Privacy Policy

Last updated: 14th January 2026

1. Controller. The controller responsible for data processing on this website is: Carla Alfonso Martín, Zollikon, Switzerland, admin@neuroathleta.com.

2. Scope. This Privacy Policy explains how personal data is collected, processed, and stored when using the website www.neuroathleta.com and related services.

3. Types of Data Collected

a) Account and Booking Data: Name and surname, Email address, Password (encrypted), Preferred language, Appointment bookings, changes, and cancellations.

b) Coaching-Related Information: Information voluntarily provided by the client to prepare for coaching sessions. This may include health-related personal data within the meaning of applicable data protection laws. Clients are encouraged to keep such information high-level and goal-oriented.

c) Billing and Payment Data: Name and surname, Email address, Address (for invoicing purposes), Payment status and transaction references. Payments are processed via third-party payment providers. No full payment card details are stored on this website.

4. Purpose of Data Processing. Personal data is processed for the following purposes: creating and managing user accounts, booking, rescheduling, or cancelling sessions, delivering coaching services, processing payments and issuing invoices, communication with clients, compliance with legal and fiscal obligations.

5. Legal Basis. Data processing is based on: Performance of a contract or pre-contractual measures, Explicit consent, particularly for sensitive or health-related data, and Compliance with legal obligations. Consent may be withdrawn at any time with effect for the future.

6. Third-Party Services and Processors. The website uses trusted third-party services to provide its functionality, including:

  • Website hosting and content management (Squarespace)

  • Scheduling and client management (Calendly and Acuity Scheduling)

  • Payment processing (Stripe, PayPal)

These providers process data only to the extent necessary and in accordance with applicable data protection laws.

7. International Data Transfers. Personal data may be processed outside Switzerland or the European Union by service providers. Where this occurs, appropriate safeguards are applied in accordance with the Swiss Federal Act on Data Protection (nFADP) and, where applicable, the EU General Data Protection Regulation (GDPR).

8. Data Retention. Personal data is retained only as long as necessary: 

  • Account and booking data: for the duration of the client relationship

  • Billing and accounting data: as required by applicable legal and fiscal obligations

  • Coaching-related information: only as long as relevant for the coaching process

9. Data Security. Coaching-related information and session notes are stored securely and are accessible only to the coach.Appropriate technical and organisational measures are implemented to protect personal data against unauthorised access, loss, misuse, or alteration.

10. Your Rights. Clients have the right to: Access their personal data, request rectification or deletion, restrict or object to processing, withdraw consent, and request data portability. Requests can be submitted to: admin@neuroathleta.com.

11. Complaints. If you believe your data protection rights have been violated, you may lodge a complaint with the competent supervisory authority. In Switzerland: Federal Data Protection and Information Commissioner (FDPIC) – www.edoeb.admin.ch .Clients located in the European Union may also contact their local data protection authority.

12. Cookies. This website uses cookies that are necessary for its operation and functionality. Optional analytics cookies may be used only with consent. Third-party services used for scheduling and payments may also set cookies as part of their operation.