Privacy Policy

See Beyond Confidentiality Policy

We endeavor to create relationships of trust with those we work with, and confidentiality provides a safe environment to do that.

Your privacy and confidentiality are very important to us. Here is what we mean and don’t mean by confidentiality.

Your shared information (verbal or written) is protected. However, at times there are exceptions. See Beyond desires to help our clients “Do Better and Stay Longer.” In the rare circumstances that See Beyond (SB) must share information from conversations with clients, it is our goal to protect and care for you and others.  

Exceptions

Harm to Self or Others

When we hear client situations that involve potential or actual harm to self or others, we will share with appropriate authorities, specialists, or organizations according to legal requirements and the requirements of the provider’s professional ethical guidelines. 

Third Parties

We will NOT share information with third parties (for example, organizations who are paying for services) without consent. If specific consent is provided in advance by the client, the SB provider, and the third party, See Beyond may share the specific agreed-upon information. Our standard procedure is to share as little as possible with third parties—in most cases, only that the meeting(s) occurred.

In the rare event that SB is required to write a report for a third party, clients have a chance to review and discuss the written report in advance. This does not mean that clients can change or adapt the content of the report. We will not share anything with organizational leaders without consent, unless they are deemed suitable authorities in situations for reporting potential and actual harm to themselves or others. In those cases, we will still ask or alert the client to our plan. 

Administrative Needs

Your name, contact information, and type of service may be shared with your SB provider’s professional certifying association or with an SB administrative assistant in order to invoice you appropriately.

Counseling Clients

Counseling clients’ content (excluding identifying information) is only shared with other licensed professionals for the purpose of increasing the quality of care when the therapist desires professional input. The exception to this is when a client reports that they have a specific plan for harming themselves or someone else or indicate they have harmed a vulnerable person. In these cases, information may be shared with emergency contacts, emergency medical services, or appropriate authorities as dictated by the laws where the counselor is licensed.

Debriefing, Coaching, Personalized Care, and Other 

For debriefing, coaching, personalized care,or other non-counseling clients, it is possible we will share parts of your content with our interdisciplinary See Beyond (SB) staff team of specialists for the purposes of supervision, learning, growth, and increasing the quality of care. 

Groups

When See Beyond is working with a group (for training, facilitation, or group debriefs), those providers working with the group may share information with one another for the benefit of group learning. In some cases, this is specifically avoided for the same reason. 

Minors

The above policy is also true for our work with minors, except that for ages 12 and under, we do not provide confidentiality protection with parents. In other words, we will share important content with parents. For ages 13 and older, our staff will seek to keep confidential all of what is shared, with the exception of harm to self or others.  

Please click to see our complete TCK Confidentiality and Child Protection Policy. If you have questions or comments about our Confidentiality Policy, please don’t hesitate to ask us. Contact: info@seebeyond.cc

Privacy Policy for SeeBeyond.cc

Effective Date: March 20, 2026

This Privacy Policy (the "Policy") describes how See Beyond LLC ("we," "us," or "our") collects, uses, processes, stores, and discloses your Personal Data when you visit or use our website, https://www.seebeyond.cc/ (the "Website"), and interact with our services. We are committed to protecting your privacy and handling your Personal Data in a transparent and secure manner, in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA), the Connecticut Data Privacy Act (CTDPA), the Utah Consumer Privacy Act (UCPA), and Brazilian Lei Geral de Proteção de Dados (LGPD).

By accessing or using our Website and services, you acknowledge that you have read and understood this Privacy Policy.

1. Company Information

  • Company Name: See Beyond LLC

  • Company Address: 21 Indian Cove Circle #4, Oxford, OH 45056

  • Owner Contact Email: info@seebeyond.cc

2. General Data Protection Principles

We adhere to the following principles when processing Personal Data:

  • Lawfulness, Fairness, and Transparency: Personal Data is processed lawfully, fairly, and in a transparent manner.

  • Purpose Limitation: Personal Data is collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.

  • Data Minimization: Personal Data collected is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.

  • Accuracy: Personal Data is accurate and, where necessary, kept up to date.

  • Storage Limitation: Personal Data is kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the Personal Data are processed.

  • Integrity and Confidentiality: Personal Data is processed in a manner that ensures appropriate security of the Personal Data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures.

3. Types of Personal Data Collected

We collect various types of Personal Data, either directly from you or automatically as you interact with our Website and services. Unless otherwise specified, all Data requested by this Website is mandatory, and failure to provide this Data may make it impossible for this Website to provide its services.

The types of Personal Data collected include, but are not limited to:

  • Contact Information: Email address, first name, last name, phone number, postal address.

  • Account Information: Login credentials, payment and banking information.

  • Usage Data: Information about your interaction with our Website, such as IP address, browser type, device information, pages visited, clicks, scrolling, searches, and timestamps.

  • Commercial Information: Records of products or services purchased, obtained, or considered.

  • Identity Information: Data submitted for identity verification (e.g., government identification documents, photos).

  • Communications Data: Information exchanged during support interactions (e.g., feedback, complaints, call recordings).

  • Location Data: Precise or approximate geographic location data.

  • Inferences: Information drawn from other Personal Data to create a profile reflecting consumer preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

4. How We Use Your Personal Data

We use your Personal Data for various purposes, including:

  • Service Provision: To operate our Website, deliver requested services, process transactions, and manage user accounts.

  • Communication: To respond to your inquiries, send service-related announcements, updates, and marketing communications (where you have consented or where legally permissible).

  • Personalization: To customize your experience on our Website and provide tailored content and recommendations.

  • Improvement and Development: To understand how our services are used, diagnose technical issues, analyze performance, and develop new features or products.

  • Security and Fraud Prevention: To protect against unauthorized access, detect and prevent fraudulent activities, and ensure the security and integrity of our services.

  • Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests.

  • Internal Operations: For purposes such as internal testing, research, analysis, and machine learning to improve user experience.

5. Detailed Information on the Processing of Personal Data

This section outlines in detail how we collect, use, store, and disclose Personal Data through our website, including data collected directly by us and through third-party services. We are committed to transparency regarding our data processing activities and providing clarity on your rights concerning your Personal Data.

Our Own Data Collection Activities

1. Contact Forms on Squarespace

When you submit information through contact forms on our website, we collect the Personal Data you provide to facilitate communication and service delivery.

  • Service Provider: Squarespace, Inc.

  • Personal Data Processed: Name, email address, phone number, and any other information you choose to include in your inquiry or message, or details relating to an appointment/service request. This may also include information about your browser, network, device, and IP address for form submission processing.

  • Purpose of Processing: To respond to your inquiries, schedule appointments, provide customer support, and deliver the services you have requested.

  • Place of Processing: Squarespace's globally distributed infrastructure. Squarespace is headquartered in New York, United States, and processes data in the US and other jurisdictions, adhering to data privacy frameworks including the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework.

  • Link to Privacy Policy: Squarespace Privacy Policy

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers (e.g., real name, email address, phone number, IP address), and potentially "Inferences drawn from personal information" based on your inquiry.

Services Involving Third-Party Data Collection

We utilize several third-party services to enhance our website's functionality and service offerings. These services may collect and process Personal Data on our behalf or in conjunction with our own data collection.

1. ActiveCampaign (Services Involving Third-Party Data Collection, Tracking and Analytics, Email Marketing and Newsletter Management)

ActiveCampaign provides marketing automation, email marketing, and CRM services that help us manage our customer relationships and communication strategies.

  • Service Provider: ActiveCampaign, LLC

  • Personal Data Processed:

    • Contact Information: Names, email addresses, phone numbers, postal addresses, online identifiers.

    • Account & Commercial Information: Information provided during account creation, participation in interactive features, form submissions, purchases (including payment information, often processed by third parties), records of products/services obtained.

    • Usage Data: Interactions with our website and communications (e.g., browser type, IP address, pages viewed, time spent, responses to emails), data collected via cookies, web beacons, and session replay technologies.

    • Transactional Information: Details such as purchase specifics, price, date, and location of transactions.

    • Any other personal data you choose to submit.

  • Purpose of Processing: To conduct email marketing campaigns, manage newsletters, provide marketing automation, lead scoring, and CRM services, understand customer interactions, distribute alerts and offers, provide customer service, and perform analytics on email and website engagement.

  • Place of Processing: ActiveCampaign processes data in data centers located in the United States, the European Union, and the Asia-Pacific (Australia). As a US-based company, data transfers to the US may occur.

  • Link to Privacy Policy: ActiveCampaign Privacy Policy

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers, Commercial Information, Internet or other Electronic Network Activity Information.

2. Zapier

Zapier is an automation platform that connects various software applications to automate workflows and transfer data between them.

  • Service Provider: Zapier, Inc.

  • Personal Data Processed:

    • Personally Identifiable Information: Email address, name, home or work address, telephone number (as provided by you or our integrations).

    • Customer Content: Any data transferred into or out of our Zaps or other Zapier services.

    • Anonymous Demographic Information: ZIP code, age, gender, preferences, interests, favorites.

    • Device Data & Usage Data: Information about devices used to access our services, activity logs (IP address, browser type/language, pages viewed, access times), and information collected through cookies.

    • Transactional Information: If applicable to the automated workflows.

  • Purpose of Processing: To automate repetitive tasks and workflows between our applications and other services, facilitate data transfer, provide support, conduct research and statistical analysis, and improve service delivery.

  • Place of Processing: Zapier primarily processes data on AWS servers located in the United States. Zapier is certified under the EU-U.S. Data Privacy Framework (DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, which provides mechanisms for lawful data transfers from these regions to the US.

  • Link to Privacy Policy: Zapier Privacy Statement / Zapier Data Privacy Overview

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers, Commercial Information, Internet or other Electronic Network Activity Information, Geolocation Data (derived from IP address).

Social Media Presence

We maintain a presence on social media platforms to connect with our audience.

1. Links to LinkedIn and Instagram in the Website Footer

We include static links to our profiles on LinkedIn and Instagram in our website footer. We do not directly embed social media widgets for sharing that would immediately collect data when the page loads.

  • Service Providers: LinkedIn Corporation, Instagram (Meta Platforms, Inc.)

  • Personal Data Processed: When you click on these links, you will be directed to the respective social media platforms. Any data collection by these platforms occurs according to their own privacy policies. We do not directly collect or process personal data through these static links on our website.

  • Purpose of Processing: To provide easy access for users to view our official social media profiles and content.

  • Place of Processing: Determined by LinkedIn and Instagram (Meta Platforms, Inc.), which operate globally.

  • Link to Privacy Policy: You should refer to the privacy policies of LinkedIn and Instagram (Meta) for details on their data processing practices.

External Account Access Services

We utilize external services to manage and secure access to certain functionalities.

1. Google (Used for Form Submission Storage)

Beyond its general analytics service, we specifically use Google's infrastructure for storing data submitted via our Squarespace forms.

  • Service Provider: Google LLC

  • Personal Data Processed: The information submitted through our contact forms (name, email, inquiry details), and any associated account information if you are logged into a Google Account during submission. Google's broader collection practices (IP address, browser type, device information, usage data, cookies) also apply to interactions with its services.

  • Purpose of Processing: To securely store and manage the data submitted through our website's contact forms.

  • Place of Processing: Google processes data on its globally distributed servers.

  • Link to Privacy Policy: Google Privacy Policy

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers, Personal Information categories listed in Cal. Civ. Code § 1798.80(e), Internet or other Electronic Network Activity Information, Geolocation Data.

2. Google Authenticator (Used for Finance Logins)

We use Google Authenticator to provide an additional layer of security for our internal finance logins, requiring a unique, time-sensitive code for access.

  • Service Provider: Google LLC (via the Google Authenticator application)

  • Personal Data Processed: The core function of generating time-based one-time passwords (TOTP) is performed locally on the device and does not require an internet connection or direct sharing of the secret key with Google beyond the initial setup with the service you are authenticating. If you choose to sync your Authenticator codes to your Google Account, then associated device information (type, OS, region, IP, Advertising ID, log files, cookies for app analytics) would be processed by Google.

  • Purpose of Processing: To enhance the security of our finance logins by implementing two-factor authentication, making it more difficult for unauthorized parties to gain access.

  • Place of Processing: Primarily on the user's device. If codes are synced to a Google Account, then Google's global data centers.

  • Link to Privacy Policy: Authenticator Privacy Policy - Google Sites (and the general Google Privacy Policy if synced to a Google Account).

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers, Internet or other Electronic Network Activity Information.

Payment Processors

We integrate with third-party payment processors to handle financial transactions securely.

1. WaveApps

WaveApps provides accounting and invoicing software, including integrated payment processing.

  • Service Provider: Wave Financial Inc.

  • Personal Data Processed:

    • Account Information: Name, email, phone number, login details, address, payment, and banking information (e.g., bank account credentials, credit card details).

    • Identity Information: Data submitted for identity verification (e.g., government identification documents, photos).

    • User Communications: Data from support interactions (e.g., feedback, complaints, call recordings).

    • Contact List Information: Contact details stored for payments.

    • Device & Usage Data: Hardware models, IP address, device identifiers, operating systems, software, preferred languages, advertising identifiers, device motion data, mobile network data, and interaction data.

    • Location Data: Precise or approximate location data (for fraud prevention and legal compliance).

    • Data related to your customers and/or employees that you input into the system for invoicing and payment purposes.

  • Purpose of Processing: To provide invoicing, payment processing, accounting, and payroll services; set up and manage accounts; authenticate identity; prevent fraud; comply with legal obligations (e.g., anti-money laundering); provide customer support; and for internal testing and product development.

  • Place of Processing: Wave Financial Inc. is headquartered in Toronto, Canada. Data may be processed and maintained in the U.S. or other jurisdictions by Wave and its service providers (e.g., Plaid for bank connections).

  • Link to Privacy Policy: Wave Privacy Policy / Wave Customer Privacy Policy

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers, Personal Information categories listed in Cal. Civ. Code § 1798.80(e), Commercial Information, Internet or other Electronic Network Activity Information, Geolocation Data, Sensory Data (e.g., call recordings, photos).

2. Stripe (Set Up but Not Yet in Use)

Stripe is a financial services company that provides a payment processing platform. While set up, we are not yet actively processing payments through Stripe.

  • Service Provider: Stripe, Inc.

  • Personal Data Processed: When in use, Stripe would process:

    • Transaction Data: Name, email address, contact number, billing and shipping address, payment method information (e.g., credit/debit card number, bank account details), merchant and location details, amount and date of purchase.

    • Identity Data: For business users and for identity verification (e.g., government identification, business registration details).

    • Device & Usage Data: Information about devices, IP address, and how users interact with Stripe's services.

    • Location Data: Geographic location for transactions.

  • Purpose of Processing: Once in use, the purpose would be to facilitate payment processing, manage online payments, authenticate transactions, verify identity, prevent fraud, enhance security, develop and improve services, communicate with users, and ensure legal compliance.

  • Place of Processing: Stripe operates globally with dual headquarters in the US and Ireland. Data processing occurs in various global data centers, including those in the Americas, EMEA, and APAC regions, with adherence to DPF certifications for international transfers.

  • Link to Privacy Policy: Stripe Privacy Policy / Stripe Privacy Center

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers, Personal Information categories listed in Cal. Civ. Code § 1798.80(e), Commercial Information, Internet or other Electronic Network Activity Information, Geolocation Data, Sensitive Personal Information (financial account information, certain government identifiers).

Tracking and Analytics

We use analytics services to understand how our website is used and to improve its performance.

1. Built-in Squarespace Analytics

Our website includes integrated analytics provided by Squarespace to monitor site performance.

  • Service Provider: Squarespace, Inc.

  • Personal Data Processed: Information about your browser, network, and device; web pages you visited prior to and while on this website; your IP address; details about your use (clicks, internal links, pages visited, scrolling, searches, timestamps); and cookies. For online stores, this includes revenue, conversion, and cart abandonment data.

  • Purpose of Processing: To track and analyze website traffic, visitor behavior, and engagement; to measure site performance (pageviews, conversion rates, sales); to optimize content and design; and to identify opportunities for growth.

  • Place of Processing: Squarespace's globally distributed infrastructure, including processing in the United States, with adherence to DPF certifications for international data transfers.

  • Link to Privacy Policy: Squarespace Privacy Policy

  • Category of Personal Information Collected (according to CCPA/CPRA): Identifiers, Internet or other Electronic Network Activity Information, Commercial Information (for e-commerce), Geolocation Data, Inferences.

Data Sale and Sharing Disclosure (as per user instruction)

This processing constitutes a sale according to the CCPA, VCDPA, CPA, CTDPA and UCPA for Services related to our own data collection activities: Contact forms on SquareSpace.

Please note: While standard contact form submissions are typically for direct communication and service provision, certain interpretations or subsequent uses of the collected data (e.g., for targeted advertising or profiling by the platform provider that extends beyond our direct service provision) could trigger the definitions of "sale" or "sharing" under various U.S. state privacy laws. This statement is included based on the explicit instruction provided, and users should review their specific data practices to ensure full compliance.

6. Legal Basis for Processing Personal Data (GDPR and LGPD)

We process your Personal Data based on one or more of the following legal grounds:

  • Consent: Where you have given explicit consent for the processing of your Personal Data for one or more specific purposes (e.g., for marketing communications). You have the right to withdraw your consent at any time.

  • Contractual Necessity: Where the processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract (e.g., processing payments, providing requested services).

  • Legal Obligation: Where the processing is necessary for compliance with a legal obligation to which we are subject (e.g., tax laws, anti-money laundering regulations).

  • Legitimate Interests: Where the processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms (e.g., for fraud prevention, improving our services, analytics, and direct marketing where permitted).

  • Vital Interests: Where the processing is necessary to protect your vital interests or those of another natural person.

  • Public Interest: Where the processing is necessary for the performance of a task carried out in the public interest.

7. How We Share Your Personal Data

We may share your Personal Data with the following categories of recipients:

  • Service Providers: Third-party companies and individuals who perform services on our behalf, such as hosting, analytics, payment processing, email delivery, customer support, and IT infrastructure. These service providers are contractually obligated to protect your data and process it only according to our instructions.

  • Affiliates: Our subsidiaries and affiliated entities, for operational and service delivery purposes.

  • Business Partners: In limited circumstances, with business partners for purposes such as joint marketing or collaborative efforts, but only with your explicit consent where required.

  • Financial Institutions: Banks, payment networks, and other financial partners involved in payment processing.

  • Legal and Regulatory Authorities: When required by law or in response to valid requests by public authorities, including to comply with court orders, subpoenas, or to protect our rights, property, or safety, or the rights, property, or safety of our users or the public.

  • During Business Transfers: In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company. We will provide notice before Personal Data is transferred and becomes subject to a different privacy policy.

  • With Your Consent: To any other third parties with your explicit consent.

We do not sell or rent your Personal Data to third parties for their independent marketing purposes without your explicit consent, except as specifically disclosed in the "Data Sale and Sharing Disclosure" section.

8. Data Security

We implement appropriate administrative, technical, and physical safeguards to protect your Personal Data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access, misuse, and any other unlawful form of processing. These measures include:

  • Encryption: Using SSL certificates for data in transit and encryption for data at rest where appropriate.

  • Access Controls: Restricting access to Personal Data to authorized employees, contractors, and agents who need to know that information to operate, develop, or improve our services.

  • Regular Audits: Conducting regular security audits and risk assessments.

  • Vendor Due Diligence: Requiring third-party service providers to adhere to strict data protection standards and sign relevant data processing agreements.

  • Physical Security: Maintaining secure data centers with appropriate physical access controls.

While we strive to protect your Personal Data, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.

9. Data Retention

We retain your Personal Data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

The retention periods for different types of Personal Data vary based on:

  • Purpose of Collection: Data collected for contractual performance is retained until the contract is fully performed.

  • Legal Obligations: Data may be retained for longer periods if required by law or regulation (e.g., tax, anti-money laundering).

  • Legitimate Interests: Data collected for our legitimate interests is retained as long as needed to fulfill those purposes, unless a longer retention period is required by law.

  • User Deletion: You may have the ability to delete certain data directly or request its deletion.

When your Personal Data is no longer required, we will securely dispose of it in accordance with applicable laws and our data retention policies.

10. Your Data Protection Rights

Depending on your location and applicable data protection laws, you may have the following rights regarding your Personal Data. To exercise any of these rights, please contact us using the contact information provided in Section 13. We will respond to your request within the timeframes required by applicable law (e.g., one month for GDPR, 45 days for CCPA/CPRA, VCDPA, CPA, CTDPA, and UCPA).

For Users in the European Economic Area (EEA), UK, and Switzerland (GDPR, UK GDPR, Swiss DPA):

  • Right to Access: The right to request copies of your Personal Data that we hold.

  • Right to Rectification: The right to request that we correct any inaccurate or incomplete Personal Data.

  • Right to Erasure ("Right to Be Forgotten"): The right to request that we erase your Personal Data under certain conditions (e.g., no longer necessary for the purposes for which it was collected, withdrawal of consent, unlawful processing).

  • Right to Restriction of Processing: The right to request that we restrict the processing of your Personal Data under certain conditions (e.g., accuracy is contested, processing is unlawful).

  • Right to Data Portability: The right to receive your Personal Data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

  • Right to Object: The right to object to the processing of your Personal Data, particularly where processing is based on legitimate interests or for direct marketing purposes.

  • Right to Withdraw Consent: Where processing is based on your consent, the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

  • Right to Lodge a Complaint: The right to lodge a complaint with a supervisory authority, particularly in the Member State of your habitual residence, place of work, or the place of the alleged infringement.

For California Consumers (CCPA/CPRA):

  • Right to Know: The right to request that we disclose the categories and/or specific pieces of Personal Information we have collected about you, the categories of sources from which it was collected, the business or commercial purpose for collecting, selling, or sharing it, and the categories of third parties to whom we disclose it.

  • Right to Delete: The right to request the deletion of Personal Information we have collected about you, subject to certain exceptions.

  • Right to Correct Inaccurate Personal Information: The right to request the correction of inaccurate Personal Information that we maintain about you.

  • Right to Opt-Out of Sale or Sharing: The right to opt-out of the "sale" or "sharing" of your Personal Information (as defined under CCPA/CPRA), including for cross-context behavioral advertising.

  • Right to Limit Use and Disclosure of Sensitive Personal Information: The right to direct us to limit the use and disclosure of your Sensitive Personal Information to what is necessary to perform the services you requested.

  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights.

For Virginia Consumers (VCDPA):

  • Right to Access: The right to confirm whether we are processing your Personal Data and to access such data.

  • Right to Correct: The right to correct inaccuracies in your Personal Data.

  • Right to Delete: The right to delete Personal Data provided by or obtained about you.

  • Right to Data Portability: The right to obtain a copy of your Personal Data in a portable and, to the extent technically feasible, readily usable format.

  • Right to Opt-Out: The right to opt-out of the processing of Personal Data for targeted advertising, the sale of Personal Data, or profiling in furtherance of decisions that produce legal or similarly significant effects.

For Colorado Consumers (CPA):

  • Right to Opt-Out: The right to opt-out of the processing of Personal Data for targeted advertising, the sale of Personal Data, or profiling in furtherance of decisions that produce legal or similarly significant effects. This includes the option to use a Global Privacy Control (GPC) for opt-out requests.

  • Right to Access: The right to confirm whether we are processing your Personal Data and to access such data.

  • Right to Correct: The right to correct inaccuracies in your Personal Data.

  • Right to Delete: The right to delete Personal Data provided by or obtained about you.

  • Right to Data Portability: The right to obtain a copy of your Personal Data in a portable and, to the extent technically feasible, readily usable format.

For Connecticut Consumers (CTDPA):

  • Right to Opt-Out: The right to opt-out of the processing of Personal Data for targeted advertising, the sale of Personal Data, or profiling in furtherance of decisions that produce legal or similarly significant effects. This includes the option to use a Global Privacy Control (GPC) for opt-out requests.

  • Right to Access: The right to confirm whether we are processing your Personal Data and to access such data.

  • Right to Correct: The right to correct inaccuracies in your Personal Data.

  • Right to Delete: The right to delete Personal Data provided by or obtained about you.

  • Right to Data Portability: The right to obtain a copy of your Personal Data in a portable and, to the extent technically feasible, readily usable format.

For Utah Consumers (UCPA):

  • Right to Opt-Out: The right to opt-out of the processing of Personal Data for targeted advertising or the sale of Personal Data.

  • Right to Access: The right to confirm whether we are processing your Personal Data and to access such data.

  • Right to Delete: The right to delete Personal Data provided by you.

  • Right to Data Portability: The right to obtain a copy of your Personal Data that you provided to us in a portable and, to the extent technically feasible, readily usable format.

For Brazilian Users (LGPD):

  • Right to Confirmation: The right to obtain confirmation of the existence of processing activities concerning your Personal Data.

  • Right to Access: The right to obtain free access to your Personal Data.

  • Right to Correction: The right to request the correction of incomplete, inaccurate, or outdated Personal Data.

  • Right to Anonymization, Blocking, or Deletion: The right to request the anonymization, blocking, or deletion of unnecessary, excessive, or unlawfully processed Personal Data.

  • Right to Portability: The right to data portability to another service or product provider, upon express request, in accordance with regulatory requirements.

  • Right to Deletion: The right to deletion of Personal Data processed with your consent, except in cases provided by law.

  • Right to Information on Sharing: The right to obtain information about public and private entities with which we have shared your Personal Data.

  • Right to Information on Consent: The right to obtain information about the possibility of not providing consent and the consequences of such denial.

  • Right to Revoke Consent: The right to revoke your consent at any time.

  • Right to Oppose Processing: The right to oppose processing based on legitimate interests, if there is non-compliance with the LGPD.

11. International Data Transfers

Given the global nature of the internet and our use of international service providers, your Personal Data may be transferred to, and processed in, countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country.

When transferring your Personal Data internationally, we implement appropriate safeguards to ensure that your data remains protected in accordance with this Privacy Policy and applicable data protection laws. These safeguards may include:

  • Adequacy Decisions: Relying on countries or regions deemed to provide an adequate level of data protection by relevant authorities (e.g., European Commission adequacy decisions for transfers from the EEA).

  • Standard Contractual Clauses (SCCs): Implementing SCCs approved by relevant authorities (e.g., European Commission SCCs for GDPR, UK International Data Transfer Addendum for UK GDPR), which are contractual commitments to protect data.

  • Data Privacy Framework (DPF): For transfers to the United States, we and our service providers may rely on certification under the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, which provides a mechanism for lawful data transfers.

  • Binding Corporate Rules (BCRs): For transfers within our corporate group, if applicable.

  • Your Consent: Where specific legal mechanisms are not in place, we may seek your explicit consent for the transfer.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. When we make changes, we will revise the "Effective Date" at the top of this Policy. If the changes are significant, we will provide a more prominent notice (e.g., a banner on our Website or a direct communication to you). We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

13. Contact Us

If you have any questions or concerns about this Privacy Policy, our data processing practices, or if you wish to exercise your data protection rights, please contact us:

We may require you to verify your identity before responding to certain requests to ensure the security of your Personal Data.

14. Definitions and Legal References

  • Personal Data: Any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

  • Processing: Any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

  • Controller: The natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data.

  • Processor: A natural or legal person, public authority, agency, or other body which processes Personal Data on behalf of the controller.

  • GDPR: General Data Protection Regulation (Regulation (EU) 2016/679).

  • CCPA/CPRA: California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act.

  • VCDPA: Virginia Consumer Data Protection Act.

  • CPA: Colorado Privacy Act.

  • CTDPA: Connecticut Data Privacy Act.

  • UCPA: Utah Consumer Privacy Act.

  • LGPD: Lei Geral de Proteção de Dados (Brazilian General Data Protection Law).

  • Cookies: Small files stored on your device (computer or mobile device) when you visit a website.

  • Usage Data: Data collected automatically, either generated by the use of the service or from the service infrastructure itself (e.g., the duration of a page visit).

Latest Update: March 20, 2026

Unlock New Hope In Your Life

Get Started