Who we are
Inner Way Academy is a non‑profit organization.
Our website address is: https://www.innerway.academy.
We act as the Data Controller for all personal data collected through this website.
Contact for privacy matters: Menu->Contact.
Comments
When visitors leave comments on the website, we collect the data shown in the comments form, as well as the visitor’s IP address and browser user‑agent string to help detect spam.
The legal basis for this processing is legitimate interest (fraud prevention and website security).
An anonymized hash of your email address may be sent to the Gravatar service to check if you use it. Gravatar’s privacy policy is available at: https://automattic.com/privacy/.
After your comment is approved, your profile picture becomes visible to the public in the context of your comment.
Media
If you upload images to the website, avoid uploading images containing embedded location data (EXIF GPS). Visitors to the website may download and extract location data from images displayed on the site.
Cookies
If you leave a comment, you may choose to save your name, email address, and website in cookies. These exist for your convenience so you do not need to re‑enter your details when leaving another comment. These cookies last for one year.
If you visit our login page, we set a temporary cookie to determine whether your browser accepts cookies. This cookie contains no personal data and is deleted when you close your browser.
When you log in, several cookies are created to store your login information and display preferences. Login cookies last for two days, and screen‑options cookies last for one year. If you select “Remember Me”, your login persists for two weeks. Logging out removes the login cookies.
If you edit or publish an article, an additional cookie is stored in your browser. It contains no personal data and simply indicates the post ID of the article you edited. It expires after one day.
Embedded content from other websites
Articles on this site may include embedded content (such as videos, images, or articles). Embedded content from other websites behaves exactly as if you visited the other website directly.
These external websites may collect data about you, use cookies, embed third‑party tracking, and monitor your interaction with the embedded content, including tracking your interaction if you have an account and are logged in to that website.
Who we share your data with
If you request a password reset, your IP address will be included in the reset email.
We may also share data with service providers who support our website operations (e.g., hosting, security, spam detection). These providers act as Data Processors under GDPR and process data only according to our instructions.
We do not sell or share your data with third parties for marketing purposes.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This allows us to recognize and approve follow‑up comments automatically instead of holding them for moderation.
For users who register on our website (if applicable), we store the personal information provided in their user profile. All users can view, edit, or delete their personal information at any time (except for their username). Website administrators can also view and edit this information.
Other data (such as logs or security‑related data) may be retained for as long as necessary for security, legal compliance, or legitimate operational purposes.
Your rights under GDPR
You have the following rights regarding your personal data:
- Right of access – to request a copy of the personal data we hold about you.
- Right to rectification – to request correction of inaccurate or incomplete data.
- Right to erasure – to request deletion of your personal data, unless we must retain it for legal or security reasons.
- Right to restrict processing – to request limits on how your data is processed.
- Right to object – to object to processing based on legitimate interests.
- Right to data portability – to receive your data in a structured, commonly used format.
- Right to withdraw consent – if processing is based on consent.
To exercise any of these rights, contact us at Menu->Contact.
If you believe your data has been processed unlawfully, you may lodge a complaint with your local Data Protection Authority.
Where your data is sent
Visitor comments may be checked through an automated spam detection service.
Some data may be processed outside the EU/EEA by service providers (e.g., hosting, analytics). In such cases, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs).
Changes to this policy
We may update this privacy policy from time to time. The latest version will always be available on this page.
