Legal

Privacy Policy

Last updated: 13 April 2026

1. Controller

The controller responsible for the processing of personal data on this website is:

2. Scope of this notice

This Privacy Policy applies to all personal data processed through this website, including data submitted via:

• visiting or browsing the site
• completing the Formation Diagnostic or Extended Soul Diagnostic
• submitting a contact or enquiry form
• registering to access formation tools
• booking a conversation via the scheduling link

This site does not run a newsletter or mailing list. No marketing emails are sent without explicit agreement.

3. Categories of personal data collected

Contact and identity data

• Name and email address — submitted voluntarily via forms
• Phone number and organisation — if provided

Diagnostic and reflective data

• Your responses to 72 structured questions about your leadership patterns, inner posture, spiritual practices, relational reality, and physical wellbeing
• Reflective self-assessments submitted as part of the diagnostic process
• Derived section scores and formation profiles generated from your responses
• Written reflections submitted alongside the diagnostic

This category of data is treated with particular care. See Section 5 below.

Technical data

• IP address — collected automatically by web hosting infrastructure and by third-party font and script providers on page load
• Browser type, device type, and operating system — collected by hosting logs
• Referral source and page visits — hosting-level logs only; no analytics platform is used

Booking data

• Name, email, and appointment details — collected by Microsoft Bookings when a conversation is scheduled

4. Purposes of processing and legal bases

We process personal data only for the purposes described below. We do not sell personal data. We do not use diagnostic data for marketing purposes. Where EU/EEA users are involved, we identify the legal basis under the GDPR for each purpose.

Delivering the diagnostic and returning results

We process diagnostic responses to generate a formation analysis and return it to you by email. Legal basis: consent — you choose to complete and submit the diagnostic.

Responding to enquiries

We process contact data to reply to messages submitted through the site. Legal basis: legitimate interests — responding to a direct enquiry.

Administering bookings

Appointment data is processed to schedule and manage coaching conversations. Legal basis: pre-contractual steps — taking action at your request before a service engagement begins.

Delivering formation resources

Registration data is processed to provide access to formation tools on the site. Legal basis: consent — you choose to register.

Operating and improving the site

Technical data is processed to maintain site security, diagnose technical problems, and understand general usage patterns. Legal basis: legitimate interests.

Meeting legal obligations

We may retain records where required by Swiss law. Legal basis: legal obligation.

5. The diagnostic — special notice

The Formation Diagnostic and the Extended Soul Diagnostic are reflective formation instruments. They are not medical assessments, psychological tests, psychiatric evaluations, or clinical tools of any kind. They do not constitute therapy, counselling, or clinical care, and they do not produce clinical diagnoses.

The diagnostic collects personal reflective responses about your inner life, spiritual practices, relational patterns, and physical wellbeing. This material is sensitive. We handle it accordingly:

• Responses are transmitted via Formspree (see Section 6) and delivered directly to Frank Wendt at the email address above
• Access is restricted to those involved in delivering your formation analysis
• Diagnostic responses are not shared with other clients, published, or used for any purpose other than preparing and returning your analysis
• You should not submit information you do not wish to share with Frank Wendt

Participation in the diagnostic is entirely voluntary. You may request deletion of your diagnostic data at any time by emailing frank@wendtconsult.net.

6. Third parties and data processors

We use the following third-party services, each of which may process personal data in connection with delivering this site and its services:

Formspree

Used to receive diagnostic and registration form submissions. Formspree is operated by Formspree Inc. (United States). Data submitted via forms on this site is transmitted to Formspree servers before being forwarded to our email. Formspree offers a Data Processing Agreement under GDPR. See: formspree.io/legal/privacy-policy

Microsoft 365 / Microsoft Bookings

Used for scheduling conversations. When you click the booking link, you are redirected to a Microsoft-operated booking page. Data you enter there (name, email, appointment details) is processed by Microsoft. See: privacy.microsoft.com

Google Fonts

This site loads typefaces from Google Fonts on every page. This causes your browser to make a request to Google servers, which may log your IP address. Google Fonts is operated by Google LLC (United States). See: Google Fonts Privacy FAQ

Cloudflare CDN

When you download your diagnostic PDF, the site loads a PDF generation library from Cloudflare's CDN. This involves a request to Cloudflare servers that may log your IP address. See: cloudflare.com/privacypolicy

Netlify (web hosting)

This site is hosted on Netlify, operated by Netlify, Inc. (United States). Netlify collects standard server logs including IP addresses, request timestamps, and browser information as part of operating the hosting infrastructure. Netlify is certified under the EU-US Data Privacy Framework. See: netlify.com/privacy

7. International transfers

Some of the third-party services listed above are operated by companies in the United States. Switzerland's revised Federal Act on Data Protection (nFADP) and, where applicable, the GDPR govern cross-border transfers of personal data.

For transfers to the United States, we rely on the service providers' own compliance mechanisms (Standard Contractual Clauses, adequacy decisions, or equivalent safeguards). Where Data Processing Agreements are available, we use them.

If you have questions about specific transfer arrangements, please contact us at frank@wendtconsult.net.

8. Retention

• Diagnostic responses — retained for 12 months from the date of submission, or until you request deletion, whichever comes first
• Contact enquiries — retained for as long as necessary to respond and for reasonable follow-up, typically no longer than 24 months
• Registration data — retained for as long as your access to formation tools is active, plus a reasonable period thereafter
• Booking data — retained as needed for service administration and any applicable legal record-keeping requirements
• Technical logs — retained according to the policies of the hosting provider, typically 30–90 days

To request deletion of your data at any time, email frank@wendtconsult.net with the subject line "Data deletion request."

9. Your rights

Under the Swiss nFADP and, where applicable, the GDPR, you have the following rights regarding your personal data:

• Access — you may request confirmation of whether we hold personal data about you and a copy of that data
• Correction — you may request that inaccurate or incomplete data be corrected
• Deletion — you may request deletion of your data where no legal basis for continued retention exists
• Restriction — you may request that we restrict processing in certain circumstances
• Objection — you may object to processing based on legitimate interests
• Withdrawal of consent — where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing
• Portability — where applicable, you may request your data in a structured, machine-readable format
• Complaint — you may lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) at edoeb.admin.ch, or with the supervisory authority in your EU member state of residence

To exercise any of these rights, contact us at frank@wendtconsult.net.

10. Cookies and local storage

This site does not use advertising cookies, analytics cookies, or marketing pixels.

The site uses browser localStorage to store your language preference (English or German) between visits. This preference is stored locally in your browser only — it is not transmitted to any server.

The site uses browser sessionStorage to maintain your registration state during a single browsing session. This is cleared when you close your browser tab.

Some third-party services accessed via this site (Google Fonts, Formspree, Microsoft Bookings, Cloudflare) may set their own cookies. Refer to the privacy policies of those services for details.

Because this site does not set non-essential cookies itself, no cookie consent banner is displayed. If you have concerns about third-party cookies from the providers listed above, you can manage cookies through your browser settings.

11. Security

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, or disclosure. These measures include HTTPS encryption for all data in transit and access controls limiting who can receive diagnostic submissions. No security measure can guarantee absolute protection; we encourage you not to submit highly sensitive personal or financial information through web forms.

12. Contact

For questions, requests, or complaints relating to this Privacy Policy or the processing of your personal data, please contact:

We aim to respond to all data-subject requests within 30 days.