Sakura Legacies

Privacy Policy

Last updated: March 31, 2026

We respect your privacy and are committed to protecting your personal data. This policy explains how we collect, use, and protect information when you visit sakuralegacies.com or contact us.

1. Data Controller

For GDPR purposes, Sakura Legacies is the data controller of your personal data. Contact: dan@sakuralegacies.com.

2. Personal Data We Collect

  • Contact data: name, email address, and information you provide via email or booking forms.
  • Usage data: page views, session behavior, browser/device information, and IP-derived location data.
  • Communication data: records of inquiry, consultation scheduling, and related correspondence.

3. How We Collect Data

  • Directly from you when you email us or book a call.
  • Automatically through cookies and analytics technologies (including Google Analytics).
  • From third-party scheduling tools used to book appointments with us.

4. Legal Bases for Processing (GDPR)

We process personal data under one or more of these legal bases:

  • Consent (Article 6(1)(a)) for non-essential analytics where required.
  • Contract (Article 6(1)(b)) to respond to inquiries and provide requested services.
  • Legitimate interests (Article 6(1)(f)) to operate, secure, and improve our website and services.
  • Legal obligation (Article 6(1)(c)) where retention/disclosure is required by law.

5. How We Use Your Data

  • To respond to inquiries and schedule consultations.
  • To deliver value advisory services and maintain related records.
  • To analyze website traffic and improve performance.
  • To maintain website security and prevent abuse.
  • To comply with legal and regulatory obligations.

6. Cookies and Analytics

We use cookies and similar technologies to operate the website and understand usage. We use Google Analytics to measure traffic and engagement.

Where required by law, we rely on consent for non-essential cookies. You can manage cookies through browser settings and may opt out of Google Analytics using available tools.

7. Data Sharing

We may share personal data with trusted service providers where necessary, including:

  • Website and infrastructure providers.
  • Analytics providers.
  • Scheduling and communication providers.
  • Professional advisers and public authorities when legally required.

We do not sell your personal data.

8. International Transfers

Your data may be processed outside your country. Where GDPR applies, we apply appropriate safeguards (including standard contractual clauses) when required.

9. Data Retention

We retain personal data only as long as necessary for the purposes in this policy and to meet legal, accounting, and compliance obligations.

10. Your GDPR Rights

If GDPR applies, you may have the right to:

  • Access your personal data.
  • Correct inaccurate or incomplete data.
  • Request deletion of personal data.
  • Restrict or object to processing in certain cases.
  • Receive a copy of data in portable format where applicable.
  • Withdraw consent at any time (without affecting prior lawful processing).
  • Lodge a complaint with your local supervisory authority.

To exercise rights, email dan@sakuralegacies.com. We may request identity verification before fulfilling requests.

11. Security

We use reasonable technical and organizational safeguards to protect personal data. No internet service can be guaranteed completely secure.

12. Children’s Privacy

Our services are not directed to children under 16, and we do not knowingly collect their personal data.

13. Changes to This Policy

We may update this Privacy Policy periodically. Any updates will be posted on this page with a revised "Last updated" date.

14. Contact

Questions about this policy or your data can be sent to dan@sakuralegacies.com.