Protecting your personal data is important to us. This Privacy Policy explains how Creating the Future You (CTFY), located in Sofia, Bulgaria, collects, uses, stores, and protects your personal data in accordance with the EU General Data Protection Regulation (GDPR – Regulation (EU) 2016/679) and applicable Bulgarian data protection laws.

By using www.creatingthefutureyou.com and our related wellness service platforms, you acknowledge that you have read and understood this Privacy Policy.

1. Data Controller

The data controller responsible for your personal data is:

Creating the Future You (CTFY)
Address: Srebarna St 27B, SoHome, 1407 Sofia, Bulgaria
Email: info@creatingthefutureyou.com
Phone: +359 89 600 8071

2. Personal Data We Collect

We may collect the following categories of personal data:

a) Identification & Contact Data

• First and last name

• Email address

• Phone number

• Mailing address

b) Booking & Service Data

• Appointment and booking details

• Service preferences related to Theta Chamber sessions and wellness services

c) Payment Data

Payments are processed via secure third-party payment providers. We do not store full credit or debit card details.

d) Technical Data

• IP address

• Browser type and version

• Device information

• Website usage data

3. Purpose and Legal Basis for Processing

We process your personal data only when we have a lawful basis to do so under Article 6 of the GDPR:

• Contract performance: To provide booked wellness and Theta Chamber services

• Consent: For newsletters, promotional emails, and optional communications

• Legal obligation: For accounting and regulatory compliance

• Legitimate interest: To improve our website, services, and customer experience

4. Wellness Disclaimer

Our services support relaxation, self-care, and general well-being. They are not medical, psychological, or psychiatric treatments. We do not collect medical records, diagnoses, or clinical mental health data.

5. Data Sharing and Transfers

We do not sell or rent your personal data. We may share your data only with:

• Trusted service providers (payment processors, booking systems, website hosting)

• Legal or regulatory authorities when required by law

Where data is transferred outside the European Economic Area (EEA), appropriate safeguards are applied in accordance with GDPR requirements.

6. Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or to comply with legal obligations.

7. Your Rights Under GDPR

As an EU resident, you have the right to:

• Access your personal data

• Request correction of inaccurate data

• Request erasure (“right to be forgotten”)

• Restrict or object to processing

• Data portability

• Withdraw consent at any time

You also have the right to lodge a complaint with the Commission for Personal Data Protection (CPDP), Bulgaria.

8. Cookies and Analytics

Our website uses cookies to ensure functionality and analyze traffic. You may manage cookie preferences through your browser settings. Disabling cookies may affect website functionality.

9. Data Security

We apply appropriate technical and organizational measures, including SSL encryption, to protect personal data against unauthorized access, loss, or misuse. However, no online transmission is completely secure.

10. Children’s Data

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from minors.

11. Email Communications

You may receive transactional or promotional emails related to your wellness services. You can opt out of marketing emails at any time by clicking the unsubscribe link.

12. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated revision date.

13. Contact Us

If you have questions about this Privacy Policy or your personal data, please contact us using the details above.