Larissa Winter Client Pain Points Services Methodology Why Me FAQ Contacts
en
en uk de
Larissa Winter Client Pain Points Services Methodology Why Me FAQ Contacts
en uk de
Main > Privacy Policy

Privacy Policy

Data Controller – Dr. Larissa Winter, MBA

E-Mail: office@galaganadvisory.com
Tel.: +43 660 157 5838

Introduction and Overview

Protecting your personal data is important to us.
This Privacy Policy (effective: October 8, 2025) explains how Galagan Advisory Consulting & Coaching processes personal data in accordance with the General Data Protection Regulation (GDPR) and applicable national data protection laws.

In short: we treat your data confidentially, securely, and only to the extent necessary to provide our consulting, coaching, and training services professionally.

 

Responsible Entity

Galagan Advisory Consulting & Coaching
Brückengasse 11, 2551 Enzesfeld-Lindabrunn, Austria
E-Mail: office@galaganadvisory.com
Tel.: +43 660 157 5838
Website: www.larissa.winter-galagan.com

Data controller under the GDPR: Larissa Galagan, Founder & Managing Director

Scope

This privacy policy applies to all personal data we process in the course of our business, in particular:

  • when visiting and using our website,
  • when contacting us via e-mail, phone, contact form, or messenger,
  • when booking appointments via Calendly,
  • when conducting online coachings or meetings via Zoomor Microsoft Teams,
  • when analyzing website traffic via Google Analytics,
  • and when communicating via social media such as LinkedIn, Instagram, or Telegram.

 

Legal Bases for Processing

We process personal data based on the following GDPR legal bases:

  • 6 (1)(a)GDPR – Consent (e.g., newsletter, cookies, Google Analytics)
  • 6 (1)(b)GDPR – Performance of a contract or pre-contractual measures (e.g., coaching, consulting, scheduling)
  • 6 (1)(c)GDPR – Legal obligations (e.g., tax retention periods)
  • 6 (1)(f)GDPR – Legitimate interest (e.g., website optimization, IT security, communication)

Data Security

We use technical and organizational measures to protect your data from loss, misuse, or unauthorized access.
These include encrypted data transmission (SSL), secure IT systems, and access limitations on a need-to-know basis.

 

Storage Duration

Personal data is stored only as long as necessary for the relevant purposes or as required by law.
After the storage purpose no longer applies, data will be deleted or anonymized.

 

Communication and Contact

When you contact us via e-mail, phone, contact form, or messenger, we process your data to respond to your inquiry.
We will not share this data without your consent.
Legal basis: Art. 6 (1)(b) GDPR (pre-contractual or contractual communication)

Online Scheduling via Calendly

We use Calendly (Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, GA 30363, USA) to organize appointments.

Processed data:

  • Name, e-mail address, phone (if provided)
  • Date, time, and topic of the appointment

Calendly processes this data on our behalf. Data transfers to the USA are based on EU Standard Contractual Clauses (SCCs) pursuant to Art. 46 GDPR.
More information: https://calendly.com/privacy

 

Online Meetings via Zoom and Microsoft Teams

We use Zoom and Microsoft Teams for online meetings, coachings, and workshops.

Zoom Video Communications, Inc.
55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA
https://explore.zoom.us/privacy

Microsoft Corporation
One Microsoft Way, Redmond, WA 98052, USA
https://privacy.microsoft.com/privacystatement

Processed data:

  • Name, e-mail address, profile picture (optional)
  • Video and audio data (if activated)
  • Chat messages, meeting metadata

Legal basis: Art. 6 (1)(b) GDPR (performance of the meeting or coaching).
Transfers to the USA are safeguarded through EU SCCs.

 

Web Analytics with Google Analytics

We use Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
Google Analytics uses cookies to analyze website use. IP addresses are anonymized before transfer to the USA (IP anonymization).
Processing takes place only with your consent via the cookie banner.

Legal basis: Art. 6 (1)(a) GDPR (consent)
More information:
https://policies.google.com/privacy
https://tools.google.com/dlpage/gaoptout

 

Cookies

Our website uses cookies to enable functionality, analyze user behavior, and optimize content.
On your first visit, you will be asked for consent via a cookie banner, which you may withdraw at any time.

Legal basis: Art. 6 (1)(a) GDPR (consent)

Social Media & Messenger Communication

We maintain an online presence to share updates and interact with our audience:

LinkedIn
Operator: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
Privacy Policy: https://www.linkedin.com/legal/privacy-policy

Instagram
Operator: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland
Privacy Policy: https://privacycenter.instagram.com/policy

Telegram
Operator: Telegram Messenger LLP, Dubai, United Arab Emirates
Website: https://telegram.org
Privacy Policy: https://telegram.org/privacy

When you contact us via Telegram, data such as your username, chat content, and communication timestamps are processed by Telegram.
We use Telegram solely for voluntary, informal communication.
Please note that Telegram may process data outside the EU.

Legal basis: Art. 6 (1)(a) GDPR (consent) or Art. 6 (1)(f) GDPR (legitimate interest in modern communication)

Your GDPR Rights

You have the right to:

  • Access (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (“right to be forgotten”, Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Object to certain processing (Art. 21 GDPR)
  • Withdraw consent at any time (Art. 7 (3) GDPR)

To exercise your rights, please contact us at office@galaganadvisory.com.

Data Processing by Third Parties

We work with carefully selected service providers (e.g., hosting, IT, accounting) under Art. 28 GDPR, contractually ensuring that they process data only on our instructions and in compliance with data protection regulations.

Final Note

At Galagan Advisory, we are committed to responsible and transparent data handling.
Your trust is the foundation of our work — in coaching, consulting, and digital communication.

Effective: November 2025