1. Introduction
Welcome to Sophia Soma Integrative Wellness (“we,” “our,” “us”). We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website, engage our services, and more.
By using our website or services, you consent to the practices described herein.
2. Who we are
Organization name: Sophia Soma Integrative Wellness
Address: (Colorado, United States)
Contact email: ([email protected])
Jurisdiction: We operate under U.S. federal law, the State of Colorado, and — where applicable — EU law (GDPR) with respect to individuals in the European Economic Area (EEA). (European Union)
3. Information we collect
We may collect and process the following categories of personal information:
· Contact information (e.g., name, email address, phone number, mailing address)
· Payment or billing information, if applicable
· Demographic or health-/wellness-related information you provide (for coaching, wellness services, etc.)
· Website usage data (IP address, device type, browser, pages visited, referral/exit pages, time and date)
· Cookies and tracking technologies (see our Cookie Notice or section below)
· Any other information you choose to provide (via forms, surveys, email, etc.)
4. How we collect your information
We collect personal information:
· Directly from you (e.g., when you fill out a contact form, register for services, subscribe to our newsletter)
· Automatically via your use of our website (cookies, log files, analytics)
· From third-party sources, if you consent or if those sources are lawfully provided (e.g., social media platforms, referrals)
We follow the guidance that in the U.S., privacy notices should be presented at or before the time of collection. (OneTrust)
5. Purposes and lawful basis for processing your data
We use your personal data for these purposes:
· To provide, personalize and maintain our services (coaching, wellness consulting, digital products)
· To communicate with you (respond to enquiries, send updates, newsletters)
· To process payments and manage billing
· To comply with legal obligations
· To improve our website and services (analytics, user feedback)
If you are located in the EEA, our lawful bases for processing may include your consent, our performance of a contract with you, compliance with legal obligation, and/or our legitimate interests (e.g., improving our services) as allowed under GDPR. (GDPR)
6. Sharing and disclosure of your data
We may share your personal information with:
· Service providers, contractors, or other third parties who perform services on our behalf (e.g., payment processors, email-service providers)
· Legal authorities or other third parties when required by law or to protect our rights or the safety of others
· In the event of a sale, merger, acquisition, or transfer of assets, your personal information may be transferred as part of that transaction
We do not sell your personal information for monetary gain (or you may explicitly indicate if we do) unless and until we provide a clear “opt-out” right, in compliance with applicable U.S. state laws.
7. International transfers
If we transfer your personal information outside your jurisdiction (for example, from the EEA to the U.S.), we will ensure appropriate safeguards (such as Standard Contractual Clauses) are in place to protect your data as required under GDPR. (GDPR)
8. Data retention
We will retain your personal information only for as long as is necessary for the purposes set out above, and in accordance with applicable laws. When no longer needed, we will securely delete or anonymize it.
9. Your rights
If you are in the EEA, you have certain rights under GDPR, including:
· Right to access your personal data;
· Right to rectify inaccurate or incomplete data;
· Right to request erasure (‘right to be forgotten’);
· Right to restrict processing;
· Right to data portability;
· Right to object to processing;
· Right to withdraw consent at any time (without affecting the lawfulness of processing before withdrawal). (GDPR)
If you are in Colorado (or certain U.S. states with privacy laws) you may have rights such as opting out of sale/sharing of personal data, requesting access or deletion, etc. We will respond to your request within the time required by law.
10. Cookies and tracking technologies
We may use cookies, web beacons, and similar tracking technologies to collect information about your browsing behavior and device, to personalize your experience, analyze website traffic, and for marketing purposes. You can disable cookies via your browser settings, but please note this may affect functionality.
11. Security
We implement reasonable administrative, technical and physical safeguards to protect your personal information. However, no method of transmission over the Internet or electronic storage can be guaranteed to be 100 % secure.
12. Children’s privacy
Our services and website are not directed to children under 13 years of age, and we do not knowingly collect personal information from children under 13. If you believe we may have collected such information, please contact us so we can delete it. (Privacy World)
13. Updates to this Privacy Policy
We may update this Privacy Policy from time to time (e.g., to reflect changes in law or our practices). We will post the new version on our website and update the “Last updated” date. We encourage you to check back periodically. (Termly)
14. Contact us
If you have any questions or wish to exercise your rights, please contact:
Email: ([email protected])
Address: (Colorado, United States)