Privacy Policy

 

1. Controller

The controller responsible for processing your personal data under the GDPR is:

Content Fudge – Anzhelika Tauber
Address: Stromstraße 35/4/local1, 1200 Vienna, Austria
Email: info@contentfudge.com
Phone: +43 680 3096968
Website: https://personal-brand-university.com/
Agency website: https://contentfudge.com/

If you have any questions about this privacy policy or about how we process your data, you can contact us at any time using the details above.

2. General information on data processing

We process your personal data in accordance with:

  • the EU General Data Protection Regulation (GDPR),

  • the Austrian Data Protection Act (DSG), and

  • the Austrian Telecommunications Act (TKG).

“Personal data” means any information relating to an identified or identifiable natural person (for example name, email address, IP address).

We only process your data when at least one of the following legal bases applies:

  • Art. 6(1)(b) GDPR – Contract / pre-contractual measures
    e.g. when you join Personal Brand University, book a membership, or request an offer.

  • Art. 6(1)(a) GDPR – Consent
    e.g. when you subscribe to our waitlist or accept non-essential cookies.

  • Art. 6(1)(c) GDPR – Legal obligation
    e.g. retention obligations under tax or commercial law.

  • Art. 6(1)(f) GDPR – Legitimate interests
    e.g. ensuring website security, improving our services, operating our community.

3. Visiting our website (server logs & hosting)

When you visit our website, your browser automatically sends information to our server. This data is temporarily stored in server log files.

The following data may be collected:

  • IP address of the requesting device

  • Date and time of access

  • Name and URL of the accessed file

  • Website from which the access originated (referrer URL)

  • Browser type and version and operating system

  • Name of your internet service provider

Purpose of processing:

  • To ensure a smooth connection to the website

  • To ensure comfortable use of our website

  • To evaluate system security and stability

  • For general administrative purposes

Legal basis:
Art. 6(1)(f) GDPR (our legitimate interest in the secure operation of our website).

Hosting provider:

ALL-INKL.COM – Neue Medien Münnich
Owner: René Münnich
Hauptstraße 68, D-02742 Friedersdorf, Germany
Phone: +49 35872 353-10
Fax: +49 35872 353-30
Email: info@all-inkl.com
Privacy policy: https://all-inkl.com/datenschutzinformationen/

We have concluded a data processing agreement with our hosting provider in accordance with Art. 28 GDPR.

4. Contacting us (contact form, email)

When you contact us by email or via a contact form on the website, we process the data you provide, such as:

  • Name

  • Email address

  • Phone number (if provided)

  • Contents of your message

  • Any other information you voluntarily provide

Purpose:
Processing your enquiry and any follow-up questions, as well as customer communication.

Legal basis:

  • Art. 6(1)(b) GDPR if your enquiry is related to a (potential) contract (e.g. membership, offers).

  • Art. 6(1)(f) GDPR in all other cases (our legitimate interest in answering enquiries).

Retention period:
We store contact requests for as long as necessary to handle your enquiry and in line with statutory retention periods (e.g. tax / commercial law).

5. Newsletter & email marketing (e.g. PBU waitlist, pre-launch emails)

If you sign up for our waitlist or other email updates related to Personal Brand University, we process:

  • Email address

  • First name (if provided)

  • Date and time of registration and confirmation

  • Information about email opens and link clicks

We use this data to send you information about Personal Brand University, related offers, events, and useful content on personal branding, social media, and business.

Legal basis:
Your consent, Art. 6(1)(a) GDPR in conjunction with national e-privacy rules (e.g. § 174 TKG).

You can withdraw your consent at any time with effect for the future, e.g. via the unsubscribe link in every email or by emailing us at info@contentfudge.com.

Email service provider:

We use the following service provider to send newsletters and automated emails:

ActiveCampaign, LLC
1 N Dearborn St, 5th Floor, Chicago, IL 60602, United States
Privacy policy: https://www.activecampaign.com/legal/privacy-policy

We have concluded a data processing agreement pursuant to Art. 28 GDPR with this provider. Where data is transferred to a third country (e.g. USA), we ensure appropriate safeguards as required by Art. 44 et seq. GDPR (such as Standard Contractual Clauses or an adequacy decision).

6. PBU membership, purchases & customer account

If you purchase a Personal Brand University membership or other paid products/services, we process:

  • Master data: name, address, email address

  • Product / membership data (what you booked, starting date, membership type)

  • Billing and payment data (e.g. invoice details, payment method, transaction IDs – depending on payment provider)

  • Communication related to the membership

  • Login data for members’ areas (username and password – password stored in hashed form)

Purposes:

  • To carry out pre-contractual steps (e.g. answering questions about PBU)

  • To conclude and perform the contract (providing access to PBU, live sessions, replays, community etc.)

  • To handle payment and invoicing

  • To provide customer service and support

  • To comply with our legal obligations (e.g. accounting, tax law)

Legal bases:

  • Art. 6(1)(b) GDPR (performance of a contract / pre-contractual measures)

  • Art. 6(1)(c) GDPR (legal obligations, e.g. accounting and tax law)

  • Art. 6(1)(f) GDPR (legitimate interests in efficient administration of our customers)

Payment service providers

We use external payment providers such as:

Stripe Payments Europe, Limited
The One Building, 1 Grand Canal Street Lower, Dublin 2, Ireland
Privacy policy: https://stripe.com/privacy

When you choose this payment method, your payment data is processed directly by the payment service provider. We receive no full card details, only the confirmation that a payment was successful and basic transaction information.

7. Online meetings, live calls & webinars

As part of Personal Brand University, we conduct live coaching calls, Q&A sessions, workshops and webinars via Zoom.

Data processed may include:

  • Name and display name

  • Email address

  • IP address and technical connection data

  • Audio and video data (if your camera/microphone is active)

  • Chat messages and reactions

Purpose:
To deliver live sessions, enable interaction with participants, answer questions, and – where applicable – provide replays.

Legal basis:

  • Art. 6(1)(b) GDPR (performance of contract for PBU members)

  • Art. 6(1)(f) GDPR (our legitimate interest in providing efficient, interactive online formats)

Recordings:
We record every session and make it available as a replay inside the membership. You will be informed beforehand. If you do not wish to appear in the recording, you can keep your camera and microphone turned off and choose a neutral display name.

Service provider:

Zoom Video Communications, Inc.
Privacy policy: https://explore.zoom.us/en/privacy/

Data may be transferred to third countries (e.g. USA). In such cases, we rely on appropriate safeguards pursuant to Art. 44 et seq. GDPR.

8. Members’ area, community & interaction

Within PBU we offer a digital members’ area and community features (via WordPress on our own website).

We may process:

  • Registration data (name, email, password)

  • Profile information (profile photo, bio, business details – if you choose to provide them)

  • Posts, comments, likes, messages, shared files

  • Usage data (e.g. last login, visited content – depending on the tool)

Purpose:
To provide the PBU community and members’ area, enable networking and accountability, support the implementation of the programme, and improve our services.

Legal basis:

  • Art. 6(1)(b) GDPR (performance of contract – membership)

  • Art. 6(1)(f) GDPR (legitimate interest in a functioning community and programme delivery)

The technical operation of the members’ area takes place on the servers of our hosting provider mentioned in section 3.

9. Cookies & analytics tools

Our website uses cookies and similar technologies. Cookies are small text files stored on your device by your browser.

9.1 Technically necessary cookies

These cookies are necessary for the operation of our website (for example, to maintain sessions, save cookie preferences, or enable secure login).

Legal basis:
§ 165 TKG in conjunction with Art. 6(1)(f) GDPR (our legitimate interest in providing a functional and secure website).

You cannot deselect these cookies via the cookie banner, as the site would not work properly without them.

9.2 Analytics and marketing cookies (e.g. Google Analytics, Meta Pixel)

If you give your consent via our cookie banner, we may use analytics and marketing tools such as:

  • Google Analytics (or similar web analytics tool)

    • Purpose: to analyse user behaviour and improve our content and marketing.

    • Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

    • Legal basis: your consent, Art. 6(1)(a) GDPR and § 165 TKG.

  • Meta Pixel (Facebook/Instagram)

    • Purpose: measuring and optimising ad campaigns, remarketing.

    • Provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

    • Legal basis: your consent, Art. 6(1)(a) GDPR and § 165 TKG.

Withdrawal / change of consent:
You can withdraw or adjust your cookie consent at any time via the cookie settings on our website. You can also delete cookies in your browser settings or block them altogether.

Please note: here you should explicitly list every tool you actually use (e.g. Google Analytics, Meta Pixel, Hotjar, etc.) and link to each provider’s privacy policy.

10. Social media & external platforms

We maintain social media profiles under the brands Content Fudge and Personal Brand University, for example on:

  • Instagram (Meta Platforms Ireland Limited)

  • LinkedIn (LinkedIn Ireland Unlimited Company)

When you visit our profiles, the respective platform’s privacy policies apply in addition to this one. Depending on the platform, we may be joint controllers with the provider (e.g. for page insights).

Purposes:

  • Presenting our business and offers

  • Communicating with customers, members, and interested persons

  • Community building and marketing

  • Analysing reach and performance

Legal basis:
Art. 6(1)(f) GDPR (our legitimate interest in a professional online presence and communication with our community).

11. Retention periods

We store personal data only for as long as necessary for the purposes described or as required by law.

Typical retention periods include:

  • Contract and billing data: usually at least 7 years (Austrian tax and commercial law).

  • Newsletter / email marketing data: until you withdraw consent or unsubscribe, plus a reasonable period for documentation.

  • Server log files: typically a few weeks, unless security incidents require longer retention.

  • Community / members’ area data: for the duration of your membership and, where necessary, beyond that for the assertion or defence of legal claims or statutory obligations.

After the relevant retention period has expired, the data will be deleted or anonymised.

12. Sharing of data & recipients

We only share your personal data with third parties if:

  • this is necessary for contract performance (e.g. payment providers, hosting, email or webinar tools),

  • there is a legal obligation to do so,

  • you have expressly consented, or

  • it is permitted based on our legitimate interests (e.g. use of processors).

We work with carefully chosen service providers (processors) who process data strictly according to our instructions and are contractually bound under Art. 28 GDPR.

13. Data transfers to third countries

If we use service providers whose registered office is outside the EU/EEA (e.g. in the USA), your personal data may be transferred to a third country.

In these cases, we ensure that a suitable level of data protection exists, for example through:

  • an adequacy decision of the European Commission, or

  • standard contractual clauses (SCCs) and, where necessary, additional measures.

14. Your rights as a data subject

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR):
    You can request information about whether we process personal data concerning you and, if so, which data.

  • Right to rectification (Art. 16 GDPR):
    You can demand the correction of inaccurate or incomplete data.

  • Right to erasure (Art. 17 GDPR):
    You may request the deletion of your data, provided there is no legal obligation or overriding legitimate interest to keep it.

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to data portability (Art. 20 GDPR):
    You have the right to receive data that we process based on your consent or a contract in a structured, commonly used, machine-readable format.

  • Right to object (Art. 21 GDPR):
    You can object at any time, on grounds relating to your particular situation, to processing based on our legitimate interests.
    If you object to direct marketing, we will stop processing your data for such purposes.

  • Right to withdraw consent (Art. 7(3) GDPR):
    You can withdraw any consent you have given at any time with effect for the future.

To exercise your rights, you can contact us at:

Anzhelika Tauber – Content Fudge
Email: info@contentfudge.com

15. Right to lodge a complaint with a supervisory authority

If you believe that the processing of your personal data infringes data protection law, you have the right to lodge a complaint with a supervisory authority.

In Austria, the competent authority is:

Austrian Data Protection Authority (Österreichische Datenschutzbehörde)
Barichgasse 40–42
1030 Vienna
Phone: +43 1 52 152-0
Email: dsb@dsb.gv.at
Website: https://dsb.gv.at/

16. Obligation to provide data

There is generally no legal obligation to provide personal data when you simply visit our website. However, in order to conclude and perform a contract (e.g. PBU membership, purchase), certain data is required. Without this data, we may not be able to enter into or fulfil the contract.

17. Automated decision-making / profiling

We do not use any automated decision-making, including profiling, within the meaning of Art. 22 GDPR that produces legal effects concerning you or similarly significantly affects you.

18. Changes to this privacy policy

We may update this privacy policy from time to time, for example if we introduce new services or if legal requirements change.

Current version: November 2025