Soul Spark Header Logo
Login

LOGIN

Privacy-Policy

 

Privacy Policy

1. Introduction

We take the protection of your personal data very seriously. This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website or interact with us.

We comply with the applicable data protection laws, including:

  • The UK General Data Protection Regulation (UK GDPR)

  • The Data Protection Act 2018 (DPA 2018)

  • Where relevant, the EU General Data Protection Regulation (EU GDPR)

2. Controller

The controller responsible for data processing on this website is:E-Mail: [email protected]

“Controller” means the natural or legal person who determines the purposes and means of processing personal data.

3. Data We Collect

  • Data you provide to us directly (e.g. via contact forms, newsletter signup).

  • Technical data collected automatically (e.g. browser type, operating system, IP address, time of access).

  • Data collected via third-party services integrated on our website (e.g. YouTube, Meta/Facebook/Instagram).

4. Newsletter Services (MailerLite / Mailjet)

If you subscribe to our newsletter, we use the services of external providers to deliver the newsletter.

These providers process your data only for the purpose of sending our newsletters and in compliance with data protection regulations.

Legal basis: Your consent (Art. 6(1)(a) UK GDPR / EU GDPR). You can withdraw your consent at any time, for example by clicking “unsubscribe” in the newsletter.

5. Data Sharing and Transfers

  • Your data may be shared with service providers (e.g. hosting, newsletter) strictly based on data processing agreements.

  • Where data is transferred outside the UK or EU (e.g. to the USA), this is done using appropriate safeguards, such as Standard Contractual Clauses or the UK International Data Transfer Addendum.

6. Your Rights

You have the following rights under UK GDPR / EU GDPR:

  • Access, rectification, erasure

  • Restriction of processing

  • Data portability

  • Objection to processing, including direct marketing

  • Withdrawal of consent at any time

To exercise your rights, please contact us at [email protected].

You may also lodge a complaint with:

  • Information Commissioner’s Office (ICO) in the UK (www.ico.org.uk)

  • or the supervisory authority in your EU country of residence.

7. Security

We use SSL/TLS encryption and appropriate technical and organisational measures to secure your data.

8. Third-Party Services

Our website may integrate services such as:

  • YouTube (Google Ireland Ltd.)

  • Facebook & Instagram (Meta Platforms Ireland Ltd.)

  • Analytics tools (e.g. WP Statistics)

These providers may process data independently; please refer to their privacy policies.

9. Retention

Personal data will be stored only as long as necessary for the purpose collected or as required by law.

10. Updates

We may update this Privacy Policy from time to time. The current version will always be available on our website.

Privacy Policy – TEM Forum Community
  1. Joint Controllers

The entities jointly responsible for the processing of personal data in connection with the TEM Forum Community on the Mighty Networks platform are:

Fondazione Internazionale LUMEN ETS
RUNTS 119372
Strada Provinciale per Polignano 5/13
San Pietro in Cerro, Italy
(hereinafter “TEM Forum”)

and

Soul-Spark Academy Ltd.
Company Number 15642092
50 Salisbury Road
Hounslow / Greater London, TW4 6JQ
United Kingdom
(hereinafter “SSpAc”)

The processing of personal data is carried out under a joint controllership arrangement pursuant to Article 26 of the GDPR.

  1. Purpose of Data Processing

The TEM Forum Community is a non-commercial exchange and networking community.
Personal data is processed exclusively for the following purposes:

  • administration and management of memberships
  • operation and provision of the online community
  • internal community communication
  • processing of membership fees
  • providing information related to community activities, events and organisational matters
  1. Categories of Personal Data

Depending on the use of the community, the following categories of personal data may be processed:

  • first and last name
  • email address
  • username / profile name
  • profile picture (optional)
  • payment and transaction data (via payment service providers)
  • content shared within the community (posts, comments, messages)
  • technical usage data (e.g. login timestamps, device information)
  1. Legal Bases for Processing

Personal data is processed on the basis of the following legal grounds:

  • Article 6(1)(b) GDPR (performance of a contract / membership)
  • Article 6(1)(f) GDPR (legitimate interests in operating, securing and communicating within the community)
  • Article 6(1)(a) GDPR (consent, e.g. for optional profile information or newsletters)
  1. Payment Processing

Membership fees are processed via external payment service providers, in particular Stripe.
The data required for payment processing is transmitted directly to the respective payment service provider.
SSpAc does not receive full payment details such as credit card numbers.

  1. Use of Mighty Networks

The TEM Forum Community is hosted on the Mighty Networks platform.
Mighty Networks processes personal data as a data processor within the meaning of Article 28 GDPR.

This may involve the processing of data in third countries, in particular the United States.
Such transfers are based on appropriate safeguards pursuant to Articles 44 et seq. GDPR, such as standard contractual clauses.

  1. Communication and Information

Personal data may be used for community-related communication, including:

  • newsletters
  • organisational updates
  • community announcements
  • information about thematically related events or initiatives of TEM Forum

Users may opt out of non-essential communications at any time.

  1. Social Media and Public Communication

For public communication purposes, content from the community (e.g. anonymised excerpts, thematic summaries or quotations) may be used in newsletters or social media campaigns.

Personal identification will only occur where explicit consent has been given or where content has been publicly shared by the respective member.

  1. Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes described above or to comply with statutory retention obligations.

After termination of membership, data will be deleted or anonymised unless legal obligations require continued storage.

  1. Rights of Data Subjects

Data subjects have the right to:

  • access their personal data (Article 15 GDPR)
  • rectification of inaccurate data (Article 16 GDPR)
  • erasure of personal data (Article 17 GDPR)
  • restriction of processing (Article 18 GDPR)
  • data portability (Article 20 GDPR)
  • object to processing (Article 21 GDPR)

Requests may be submitted at any time to either of the joint controllers listed above.

  1. Withdrawal of Consent

Consent given may be withdrawn at any time with effect for the future.
The lawfulness of processing carried out prior to the withdrawal remains unaffected.

  1. Right to Lodge a Complaint

Data subjects have the right to lodge a complaint with a competent supervisory authority.

  1. Amendments to This Privacy Policy

This Privacy Policy may be updated to reflect legal, technical or organisational changes.
The current version will always be made available within the community.

Join the SoulSpark Newsletter

Sign up to receive the latest updates from SoulSpark Academy. Be the first to hear about new courses, special offers, and inspiring insights for your personal growth and well-being. Keep the spark alive with knowledge and community straight to your inbox.

You’re in!