Privacy Policy
Last updated: April 23, 2026
We, Daniele Botta — Cosmic Patterns, Im Felde 2, 47445 Moers, Germany, take the protection of your personal data very seriously. This Privacy Policy explains how we process personal data on www.cosmic-patterns.com (the "Website") in accordance with the GDPR (EU data protection law) and applicable national laws.
1. Controller
Controller within the meaning of the GDPR:
Daniele Botta — Cosmic Patterns
Im Felde 2, 47445 Moers, Germany
Email: [email protected]
2. Data We Collect
We collect the following personal data when you use our Website:
- Email address: When you sign up for the free Big 3 Reading or make a purchase.
- Birthday (day, month, year): Required for astrological calculations (Sun, Moon, Rising sign, and full Birth Chart).
- Birth time and birthplace (optional): Used to calculate Rising sign and house placements in the Complete Birth Chart product. Voluntary — you can skip.
- Purchase data: Name and payment information processed by Stripe when purchasing the Complete Birth Chart ($19) or Monthly Pattern Report ($4.99).
- Email engagement data: Opens and link clicks within our emails, tracked via Resend to improve content relevance.
- Technical data: IP address and browser type, collected anonymously for security and infrastructure purposes.
- Cookies: Essential cookies for site functionality. Analytics cookies (Google Analytics) only with your consent.
3. How We Use Your Data
- Sending the free Big 3 Reading and follow-up email sequence (legal basis: contract performance, Art. 6(1)(b) GDPR).
- Sending purchase confirmations, delivery of digital products, and post-purchase support emails (Art. 6(1)(b) GDPR).
- Calculating and delivering personalised astrological content based on your birthday and optional birth data (Art. 6(1)(a) GDPR — consent).
- Marketing communications and product recommendations (Art. 6(1)(a) GDPR — consent).
- Improving website security and user experience (legitimate interest, Art. 6(1)(f) GDPR).
4. Data Processors
We share your data with the following contracted service providers (data processors) who are bound by data processing agreements:
- Resend — email delivery and engagement tracking.
- Supabase — database hosting and authentication.
- Stripe — payment processing.
- Google Analytics — website analytics (only with your consent).
No data is transferred outside the EU/EEA without appropriate safeguards (e.g. Standard Contractual Clauses).
5. Data Retention
We retain your email address and associated data for as long as you remain subscribed. After unsubscribing, your data is deleted within 30 days unless retention is required by law. Purchase records are retained for 10 years in accordance with German tax law.
6. Your Rights
Under the GDPR, you have the right to: access your data, request rectification or erasure, restrict processing, data portability, object to processing, and withdraw consent at any time. To exercise these rights, contact us at [email protected]. You may also lodge a complaint with a supervisory authority (in Germany: the competent Landesdatenschutzbehörde).
7. Data Security
We use HTTPS encryption, secure cloud infrastructure, and access controls to protect your data. No transmission method is 100% secure — we cannot guarantee absolute security.
8. Unsubscribe
You can unsubscribe from our email list at any time via the unsubscribe link in any email we send, or by contacting us directly.
9. Changes to This Policy
We may update this policy from time to time. The current version is always available on this page.
Questions? Contact: [email protected]