Privacy Policy

Last updated: 30 May 2026

1. Introduction

Pranaya (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, including Yoga and Ayurveda consultations, classes, workshops, and related educational offerings.

By using our services, you consent to the data practices described in this policy.

2. Data Controller

3. What Data Do We Collect?

We may collect the following types of personal data:

  • Contact Information
    Examples: Name, email, phone number
    Purpose: To manage bookings, communicate, and deliver services.

  • Health Information
    Examples: Medical history, lifestyle, wellness goals
    Purpose: To provide personalized guidance during consultations.

  • Payment Information
    Examples: Billing address, payment details
    Purpose: To process payments securely.

  • Technical Data
    Examples: IP address, device information
    Purpose: To improve your online experience.

  • Usage Data
    Examples: Session attendance, feedback
    Purpose: To enhance our services and support you better.

4. Processing of Sensitive Data

Health data is considered “special category data” under GDPR.

We process this data:

  • Only with your explicit consent,

  • In strict confidence,

  • Exclusively to provide tailored services.

You may withdraw your consent at any time by emailing pranaya@pranaya.eu, subject to legal or contractual limitations.

5. How Do We Use Your Data?

We use your data for the following purposes:

  • To provide and manage our services (e.g., scheduling, consultations, recommendations, follow-ups).

  • To communicate with you (e.g., appointment reminders, updates, responses to inquiries).

  • To process payments and prevent fraud.

  • To maintain professional records.

  • To comply with legal and accounting obligations (e.g., tax, health regulations).

  • To improve our services and client experience.

Legal Basis for Processing:

  • Consent: You provide explicit consent for processing health and personal data.

  • Contractual Necessity: To fulfill our service agreement with you.

  • Legal Obligation: To comply with applicable laws.

6. Who Do We Share Your Data With?

We never sell or rent your data. It may be shared:

  • With trusted third-party providers (e.g., email services, payment processors, scheduling tools, video conferencing platforms) who assist in delivering our services. These partners are contractually bound to protect your data.

  • If legally required: If required by law or to protect our rights.

7. How Do We Protect Your Data?

Your security is our priority. We implement:

  • Encryption for online communications (via ProtonMail).

  • Secure storage (physical and digital, with full-disk encryption via FileVault).

  • Regular reviews of our data protection practices.

A Note on Online Security:

  • For your protection, we recommend using encrypted email or password-protected files for sensitive information.

  • Emails sent to our ProtonMail address are encrypted at rest, but we cannot guarantee the security of data sent from unencrypted providers.

  • No system is 100% secure: While we strive to protect your data, online transmission carries inherent risks.

  • In the Event of a Data Breach:
 We will notify you and relevant authorities within 72 hours, as required by GDPR.

8. How Long Do We Keep Your Data?

We retain your data only as long as necessary to:

  • Provide our services,

  • Comply with the law.

For continuity of care, health-related data is kept for 5 years from your last session, unless a longer period is legally required. You may request deletion at any time by emailing pranaya@pranaya.eu. Requests will be processed within one month, in line with GDPR.

Billing data and accounting documents are retained for 10 years in compliance with French legal and tax obligations, and solely for compliance purposes.

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Access: Request a copy of your data.

  • Rectification: Correct inaccurate or incomplete data.

  • Erasure: Request deletion of your data (subject to legal obligations).

  • Restriction: Limit processing of your data.

  • Portability: Receive your data in a machine-readable format.

  • Objection: Object to processing based on legitimate interests.

  • Withdraw Consent: Revoke consent for data processing (where applicable).

To exercise these rights, simply email us at pranaya@pranaya.eu.

For Clients Outside the EU:


Even if you reside outside the EU, your data is protected under European standards. By using our services, you acknowledge this processing.

10. Cookies and Tracking

Our website uses essential cookies for basic functionality, security, and analytics via Squarespace.

No advertising or marketing tracking cookies are currently used. If this changes, we will update this policy and seek your consent. You can manage cookie preferences through your browser settings.

11. International Data Transfers

If your data is transferred outside the EU/EEA, we ensure adequate safeguards (e.g., Standard Contractual Clauses) are in place.

12. Children’s Privacy

Our services are for adults only. We do not knowingly collect data from individuals under 18.

13. Updates to This Policy

This policy may be updated to reflect legal, technical, or operational changes. Continued use of our services constitutes acceptance of the revised policy. The latest version will always be available on this website.

14. Questions?

For any questions or concerns about this policy or your data, contact us at: 
pranaya.eu@pm.me — we’re happy to help!