Soul Numerology LogoNumerology Soul

Privacy Policy

Version v4 · Hash b09aa1399792… · Locale EN

Privacy Policy

We are pleased that you are visiting our website. The protection of your personal data is a matter of central importance to us.

Controller within the meaning of the GDPR:
Aleksej P Digital & AI Services
Aleksej Potylicyn
FasanenStr. 7
78048 Villingen-Schwenningen
Deutschland

E-Mail: info@numerology-soul.com
Website: https://www.numerology-soul.com

Right to lodge a complaint:
You have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for us is:
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg,
Lautenschlagerstraße 20, 70173 Stuttgart.

1. General Information & Legal Bases

We process personal data in compliance with the General Data Protection Regulation (GDPR):

  • Art. 6(1)(a) GDPR – consent
  • Art. 6(1)(b) GDPR – performance of a contract (provision of the service & digital content)
  • Art. 6(1)(c) GDPR – legal obligations (in particular tax retention obligations)
  • Art. 6(1)(f) GDPR – legitimate interest (security, fraud prevention, technical operation)

Data processing agreements:
We have concluded data processing agreements (DPAs) pursuant to Art. 28 GDPR with all relevant third-party providers (Vercel, Supabase, Stripe, PayPal, Resend, OpenAI).

2. Infrastructure & Hosting

2.1 Vercel (Frontend)

Our website is hosted by Vercel Inc., 650 California St, San Francisco, CA 94108, USA.
Vercel processes connection data (IP address, browser metadata).
The transfer takes place on the basis of Standard Contractual Clauses (SCCs).

2.2 Supabase (Backend & Database)

We use Supabase to manage user accounts and store your data.

Supabase processes in particular:

  • email address and login data
  • technical metadata
  • data entered by users for numerological calculations

IP addresses are processed where technically necessary, but may be shortened or anonymized where applicable.
Transfers of data to third countries are safeguarded by Standard Contractual Clauses.

3. Server Log Files & Security

The transmission of the entire website is encrypted via HTTPS (SSL/TLS).

When you visit the website, technical information is automatically stored:

  • IP address (where applicable shortened or anonymized)
  • browser type and version
  • referrer URL and time of access

Legal basis: Art. 6(1)(f) GDPR.

4. Cookies & Technical Storage

We use technically necessary cookies and storage mechanisms (e.g. authentication tokens) that are required for the operation of the website.

Legal basis: Art. 6(1)(f) GDPR.

5. User Account, Registration & Minors

5.1 Registration

For registered users, we store:

  • email address and password (hashed)
  • Numerological data: the names and dates of birth you enter are stored permanently in our database in order to provide you with a history of your calculations and allow you to download PDF reports.

5.2 Minors

Our offer is expressly not directed at persons under the age of 16.
We do not knowingly collect data from minors.

6. Payment Processing (Stripe & PayPal)

6.1 Stripe

Provider: Stripe Payments Europe, Ltd. (Ireland).
Data transfers to the USA take place on the basis of Standard Contractual Clauses.
We do not receive or store complete credit card details.

6.2 PayPal

Provider: PayPal (Europe) S.à r.l. et Cie, S.C.A. (Luxembourg).
PayPal’s privacy policy applies.
PayPal may carry out credit checks where necessary.

7. Analytics Tools (Google Analytics 4)

We use Google Analytics 4 only with your explicit consent.

  • Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
  • Anonymization: IP anonymization is enabled
  • Note: a transfer of data to the USA cannot be ruled out
  • Withdrawal: you may withdraw your consent at any time via the cookie banner (opt-out)

8. Google API Services & Google OAuth

Our application may request access to basic Google account data through Google OAuth authentication solely for the purpose of user authentication and sign-in.

What Google Data May Be Processed

Depending on the permissions granted by the user, the application may access:

  • name,
  • email address,
  • profile picture.

Purpose of Processing

The processing of this data is carried out solely for:

  • authentication,
  • user sign-in,
  • linking the user account with Google Sign-In.

We do not sell Google user data and do not share it with third parties for advertising purposes.

Storage & Security

Google user data is stored only when technically necessary for authentication functionality.
Processing is carried out using industry-standard security measures.

Google API Services User Data Policy

The use and processing of data received from Google APIs complies with the Google API Services User Data Policy, including the “Limited Use” requirements.

Revoking Access

Users may revoke the application's access to their Google account at any time via the following page:

https://myaccount.google.com/permissions

Users may also request deletion of their stored data at any time by contacting:

info@numerology-soul.com

9. AI Assistant (OpenAI)

On our website, we offer an optional AI-supported assistant based on the technology of OpenAI, L.L.C. (USA).

Important note:
The numerological calculations themselves are performed exclusively by our own software on the basis of defined mathematical and internal system logic. OpenAI is not involved in the calculations.

The AI assistant is used solely to answer additional questions and explain content in a more understandable way.

When using the assistant, the following data may be transmitted to OpenAI:

  • the content of your chat requests
  • contextual information related to your use

The transmitted data is not used by OpenAI to train AI models and is not stored permanently.
No permanent storage of the content takes place by OpenAI.

Storage by us:
Chat histories may be stored in our database (Supabase) so that you can access them again later.

Processing takes place on the basis of Art. 6(1)(b) GDPR (provision of the service) or Art. 6(1)(a) GDPR (consent when using the chat).

10. E-Mail & Newsletter

  • Transactional emails:
    Sending (e.g. registration confirmation, login links) is carried out via Resend Inc. (USA) on the basis of Standard Contractual Clauses.

  • Newsletter:
    If you subscribe to our newsletter, we use your email address exclusively for this purpose. You may unsubscribe at any time.

11. Automated Decision-Making

No solely automated decision-making within the meaning of Art. 22 GDPR that produces legal effects concerning you or similarly significantly affects you takes place.

Numerological evaluations serve personal reflection and do not constitute binding statements.

12. Retention Periods & Taxes

Data is deleted as soon as the purpose no longer applies (e.g. deletion of the account).

Invoice and payment data is retained for up to 10 years in accordance with tax law requirements (GoBD).

13. Your Rights

You have the right to:

  • access (Art. 15 GDPR)
  • rectification (Art. 16 GDPR)
  • erasure (Art. 17 GDPR)
  • restriction of processing (Art. 18 GDPR)
  • data portability (Art. 20 GDPR)
  • objection (Art. 21 GDPR)

Contact: info@numerology-soul.com

14. Further Information

Further information can be found in the privacy policies of the respective providers:

Status: May 2026