Cookie
policy.

1.1. This Cookie Policy describes the use of cookies and similar technologies on the website raulvidal.eu (hereinafter, "the Site"), whose operator is:

1.2. This policy is complementary to the Privacy Policy of the Site, available at raulvidal.eu/en/privacy-policy, which sets out in detail the categories of personal data processed by the Controller, the purposes of processing, the applicable legal bases, the external Processors engaged, retention periods, and the rights of the Data Subject. Where this Cookie Policy does not resolve a specific question, the Privacy Policy prevails in matters relating to the processing of personal data.

1.3. The use of cookies on the Site is subject to the following regulatory framework:

• Regulation (EU) 2016/679 of the European Parliament and of the Council (hereinafter, "GDPR"), in particular regarding the legal basis for processing and consent.
• Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector (hereinafter, the "ePrivacy Directive").
• Czech Act No. 110/2019 Coll., on Personal Data Processing.
• Czech Act No. 127/2005 Coll., on Electronic Communications (the Electronic Communications Act), in particular Section 89(3), which transposes Article 5(3) of the ePrivacy Directive into Czech law and governs consent for the storage of information on the user's device.
• Guidelines 05/2020 of the European Data Protection Board (EDPB) on consent, in particular regarding the informed, freely given, specific, and unambiguous character of consent, and Guidelines 2/2023 of the EDPB on the technical scope of Article 5(3) of the ePrivacy Directive, regarding technologies equivalent to cookies (local storage, pixel tags, device identifiers, browser fingerprinting, and the like).

1.4. For the purposes of this policy, a "cookie" means any piece of information stored on the visitor's device by the web browser at the Site's request, as well as any similar technology used for the same purpose (local storage, pixel tags, device identifiers). The regulatory regime applies uniformly to all of them, regardless of their technical designation.

1.5. Cookies are commonly classified according to the following criteria:

• By duration: session cookies (deleted when the browser is closed) and persistent cookies (retained for a defined period).
• By ownership: first-party cookies (installed by the Site itself) and third-party cookies (installed by external Processors contractually engaged by the Controller).
• By purpose: strictly necessary cookies for the operation of the Site (which do not require consent under Section 89(3) of Act No. 127/2005 Coll.) and non-strictly-necessary cookies (which require the visitor's explicit consent).

The Site uses only the cookies described in the two categories below. The Controller does not use advertising cookies, social-media cookies that load on the domain, cross-site tracking cookies, or profiling cookies.

3.1. Obtaining consent. When the visitor first accesses the Site, a cookie consent banner is displayed, implemented using the open-source tool Klaro. Until the visitor takes a decision on the banner, no non-essential cookie is installed and Google Analytics operates in restricted mode (Consent Mode v2 with default consent set to "denied").

3.2. Banner options. The banner offers the visitor three options presented with the same visual hierarchy and the same level of accessibility, in line with EDPB Guidelines 05/2020:

• Accept all: consent to all non-essential cookies described in section 2.B.
• Reject all: refusal of consent to all non-essential cookies. The Site remains fully functional.
• Configure: access to the granular settings panel, where the visitor can separately accept or reject each category of non-essential cookies. In the current version of the Site, this panel contains the "Analytics" category as the only non-essential category.

3.3. Characteristics of the consent given. In accordance with Article 4(11) and Article 7 GDPR, consent given through the banner is:

• Freely given: the visitor may reject all non-essential cookies without this affecting the operation of the Site or access to its content.
• Specific: consent is requested by separate categories and for the concrete purposes declared in the banner.
• Informed: the banner refers to this Cookie Policy, where the visitor can review the full detail before deciding.
• Unambiguous: consent is considered given only by means of an affirmative, explicit action (clicking "Accept all" or activating specific toggles in the "Configure" panel). Continued browsing, closing the banner without interacting, or scrolling through the page do not constitute consent.

3.4. Temporal validity of consent. Consent given is valid for twelve months from the moment it is granted. Once that period elapses, the banner is shown again and the visitor may renew, modify, or withdraw their decision. The Controller considers this period appropriate as it balances the visitor's convenience (not being asked on every visit) with the periodic refreshing of consent in the spirit of the GDPR.

3.5. Withdrawal of consent. The visitor may withdraw or modify their consent at any time through either of the following means:

• By clicking the "Manage cookies" link, permanently available in the Site's footer, which reopens the banner's settings panel.
• By deleting the Site's cookies from the browser's settings, which will cause the banner to reappear on the next visit.

3.6. Withdrawal of consent does not affect the lawfulness of processing carried out before withdrawal, in accordance with Article 7(3) GDPR.

3.7. Treatment of consent as personal data. In accordance with the accountability principle of Article 5(2) GDPR, the Controller keeps a technical record of the consent given by each visitor (through the `klaro` cookie stored on the visitor's own device). This record is not stored on the Controller's servers and does not allow individual identification of the visitor.

4.1. Certain third-party services used by the Controller in the context of his professional activity do not install cookies on the raulvidal.eu domain, because the visitor's interaction with those services takes place outside the Site. The Controller nevertheless mentions them here for information, in order to give the visitor a complete view of the Controller's digital ecosystem. The processing of personal data associated with these services is governed by their own policies and is described in the Controller's Privacy Policy.

4.2. MailerLite Limited. The Site contains a subscription form for the Controller's mailing list, used for delivery of the free PDF guide and the subsequent email sequence described in the Privacy Policy (section 2.B). This form installs no MailerLite cookies and loads no MailerLite technical resource on the visitor's device at any time (neither when the Site is loaded nor when the visitor interacts with the form). When the visitor enters their email address and clicks the submit button, the form is processed on the Controller's server, which communicates with MailerLite through its application programming interface (API); the visitor's browser never contacts MailerLite's servers directly. MailerLite's own cookie policy, applicable to its own web platform, is available at mailerlite.com/legal/cookie-policy.

4.3. Calendly LLC. The Controller uses Calendly as a booking system for the first session. Access to the booking system is provided through an external link that opens calendly.com in a separate browser tab. Calendly is not loaded embedded into raulvidal.eu and, therefore, its cookies are not installed on the Site's domain. When the visitor decides to book an appointment and accesses calendly.com, Calendly's cookie policy applies, available at calendly.com/cookie-policy.

4.4. Meta Platforms Ireland Limited (WhatsApp Business and Instagram). The Site contains external links to the Controller's professional accounts on WhatsApp Business (via the wa.me URL) and on Instagram. These links are not "share" buttons or social widgets; they are links that open the corresponding external applications or sites in a separate window or application. No Meta technical resource is loaded from raulvidal.eu and, therefore, no Meta cookies are installed on the Site's domain. When the visitor decides to access these external services, the cookie policies of WhatsApp and Instagram apply, available at whatsapp.com/legal/cookies and privacycenter.instagram.com.

4.5. The Controller does not use on the Site any social-media buttons that embed external content (such as Facebook "Like" buttons, Twitter/X widgets, embedded YouTube iframes, or embedded Google Maps), nor third-party live-chat tools, nor user-behaviour analysis tools such as heatmaps, nor advertising tracking pixels. If the Controller decides to incorporate any of these elements in the future, this policy will be updated before they are put into production to reflect the change, and the corresponding consent will be requested.

5.1. Independently of the consent banner described in section 3, the visitor can at any time configure their web browser to accept, block, or delete cookies, either globally or by domain. This configuration prevails over any decision made through the Site's banner.

5.2. The visitor can consult the instructions for the main browsers at the following official addresses:

• Google Chrome: support.google.com/chrome/answer/95647
• Mozilla Firefox: support.mozilla.org/kb/cookies-information-websites-store-on-your-computer
• Safari (macOS and iOS): support.apple.com/guide/safari/manage-cookies-sfri11471/mac
• Microsoft Edge: support.microsoft.com/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09
• Opera: help.opera.com/latest/web-preferences/#cookies

5.3. Globally blocking cookies through the browser may affect the operation of this Site and of any other site that uses strictly necessary cookies for its operation.

5.4. Modern browsers also offer private or incognito browsing modes, which discard stored cookies when the browser window is closed. The use of these modes does not exempt the Site from its obligation to request consent, but it prevents the persistence of the consent given across sessions.

6.1. Modifications of this policy. The Controller reserves the right to modify this Cookie Policy at any time, solely for the purpose of adapting it to regulatory changes, the incorporation of new services or Processors, modifications to the Site's technical stack, or improvements in data protection measures. Modifications take effect upon publication on the Site. Where a modification entails the addition of cookies requiring consent, the visitor's consent will be requested again through the banner before the new cookies are activated. The date of the last update appears at the beginning of this document.

6.2. Languages of the policy. This policy is available in Czech, English, and Spanish. In case of discrepancy between language versions, the Czech version prevails in accordance with Czech law.

6.3. Relationship with the Privacy Policy. This Cookie Policy is complementary to the Site's Privacy Policy, available at raulvidal.eu/en/privacy-policy. The Privacy Policy contains the full detail on the Controller's processing of personal data, the rights of the Data Subject, the external Processors engaged, and retention periods.

6.4. Governing law and jurisdiction. This Cookie Policy is governed by the GDPR, by the ePrivacy Directive as transposed into Czech law by Act No. 127/2005 Coll., on Electronic Communications, and by Czech Act No. 110/2019 Coll., on Personal Data Processing. Act No. 480/2004 Coll., on Certain Information Society Services, is additionally applicable to other aspects of the Controller's activity, in particular to commercial communications sent by email as described in the Privacy Policy, but does not constitute the specific regulatory basis for the Site's cookie regime. The courts of the Czech Republic have jurisdiction over any dispute arising from the use of cookies on the Site.

6.5. Contact. For any query relating to the use of cookies on the Site or the exercise of the Data Subject's rights described in the Privacy Policy, the visitor may contact the Controller at the email address hola@raulvidal.eu or at the postal address indicated in section 1 of this document.

6.6. Competent supervisory authority. Without prejudice to any other remedy, the visitor has the right to lodge a complaint with the Czech data protection authority: