Privacy Policy
Mahajrya Association in Switzerland — mahajrya.ch — Last updated: 20 March 2026
1. Data Controller
Mahajrya Association in Switzerland
Route de Bourguillon 9, 1722 Bourguillon, Switzerland
Email: contact@mahajrya.ch
2. Data Collected and Purposes
| Data | Purpose | Legal Basis |
|---|---|---|
| Email address | Passwordless authentication (magic link), communication with members | Contract performance (membership) |
| Full name, soul name | Member identification in association records | Contract performance |
| Phone, postal address | Contact and association correspondence | Contract performance |
| mahajrya.org email | Account verification on the international site | Legitimate interest |
| Payment data (Stripe) | Processing the annual 20 CHF membership fee | Contract performance |
| IP address, access logs | Security, abuse prevention | Legitimate interest |
3. Sub-processors
| Service | Role | Location |
|---|---|---|
| Notion | Member database and content | United States (DPA available) |
| Stripe | Payment processing | United States / EU |
| Resend | Transactional email delivery | United States |
| Vercel | Web application hosting | United States / EU |
4. Retention Periods
- Active member data: retained for the duration of membership
- Data after resignation: deleted upon request or after 5 years following resignation
- Payment data: retained for 10 years in accordance with Swiss legal obligations
- Access logs: retained for 90 days
5. Your Rights
In accordance with the Swiss Federal Act on Data Protection (FADP) and the GDPR, you have the following rights:
- Right of access: obtain a copy of your personal data
- Right to rectification: correct inaccurate data
- Right to erasure: request deletion of your data
- Right to data portability: receive your data in a structured format
- Right to object: object to certain processing
To exercise these rights, contact us at contact@mahajrya.ch.
6. Cookies
This site uses only a secure session cookie (mahajrya_session) required for member authentication. No advertising or tracking cookies are used.
- mahajrya_session: HttpOnly, Secure, SameSite=Lax cookie — 30-day duration — essential for the member area to function
7. International Transfers
Some of our sub-processors (Notion, Stripe, Resend, Vercel) are based in the United States. These transfers are governed by Standard Contractual Clauses (SCCs) compliant with the GDPR and the Swiss FADP.
8. Contact and Complaints
For any questions regarding your personal data, write to us at contact@mahajrya.ch.
You also have the right to lodge a complaint with the Federal Data Protection and Information Commissioner (FDPIC): www.edoeb.admin.ch.