top of page

Privacy Policy

1 / General

This website www.atelier8zurich.com (the "Site") is owned and operated by atelier 8 GmbH ("we," "our," or "us").

 

atelier 8 may collect personal identification information from users in a variety of ways, including filling out forms for appointment requests, and opting to sign up for a Site membership or receipt of email communications from atelier 8. Users may, however, visit atelier 8's website anonymously. We will collect personal identification information from users only if they voluntarily submit such information to us. Users can always refuse to supply personally identifiable information.

 

Personal identification information is considered strictly confidential by atelier 8 and will not be sold or passed on to third parties.

 

atelier 8 adopts appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information and data stored on the website.

 

In accordance with the Swiss Federal Act on Data Protection (nFADP), effective as of September 1, 2023, and the Swiss Federal Data Protection Ordinance (FDPO), atelier 8 is committed to protecting the privacy and personal data of our clients and visitors to our website.

 

This Privacy Policy outlines how we collect, use, and protect your personal information.

2 / Collection of Personal Data

We may collect the following types of personal data:

  • Contact Information: Name, address, email address, and phone number.

  • Health Information: Medical history, dietary preferences, and other health-related information necessary to provide our nutrition coaching and Pilates instruction services.

  • Payment Information: If applicable, payment details for billing purposes.

  • Technical Data: IP address, browser type, operating system, and website usage data collected automatically when you visit the Site (see Section 7).

3 / Purpose of Data Processing and Legal Basis

We process your personal data for the following purposes:

  • Providing Nutrition Coaching and Pilates instruction services

  • Billing and payment processing

  • Communication and appointment scheduling

  • Internal record-keeping

  • Improving website functionality and user experience (analytics)

  • Compliance with legal obligations

 

Health data (medical history, dietary information) constitutes sensitive personal data under nFADP Art. 5(c). We process this data exclusively on the basis of your explicit consent, which you provide at the time of your initial consultation or client intake. You may withdraw this consent at any time; however, withdrawal may affect our ability to provide services. For general contact and service-related data, our legal basis is the performance of a contract with you (nFADP Art. 31(2)(a)) and, where applicable, our legitimate interests in operating our business.

 

For clients based in the United States, health and wellness data is additionally handled through Practice Better, a platform that meets HIPAA (Health Insurance Portability and Accountability Act) standards as adopted in the United States. While atelier 8 GmbH is a Switzerland-based provider and is not itself a HIPAA-covered entity under US law, we have selected a HIPAA-compliant platform as a matter of best practice to meet the expectations and data protection standards familiar to our US-based clients. All health data for US clients is stored and processed within Practice Better's HIPAA-compliant infrastructure.

4 / Data Security 

We take reasonable measures to safeguard your personal data against unauthorized access, disclosure, alteration, or destruction. We implement security protocols and restrict access to personal data to authorized personnel only.

 

At atelier 8, all client records, health information, and internal communications are managed through Practice Better, our designated practice management platform. Practice Better has been independently verified as compliant with the following data protection and privacy frameworks: HIPAA (United States), PIPEDA and PHIPA (Canada), GDPR (European Union), and the Swiss Federal Act on Data Protection (nFADP). This makes it our platform of choice for serving clients across Switzerland, the European Union, and the United States, ensuring that all client health data is handled to the highest applicable standard regardless of the client's country of residence. Please note that atelier 8 GmbH is a Switzerland-based provider and is not itself classified as a HIPAA-covered entity under US federal law; however, we have chosen a HIPAA-compliant platform as a deliberate best-practice measure for the benefit of our US-based clients.

 

Practice Better's security infrastructure includes:

  1. Strong encryption: Industry-leading encryption techniques protect your data both during transfer and at rest. All backups and log data are encrypted.

  2. Secure access controls: Role-based access controls, secure password policies, and multi-factor authentication options restrict unauthorized access.

  3. Data backup and recovery: Regular backups are performed to ensure data integrity and availability, supported by a disaster recovery plan.

5 / Data Retention

We retain your personal data only as long as necessary for the purposes described in this policy or as required by law. The following retention periods apply:

  • Client health and coaching records: Retained for the duration of the client relationship and for up to 10 years thereafter, in accordance with applicable Swiss statutory obligations.

  • Financial and billing records (including invoices): Retained for 10 years in accordance with Swiss accounting law (OR Art. 958f).

  • Website analytics and log data: Retained for up to 12 months, after which it is anonymized or deleted.

  • Email and appointment communications: Retained for up to 3 years following the end of the client relationship, unless a longer period is required by law.

 

Once data is no longer needed, it is securely deleted or anonymized.

6 / Your Rights 

Under Swiss Data Protection Laws, you have the following rights regarding your personal data:

  • Right to access: You can request access to the personal data we hold about you.

  • Right to rectification: You can request corrections to inaccurate or incomplete data.

  • Right to erasure: You can request the deletion of your personal data, subject to legal obligations.

  • Right to restrict processing: You can request limitations on how we process your data.

  • Right to data portability: You can request a copy of your data in a commonly used, machine-readable format.

  • Right to object: You can object to the processing of your data for certain purposes.

  • Right to withdraw consent: Where processing is based on your consent, you have the right to withdraw that consent at any time without affecting the lawfulness of prior processing.

 

To exercise any of these rights, please contact us in writing at: info@atelier8zurich.com or by post to atelier 8 GmbH, Paulstrasse 14, 8008 Zürich, Switzerland. We will respond to your request within 30 days.

 

Right to lodge a complaint: If you believe that the processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) at www.edoeb.admin.ch.

7 / Website Data Storage and Cookies

When you visit our website, certain technical information is automatically collected and stored in server log files. This includes:

  1. IP address: The unique identifier assigned to your device by your internet service provider.

  2. Date and time: When you accessed the website.

  3. Browser request: The type of request made by your browser (e.g., which page or resource was requested).

  4. Operating system and browser details: Type and version of operating system and web browser.

 

This information is used for system administration, security purposes, and to improve website performance and user experience. These usage data form the basis for statistical, anonymous evaluations.

 

atelier 8 utilizes Wix Analytics, a web analytics service provided by Wix.com. Wix Analytics uses cookies — small text files stored on your device — to analyze how visitors engage with the website. These cookies help track user behavior, such as pages visited, time spent on the site, and interactions with various elements, enabling us to enhance website functionality and user experience.

 

Wix uses the information gathered through analytics cookies to:

  1. Evaluate how the website is used

  2. Generate reports on site activity for the site operator

  3. Improve website functionality and optimize user experience

 

Wix may share analytics data with third parties only when legally required to do so, or when third-party service providers process the data on behalf of Wix. Your IP address and other analytics data will not be combined with other information that could directly identify you.

 

International data transfers: The data collected by Wix Analytics is processed through Wix's servers, which may be located in various regions, including outside Switzerland. Wix transfers personal data outside Switzerland and the EEA under appropriate safeguards, including Standard Contractual Clauses (SCCs) as approved by the European Commission and recognised under Swiss law. For further details on Wix's data transfer mechanisms, please refer to Wix's Privacy Policy at www.wix.com/about/privacy.

 

Cookie consent: Analytics cookies are non-essential and require your prior consent under Swiss law. A cookie consent banner is displayed when you first visit the Site, allowing you to accept or decline non-essential cookies. You may also manage or block cookies at any time through your browser settings; however, doing so may affect the functionality of certain website features.

8 / International Clients

atelier 8 GmbH welcomes clients from Switzerland, the European Union, the United States, and other countries. Regardless of your country of residence, your personal and health data is handled with the same level of care and under the same security infrastructure described in this policy.

 

For clients resident in the United States: Your health and wellness information is processed through Practice Better, which operates in compliance with HIPAA standards. As noted in Section 4, atelier 8 GmbH is not a HIPAA-covered entity under US law, but has adopted a HIPAA-compliant platform to safeguard your data in line with US expectations. If you have questions about how your health data is handled, please contact us directly at the address provided in Section 10 of this policy.

 

For clients resident in the European Union: In addition to Swiss nFADP protections, EU residents benefit from rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with your national data protection supervisory authority. The adequacy decision issued by the European Commission recognising Switzerland as providing an adequate level of data protection applies to transfers of your personal data to atelier 8 GmbH.

9 / Payments

Payments for Nutrition Coaching or Pilates sessions are provided by invoice sent to you directly via email. Payments can also be processed through Practice Better upon request.

 

Payments processed through Practice Better are handled in a PCI-compliant manner. Practice Better processes subscription payments via Stripe and payments via integrations with Stripe and Square, both of which are PCI Level 1 Service Providers. Your personal payment information is not stored on Practice Better's servers and is not made available to us.

10 / Policy Updates and Contact

We review and update this Privacy Policy periodically to reflect changes in our practices or in applicable law. We encourage you to refer to this policy regularly. Material changes will be communicated via the website.

 

If you have any questions about this Privacy Policy or our data practices, please contact us at:

 

atelier 8 GmbH

Paulstrasse 14, 8008 Zürich, Switzerland

info@atelier8zurich.com

+41 78 679 77 08

 

Last updated: March 2026

bottom of page