Legal

Privacy Policy

Last updated: May 2026

1. Introduction

This Privacy Policy explains how Ben Novak ("we", "us") collects, uses and protects your personal information when you use ben-novak.com and its associated services.

We are committed to protecting your privacy in accordance with Israel's Protection of Privacy Law 5741-1981, the Privacy Protection Regulations (Data Security) 5777-2017, and the EU General Data Protection Regulation (GDPR) for visitors from the European Union.

2. Data Controller

Name: Ben Novak

Location: Tel Aviv, Israel

Contact: via the contact form on this site

3. Information We Collect

3.1 Information you provide directly

Full name and email address when subscribing to the newsletter
Name, email and phone number when submitting the contact form
Answers to self-assessment questionnaires (attachment styles, love languages)
Registration details for workshops and sessions (name, email, phone, special requests)
Payment information when purchasing a workshop or course — processed securely by payment providers and never stored directly on this site

3.2 Information collected automatically

IP address, browser type, operating system, screen resolution
Pages visited, time spent, traffic source
Cookie and localStorage data

4. How We Use Your Information

Providing services, responding to inquiries and coordinating workshops
Sending newsletters and marketing updates (only with your explicit consent)
Analysing site traffic to improve user experience
Complying with legal obligations

5. Third-Party Services

We do not sell or rent personal data. Information may be shared with the following providers, each subject to their own privacy policies:

PostHog: Analytics and usage tracking. You can opt out by clicking "Essential only" in the cookie banner.
Amazon Web Services (SES): Email delivery service for newsletters and service emails.
Meshulam: Israeli credit card processing. Card details are stored and secured by Meshulam only.
PayPal: International payment processing. Payment details are managed by PayPal only.
Telegram: Internal notifications for new inquiries. Your name and email may appear in an internal message and are not shared further.

6. Cookies and localStorage

This site uses the following storage technologies:

Essential cookies: CSRF token for form security, session management.
localStorage: Storing your cookie consent preference.
Analytics cookies (PostHog): Active only with your consent. Can be withdrawn at any time.

We do not use third-party advertising or tracking cookies.

7. Newsletter

Subscribing to "Breath & Beyond" is entirely voluntary. You can unsubscribe at any time via the unsubscribe link in any email, or by contacting us through the contact form.

8. Data Security

All communication is protected by SSL/TLS encryption
Payment details are not stored on this site
Data access is restricted to the site operator
Passwords are hashed with bcrypt

9. Data Retention

We retain your information for as long as necessary to provide the service. Contact details are kept for up to three years after the last interaction, unless legal requirements dictate otherwise. You may request deletion at any time.

10. Your Rights

Under Israeli privacy law and the GDPR, you have the right to:

Access: receive a copy of the data we hold about you
Rectification: correct inaccurate data
Erasure: request deletion of your data
Restriction: limit how we process your data in certain circumstances
Withdrawal of consent: opt out of marketing at any time
Data portability: receive your data in a structured format (GDPR)

11. Changes to This Policy

This policy may be updated from time to time. The date of the last update appears at the top of this page. Continued use after changes are published constitutes acceptance of the revised policy.