Privacy Policy ⋆ Lightflow Academy by Cecilia Sifontes

Privacy Policy

This website, www.lightflow.info, is the property of Lightflow Productions AB, owned by Cecilia Sifontes. Your privacy is very important to us and we are fully committed to achieving compliance with the EU General Data Protection Regulation (GDPR.) By registering and/or purchasing from Lightflow Productions AB you consent to the collection and use of your personal information as described in this policy. For additional information, please refer to our Terms and Conditions

This policy is effective from 22nd October 2018.
This policy was last updated on 19th February 2026.

1. Information collection and use

Lightflow Productions AB is the sole owner of the information collected on the Lightflow.info website. Lightflow Productions AB does not sell, share, or rent this information to others in ways different from what is disclosed in this statement. Our company is located at Norra Sundsvägen 2, SE-619 94 Vagnhärad, Sweden.

2. Registration

You do not need to register to view our website. You can browse our site without disclosing your personal data. To order products or register for a seminar from our secure online store, track your orders, view and access your downloads, receive special offers, or manage your account, you must first register. When registering you will be asked to give your contact information (name, address, email address, phone number and/or Skype ID) and to create a username and password. This information is used to contact you about the services on our site (for instance your order) and to send you our digital newsletter (you can easily unsubscribe at any time if you no longer wish to receive our newsletter).

3. What and how we collect your data

First and/or last name (via Contact page forms, newsletter, online shop, Feedback/testimonial form).
Email address and/or telephone number, and/or Skype ID, and/or blog or website URL (via Contact forms, Email newsletter signup forms, online shop, Stripe online payments).
Demographic information such as GeoLocation (country), IP address, browser/device, preferences, and interests.
Referral information such as website address, industry, company, etc.(via Email signup forms.)

4. What we do with the information we gather

From time to time, we may also use your information to contact you for market research purposes (e.g. Case studies, Expert round-up posts, Customer feedback). We will ONLY ever contact you via email for this.
We may use the information you provide to customize our website according to your interests and needs.
If you take part in a seminar/webinar where we send you the recordings of the event or a transcript/summary/booklet, then we will use third party providers like wetransfer.com or dropbox.com to share the files with you. We only use your e-mail to send you the files no other information is shared with these third party providers. We may also use these third party providers to send you other files that you may have ordered for instance if they are not available on lightflow.info or if you would have problems downloading them and you have asked us to assist you.

5. Cookies

Lightflow uses cookies for statistical analysis purposes. A cookie is data stored on your hard drive containing information about you that enables you to use our site. Cookies are in no way linked to any personally identifiable information. They are required to remember the items you put in your shopping cart so these items will be there when you shop and return to your cart to add to your order. You can disable cookies by changing the settings on your browser, however you will need cookies enabled to use our site effectively and to place an order. Upon visiting this website for the first time, you will be greeted with an option to accept cookies. Cookies are disabled until you consent whether you’d like to accept them. If you decide to accept, the page will reload shortly after.

Overall, cookies help us provide you with a better user experience, by enabling us to monitor which pages you find useful and which you do not. If for any reason you decide that you do not like cookies, you can simply change your browser settings even after you’ve accepted them. This may prevent you from taking full advantage of our website, content, and offers.

6. Third-party tracking

To furthermore add transparency to this privacy policy, we feel that it’s important for us to disclose to you whether third-party companies and organizations are able to acquire and track your personally identifiable information through our website. Google and various other websites can track you through this site as we use their services for, usage analysis, behavior tracking, and infrastructure purposes.

7. Links to other websites

Sometimes contain links to other websites for instance to the ones of Lightflow teachers or other sites of similar interest and relevance. If/when you use these links and leave our site, Lightflow no longer has any control over the other website. Lightflow is not responsible for the protection and privacy of any personal information you provide whilst visiting other sites and therefore the other sites are not governed by this privacy statement.

Lightflow encourages you to exercise caution and look at the privacy statement applicable to the website in question.

8. Sharing your personal data

Lightflow does not share your personal data with other companies except for third parties that are necessary to fulfill your order. Your email but no other personal information will be stored by our e-news provider. Lightflow does not share your personal information with other students that may participate in the same course as you. We will NEVER sell, distribute or lease your personal information with any third party unless we are required to do so by law.

9. Online shop

If you want to order goods in our webshop, we ask for certain personal data (name, first name, address, payment data, e-mail address). We store the data you provide and use it to process the order. If you create a password-protected customer account, it contains an overview of orders placed, active order transactions, your address data and downloads.

All online payments are processed using Stripe through a third party application. Lightflow does not see, collect, or store your credit or debit card information. We do not see, collect, or store other sensitive information such as usernames and passwords. You can view Stripe’s privacy policy here.

The data transmission in our online store is secured by SSL!

10. Webinars via Zoom

We use the provider Zoom Video Communications Inc, San Jose Office, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA for our video conferences, audio conferences, webinars or other online meetings. This takes place either

within the scope of our contractual or pre-contractual legal relationships pursuant GDPR,
within the scope of your consent, provided we have obtained it in advance (such as for a recording) pursuant to GDPR or otherwise
in the context of our legitimate interest in a technically flawless online offer and its economically efficient design and optimization pursuant to GDPR.

Whenever you use our external communication provider, all data that you provide, enter or display during communication (in particular inventory data such as name and email, usage data such as browser used, websites visited, length of stay, referrer URL and your IP address, content data such as audio and video communication and/or recording, chat history, shared screen content) is transmitted to the external communication provider and stored by it. We ourselves use settings that are as privacy-friendly as possible, and you can also take such precautions. For example, you can log in with aliases or unique email addresses, or (partially) disable your audio and video transmission.
This will result in your data being transferred to the USA. We have concluded a contract with our communications provider in accordance with the standard contractual clauses, in which our provider assures protection of your data in accordance with the GDPR requirements. Furthermore, we have concluded an order processing agreement with the external communications provider, according to which the latter will only process your data in accordance with our instructions.

Your data will remain stored insofar as it is still necessary for the purposes of your consent, for the performance/execution of the contract, for legal prosecution by us or for our other legitimate interests or we are required by law to still retain your data.

Your data will not be passed on to third parties by us or the external communication provider. An exception may be an evaluation of usage data for service and security purposes as well as for marketing purposes by the external communication provider. For further use of your data by the external communications provider, please refer to its terms and conditions https://explore.zoom.us/de/terms/ and the associated privacy policy https://explore.zoom.us/de/privacy/.

Insofar as external communication providers store cookies or other trackers on your computer, we also refer you to our general presentation in this data protection declaration for the general handling and deactivation of cookies.

11. Newsletter

If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter registration form is based exclusively on your consent. You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. Data stored by us for other purposes remain unaffected by this.

Newsletter delivery to existing customers
If you order products or services from us and provide your email address for this purpose, we may subsequently use this email address to send you newsletters. We will only send you direct advertising for our own similar products or services via the newsletter. You can unsubscribe from this newsletter at any time. There is a link for this purpose in every newsletter.

Double opt-in and logging
Registration for our newsletter takes place in a so-called double opt-in process. This means that after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other e-mail addresses.
The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time, as well as the IP address. Likewise, changes to your data stored with the shipping service provider are logged.

Editnews by Multinet
This website uses the services of Editnews for sending newsletters. The provider is MultiNet Interactive AB, 556272-2594, P.O. Box 17, 101 20 Stockholm. Sweden. Editnews is a service with which, among other things, the sending of newsletters can be organized and analyzed. When you enter data for the purpose of receiving newsletters (e.g. e-mail address), this data is stored on Multinet’s servers in Sweden.

With the help of Multinet, we can analyze our newsletter campaigns. When you open an email sent with Editnews, a file contained in the email (so-called web-beacon) connects to Multinet’s servers in Sweden. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked. In addition, technical information is recorded (e.g. time of retrieval, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients. If you do not want any analysis by Multinet, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. Furthermore, you can also unsubscribe from the newsletter directly on the website.
The data processing is based on your consent. You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you have provided to us for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of Multinet after you unsubscribe from the newsletter. Data that has been stored by us for other purposes (e.g. e-mail addresses for the member area) remains unaffected by this.

For more details, please refer to the privacy policy of Multinet at multinet.com/en/security-and-privacy.

12. Integration of third-party services and content

It may happen that content or services from third-party providers, such as fonts or videos from other websites, are integrated within our online offer. The integration of third-party content always requires that the third-party providers perceive the IP address of the user, since without the IP address they could not send the content to the user’s browser. The IP address is thus required for the display of this content. In addition, the providers of the third-party content can set their own cookies and process the users’ data for their own purposes. In doing so, user profiles can be created from the processed data. We will use this content in a data-saving and data-avoiding manner as far as possible and select reliable third-party providers with regard to data security.

Google Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. For this purpose, the browser you are using must connect to Google’s servers. This enables Google to know that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of GDPR. If your browser does not support web fonts, a standard font will be used by your computer. For more information on Google Web Fonts, please visit https://developers.google.com/fonts/faq and see Google’s privacy policy: https://policies.google.com/privacy.

Font Awesome (local hosting)
This site uses Font Awesome for consistent font display. Font Awesome is installed locally. There is no connection to Fonticons, Inc. servers. For more information about Font Awesome, please refer to the Font Awesome privacy policy at: https://fontawesome.com/privacy.

YouTube
Our website uses YouTube functions. The provider of these services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you visit our site, a connection to the YouTube servers is established. This transmits to the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you give YouTube the opportunity to assign your user behavior directly to your personal YouTube profile. By logging out of your YouTube account, you can avoid this. The data collected by YouTube is transmitted to the USA, which according to the GDPR is considered a third country with an insecure level of data protection. We have no knowledge about the further processing and about the duration of storage by YouTube. The legal basis for the processing of the data is our legitimate interest pursuant to GDPR, as we would like to offer you an appealing and informative website. For more information on the handling of user data by YouTube, please refer to YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy

13. Social Media

Data processing through social media networks
We maintain publicly accessible profiles on social networks. The social networks used by us in detail can be found below.
Social networks such as Facebook and Instagram can generally analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). Visiting our social media presences triggers numerous processing operations relevant to data protection. In detail:
If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your end device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, you can be shown interest-based advertising inside and outside the respective social media presence. Provided you have an account with the respective social network, the interest-based advertising may be displayed on all devices on which you are or were logged in.
Please also note that we cannot track all processing on the social media portals. Depending on the provider, further processing operations may therefore be carried out by the operators of the social media portals. For details, please refer to the terms of use and data protection provisions of the respective social media portals.

Legal basis
Our social media presences are intended to ensure the most comprehensive presence possible on the Internet. This is a legitimate interest within the GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which are to be specified by the operators of the social networks (e.g. consent within the meaning of GDPR).

Responsible party and assertion of rights
If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both vis-à-vis us and vis-à-vis the operator of the respective social media portal (e.g. vis-à-vis Facebook).
Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.

Storage period
The data collected directly by us via the social media presence will be deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies. Stored cookies remain on your terminal device until you delete them. Mandatory legal provisions – in particular retention periods – remain unaffected.
We have no influence on the storage period of your data, which is stored by the operators of social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).

Social networks in detail

Facebook
The provider is Facebook Inc, 1 Hacker Way, Menlo Park, California 94025, USA. Facebook has certification in accordance with the EU-US Privacy Shield. You can independently adjust your advertising settings in your user account. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads For details, please refer to Facebook’s privacy policy: https://www.facebook.com/about/privacy/

Instagram
The provider is Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. For details, please refer to Instagram’s privacy policy: https://instagram.com/about/legal/privacy

14. Security

We take every precaution to protect your personal information. When you submit personally identifiable information via our website, the information you send us is protected both online and off-line. Your personal information is encrypted and is protected with the best encryption software in the industry – SSL. While on a secure page, such as our order form, you can see the lock icon on the bottom of Web browsers , as opposed to un-locked, or open, when you are just “surfing”. With SSL implemented on both the client and server, information sent via the Internet can be trusted to arrive privately and unaltered. It is designed to prevent unauthorized people from seeing data sent to or from this site. We also do everything in our power to protect user information off-line. Only employees who need your information to verify your order have access to your information.

15. Controlling your personal information

You may choose to restrict the collection or use of your personal information in the following ways:
If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by emailing us at: cecilia@lightflow.info

You may request details of any personal information which we hold about you under the GDPR. If you would like a copy of the information held on you please write to:

Cecilia Sifontes
Lightflow Productions AB
Norra Sundsvägen 2
SE-619 94 Vagnhärad, Sweden
email: cecilia@lightflow.info

If you believe that any information we are holding on you is incorrect or incomplete, please email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.

16. Changes to this Privacy Policy

We reserve the right to make changes to this Privacy Policy. The last modification was made on: 19th February 2026.

Encryption Disclaimer:

Lightflow.info uses encryption technology to protect information from access by unauthorized third parties. We do not, however, represent or guarantee that the encryption technology will operate as intended or that a third party will not be able to access such information. If you have any concerns about sending such information over the Internet, you should use an alternative means of payment. By sending any information over the Internet, in connection with your use of the Website, you agree that We will not have any liability if the applicable encryption technology fails to protect your information.

Cecilia Sifontes

Cecilia's Mission

Cecilia's World

Events

Upcoming Events

Event Recordings

Reading Corner

Listening

Videos