Data security
Changes to this policy

1. Controller

The data controller within the meaning of Art. 4 No. 7 GDPR and Art. 5 lit. j FADP is:

Marco Isenschmid

Rainacher 43

6243 Egolzwil

Switzerland

Email for data protection requests: marco@marcolifecoach.com

2. What data we process

2.1 When registering for the workshop or waitlist

When you sign up via the registration or waitlist form for „Lebensnord live", we process the following data that you actively provide:

First name
Last name
Email address
Phone number (optional)

2.2 Automatically collected data

Each time our page is loaded and when the form is submitted, additional technically necessary data is processed:

IP address (for spam prevention and error analysis)
Browser type and version (user agent)
Browser language and timezone
Date and time of registration
Referrer URL (the page you came from)
Landing page URL including query parameters
Marketing tracking parameters (UTM parameters such as utm_source, utm_medium, utm_campaign as well as advertising click IDs such as fbclid, gclid, msclkid, ttclid, li_fat_id, gbraid, wbraid)
Page language preference (DE or EN) — set by your choice of landing page

2.3 Browser storage (LocalStorage)

For source attribution of your registration, we store the marketing parameters mentioned in 2.2 in your browser's LocalStorage (storage period: up to 90 days). This storage is used exclusively on our domain and is not read by third parties.

3. Purposes and legal bases

Workshop delivery — registration, sending access credentials, reminder emails, providing the Zoom webinar. Legal basis: Art. 6(1)(b) GDPR (performance of contract) and Art. 31(2)(a) FADP.
Ad performance measurement — transmitting registration events to advertising platforms (Meta) to optimize our campaigns. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in effective advertising) and Art. 31(1) FADP.
Spam and abuse prevention — checking registrations for bots and mass submissions. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in system integrity).
Compliance with legal obligations — retention requirements, responding to official requests. Legal basis: Art. 6(1)(c) GDPR.

4. Services & third-party providers

We use the following processors. All providers have been carefully selected and contractually committed to data protection compliance.

Netlify (hosting)

Our website is hosted by Netlify, Inc. (USA). When the page is loaded, connection data (in particular IP address) is processed to the extent technically necessary to deliver the content.

Provider: Netlify, Inc., 44 Montgomery Street, Suite 300, San Francisco, CA 94104, USA · Privacy policy

ActiveCampaign (email & CRM)

Your registration data and workshop assignment are stored in ActiveCampaign. Through ActiveCampaign we send confirmation and reminder emails (workshop sequence, up to 11 emails over 12 days). To improve deliverability, ActiveCampaign records opens, clicks and bounces.

Provider: ActiveCampaign LLC, 1 N Dearborn St, 5th Floor, Chicago, IL 60602, USA · Privacy policy

Zoom (webinar platform)

The live workshops are held via Zoom. Upon registration, first name, last name and email address are transmitted to Zoom to generate your personal participation link. During the workshop, Zoom may additionally process connection data, audio/video (if you activate them), chat messages and participation statistics.

Provider: Zoom Video Communications, Inc., 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA · Privacy policy

Meta Pixel & Conversions API (ad tracking)

The Meta Pixel is integrated on this page. It transmits a „PageView" event when the page loads and a „Lead" event upon successful registration to Meta Platforms, Inc. Transmitted data includes: cookie IDs (_fbp, _fbc), advertising click ID (fbclid), browser data, page URL, and a hashed (irreversibly encrypted) value of email, first name, last name and IP address — the latter only server-side via the Conversions API to improve match quality. This data is used by Meta to measure performance and optimize our advertising.

Provider: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland (for EU/Switzerland) · Privacy policy · Manage ad preferences

Google Fonts (typefaces)

We embed the fonts „Cormorant Garamond", „Inter" and „Caveat" via Google Fonts. When the page is loaded, your IP address is transmitted to Google so that your browser can load the fonts. According to Google, no storage takes place for advertising purposes.

Provider: Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland · Privacy policy

Cloudflare Turnstile (bot protection)

On the registration form we use Cloudflare Turnstile, a captcha-free alternative for bot defense. When the form loads, a small script from Cloudflare runs that analyzes browser properties and behavioral indicators to block bot submissions. Transmitted data: IP address, browser data, and a technical challenge token. No persistent cookies are set.

Provider: Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA · Privacy policy

5. Tracking & advertising cookies

We do not use a cookie consent banner. As a result, the tracking services mentioned under point 4 (in particular Meta Pixel and LocalStorage-based marketing attribution) are active from the first page load.

We base this processing on our legitimate interest under Art. 6(1)(f) GDPR and Art. 31(1) FADP in economically viable reach and advertising performance measurement for our free workshop. You may object to this processing at any time — see point 8.

For UK visitors: we apply the same legitimate-interest basis under UK GDPR and PECR, given that no marketing cookies are set prior to your active form submission and that the data processed for ad measurement is technically required for fraud prevention and campaign attribution.

How to prevent tracking anyway:

Browser settings: block third-party cookies (possible in all modern browsers).
Install browser extensions such as uBlock Origin, Privacy Badger or Ghostery.
Disable ad preferences directly at Meta: facebook.com/adpreferences
Use your browser in incognito / private mode — prevents persistent storage.

6. Data transfers to the USA

Several of the providers mentioned under point 4 (Netlify, ActiveCampaign, Zoom, Meta, Google) process data in the USA or may transfer it there. Under data protection law, the USA is considered a third country without a generally adequate level of protection.

Transfers take place on the basis of the EU-U.S. Data Privacy Framework (adequacy decision of the EU Commission of 10 July 2023) or — where providers are not certified — on the basis of EU Standard Contractual Clauses under Art. 46(2)(c) GDPR.

You should be aware that US authorities may, under certain conditions, gain access to data stored at US providers without effective legal remedies always being available against this.

7. Storage periods

Registration data in ActiveCampaign: until you unsubscribe from our list or revoke consent — or until the expiry of legal retention periods.
Zoom registration: 30 days after the workshop, then deletion.
Server logs (IP, user agent): automatically deleted by Netlify after 30 days.
Marketing attribution in LocalStorage: maximum 90 days, then automatically deleted.
Meta cookies (_fbp, _fbc): 90 days from last page load, then automatically deleted. _fbc is only set if you arrive via a Meta ad (click ID).
Meta Pixel data: retention according to Meta policies (typically up to 24 months). Hashed personal data (email, name) is discarded by Meta after a maximum of 90 days for matching purposes.

8. Your rights

Under GDPR, FADP, and UK GDPR you have the following rights vis-à-vis the controller at any time:

Access to the data stored about you (Art. 15 GDPR / Art. 25 FADP)
Rectification of inaccurate data (Art. 16 GDPR / Art. 32(1) FADP)
Erasure of your data, unless legal retention obligations apply (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Data portability (Art. 20 GDPR / Art. 28 FADP)
Objection to processing based on legitimate interest — in particular against ad tracking (Art. 21 GDPR)
Withdrawal of consent with effect for the future
Right to lodge a complaint with a supervisory authority — in Switzerland with the Federal Data Protection and Information Commissioner (FDPIC / EDÖB); in Germany with the relevant state data protection authority; in Austria with the Data Protection Authority; in the UK with the Information Commissioner's Office (ICO); in other EU member states with the national data protection authority listed by the EDPB.

To exercise your rights, an informal email to marco@marcolifecoach.com is sufficient.

Unsubscribe from emails Every one of our workshop emails contains an „unsubscribe" link at the end. One click is enough — your data is removed from the sending list immediately.

8.1 Right to erasure — direct request

If you wish us to delete your data from all connected systems (email lists, Meta ad platform, Zoom webinar platform), send us a short email to marco@marcolifecoach.com. The deletion covers:

Contact data in our CRM (ActiveCampaign)
Workshop registration in Zoom
Hashed identifiers on the Meta ad platform (via automated deletion through the Meta Datasets API)

Deletion takes place within 30 days of receipt of the request. You will receive confirmation by email.

9. Data security

Your data is transmitted via a TLS-encrypted connection (HTTPS, recognizable by the padlock symbol in the address bar). We take technical and organizational measures to protect your data against unauthorized access, loss and manipulation. However, absolute security cannot be guaranteed when transmitting data over the internet.

10. Changes to this policy

This privacy policy will be updated as soon as legal requirements or our processing change. The version published on this page applies at any given time. Version status: May 2026 (Rev. 2 — extended tracking transparency, English edition).