Privacy Policy

This Privacy Policy was last updated on March 01, 2026.

Who we are

Contact details:

Alexandra Ortiz
Steenvoordestraat 166
9070 Heusden (Destelbergen)
Belgium
Email: hello@AlexandraOrtiz.coach 
Phone number: +32 (0) 499 58 90 84

Alexandra Ortiz acts as the data controller within the meaning of the General Data Protection Regulation (GDPR).

General Information on Data Processing

We process personal data in accordance with:

  • Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR)
  • Applicable Belgian data protection legislation

Personal data is only processed for specified, explicit and legitimate purposes and will not be further processed in a manner incompatible with those purposes.

Categories of Personal Data We May Process

Depending on how you interact with this website, we may process:

  • Identification data (name)
  • Contact details (email address, phone number)
  • Communication content (messages sent via email or contact form)
  • Appointment data (see section below)
  • Technical data (IP address, browser type, device information)
  • Website usage data (see section Analytics)

We do not intentionally collect special categories of personal data unless you voluntarily provide such information.

Purposes and Legal Bases for Processing

We process personal data on the following legal bases:

a) Performance of a contract or pre-contractual steps (Article 6(1)(b) GDPR)

For:

  • Responding to inquiries
  • Scheduling and managing appointments
  • Delivering requested services

b) Legitimate interests (Article 6(1)(f) GDPR)

For:

  • Improving website functionality
  • Ensuring website security
  • Preventing abuse or fraud

Where processing is based on legitimate interests, we ensure that such interests are not overridden by your fundamental rights and freedoms.

c) Legal obligation (Article 6(1)(c) GDPR)

Where retention or processing is required under Belgian law (e.g. accounting or tax obligations).

d) Consent (Article 6(1)(a) GDPR)

Where legally required (e.g. certain cookies). Consent may be withdrawn at any time.

Contact Forms and Email Communication

If you contact us via email or a contact form, we process the personal data you provide (such as your name, email address and message content) in order to respond to your request.

Retention: Communication data is retained as long as necessary to handle your request and for reasonable administrative follow-up, unless a longer retention period is legally required.

Cookies

This website uses cookies to ensure proper functioning and to improve user experience.

Detailed information about the types of cookies used, their purposes, and how you can manage your preferences can be found in the separate Cookie Policy: https://alexandraortiz.coach/cookie-policy-eu/.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Data Sharing

Personal data is not sold to third parties.

Data may be shared with service providers who act as data processors (such as hosting providers, analytics providers, or scheduling providers) strictly for the purposes described in this policy and under appropriate contractual safeguards.

In case of a password reset request, your IP address may be included in the reset email for security purposes.

Data Retention

Personal data is retained only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required by law (e.g. accounting or tax obligations).

Retention periods are determined based on:

  • The nature of the data
  • The purpose of processing
  • Legal obligations

Appointment Scheduling via Calendly

To allow users to schedule appointments with us in an efficient manner, we use the external service provider Calendly (Calendly LLC).

When you click on the booking link on our website, you will be redirected to Calendly’s platform. Personal data is only transmitted to Calendly once you actively choose to book an appointment and enter your information.

1. Categories of Personal Data Processed

When scheduling an appointment, the following data may be collected and processed:

  • First and last name
  • Email address
  • Telephone number (if provided)
  • Appointment date and time
  • Time zone
  • Any information voluntarily entered in free-text fields

We request that you do not submit sensitive personal data (such as health data or other special categories of data) via the booking form unless strictly necessary.

2. Purpose of Processing

Your personal data is processed solely for the purpose of:

  • Scheduling and managing appointments
  • Communicating with you regarding your appointment
  • Administrative follow-up related to the requested service

Your data will not be used for marketing purposes unless you have provided separate and explicit consent.

3. Legal Basis

The processing of your personal data for appointment scheduling is based on:

  • Article 6(1)(b) GDPR – processing necessary for the performance of a contract or in order to take steps at your request prior to entering into a contract.

4. Role of Calendly

Calendly acts as a data processor on our behalf in accordance with Article 28 GDPR. We have concluded a Data Processing Agreement with Calendly to ensure that your personal data is processed in accordance with applicable data protection laws.

For more information on how Calendly processes personal data, please consult Calendly’s privacy policy on its website.

5. International Data Transfers

Calendly LLC is established in the United States. As a result, personal data may be transferred to and processed in countries outside the European Economic Area (EEA).

Where such transfers occur, appropriate safeguards are implemented in accordance with Chapter V of the GDPR, such as the use of Standard Contractual Clauses approved by the European Commission and/or participation in the EU–US Data Privacy Framework, where applicable.

6. Data Retention

Appointment data is retained for as long as necessary to manage the appointment and any related administrative follow-up.

Personal data will not be kept longer than necessary for the purposes described above, unless a longer retention period is required by law.

7. Your Rights

In accordance with the General Data Protection Regulation (GDPR), you have the right to:

  • Request access to your personal data
  • Request correction of inaccurate or incomplete data
  • Request erasure of your personal data
  • Request restriction of processing
  • Object to processing where applicable
  • Request data portability

You may exercise your rights by contacting us using the contact details provided in this privacy policy.

If you believe that your rights have been violated, you also have the right to lodge a complaint with the competent supervisory authority in Belgium.

Analytics

Your usage of this website is shared with Google Analytics. This data is anonymised.

Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Rectify inaccurate or incomplete data
  • Request erasure of your personal data
  • Request restriction of processing
  • Object to processing based on legitimate interests
  • Request data portability
  • Withdraw consent at any time (where processing is based on consent)

To exercise your rights, please contact us using the contact details provided above.

You also have the right to lodge a complaint with the competent supervisory authority in BelgiumHow we protect your data

Security Measures

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration.

These measures include, where appropriate:

  • Encrypted connections (HTTPS)
  • Access controls
  • Firewall protection
  • Anti-virus and system security measures

However, no method of transmission over the Internet or method of electronic storage can be guaranteed to be completely secure.

Data Breaches

In the event of a personal data breach, appropriate measures will be taken in accordance with Articles 33 and 34 GDPR.

Where required, the competent supervisory authority and affected individuals will be notified without undue delay.