Privacy Privacy Policy

Last updated: August 28, 2025, in compliance with GDPR

By accessing [yourwebsite.com], you agree to the terms of this Privacy Policy. This website is managed by Ars Altera Lux, SIA, 40203611894 (Limited Liability Company). We encourage you to keep your personal information current. Please inform us of any updates by contacting info@happysisters.club.

1. Introduction

[Your Coaching Business Name] is dedicated to safeguarding your personal information online. This Privacy Policy outlines how we gather and handle personal data through our website, [yourwebsite.com] (the “Site”), and related services, including Rapid Transformational Therapy (RTT) and hypnosis sessions. We act as a Data Controller under the European Union’s General Data Protection Regulation (GDPR).

We refer to site visitors, clients, and users as “you” or “your,” and to ourselves as “we,” “us,” or “our.” Using our Site or services indicates your acceptance of this Privacy Policy. This policy applies to all users, including those engaging in coaching or RTT sessions. By interacting with our Site or services, you confirm that you have read and agree to this policy.

2. Information We Collect and Its Use

We collect personal details you provide voluntarily, such as your name, email, phone number, and payment information, to deliver coaching services, respond to inquiries, send newsletters, or manage blog comments. For RTT and hypnosis sessions, we also collect sensitive health information, as explained below. Data is gathered directly through forms (e.g., contact or intake forms), purchases, or communications (e.g., email, phone, social media). We may also collect data automatically via analytics tools or from third parties (e.g., payment processors).

Your information is stored securely and used only for the purposes described below or compatible activities. The categories of data we collect include:

  • Client Data: Includes your name, email, phone number, billing address, and payment details for purchasing coaching or RTT services. We use this data to fulfill your orders, process payments, and keep transaction records. The legal basis is fulfilling a contract with you or taking steps to enter one at your request.
  • Inquiry Data: Covers details like your name, email, phone number, and questions when you inquire about our services (e.g., via forms, email, or phone). We use this to answer your questions and explore potential service agreements. The legal basis is our legitimate interest in addressing inquiries or your explicit consent.
  • Communication Data: Encompasses messages you send us through contact forms, email, phone, social media, or during RTT sessions. We use this to maintain client relationships, keep records, and, if needed, support legal claims. The legal basis is our legitimate interest in managing communications.
  • Health Data: For RTT and hypnosis sessions, we collect medical information (e.g., medical conditions, mental health history) through an intake form to ensure hypnosis is safe and suitable for you. This sensitive data is processed only with your explicit consent under GDPR Article 9 and used solely to deliver safe, personalized RTT sessions. We handle this data with utmost confidentiality and security.
  • Site Usage Data: Includes technical details like your IP address, browser type, operating system, page visits, and navigation patterns, collected via tools like Google Analytics. We use this to improve our Site, personalize content, and analyze usage trends. The legal basis is our legitimate interest in enhancing user experience.
  • Marketing Preferences: Includes your choices regarding promotional communications (e.g., newsletters). We use this to send relevant offers and evaluate campaign effectiveness. The legal basis is your consent or our legitimate interest in business growth.

We avoid collecting sensitive data (e.g., race, religion, or political views) unless provided with your explicit consent for RTT purposes. If you do not provide required data (e.g., health information for RTT), we may be unable to offer certain services, and we will inform you if this impacts your booking.

We do not engage in automated decision-making or profiling. If we need to use your data for a new, unrelated purpose, we will notify you and clarify the legal basis.

3. Promotional Communications

We may send you promotional materials, such as newsletters or special offers, if you have given consent or if you have purchased or inquired about our services and have not opted out, as allowed under the Privacy and Electronic Communications Regulations (PECR). You can unsubscribe at any time by using the “unsubscribe” link in our emails or contacting us at [your email]. Unsubscribing does not affect service-related communications (e.g., session confirmations).

We may use Client, Inquiry, Usage, and Marketing Data to deliver targeted ads (e.g., on Facebook or Instagram) and assess their impact. The legal basis is our legitimate interest in business development. We will seek your explicit consent before sharing your data with third parties for their own promotional purposes.

4. Sharing Your Information

We share your data only with trusted partners who assist in operating our Site and services, including:

  • Service Providers: Tools for IT, hosting (e.g., Google Workspace), payments (e.g., Stripe, PayPal), or virtual sessions (e.g., Zoom for RTT).
  • Advisors: Legal, accounting, or auditing professionals for compliance purposes.
  • Business Transactions: Third parties in case of a business sale or transfer.
  • Authorities: Regulatory bodies, such as tax agencies or Latvia’s Data State Inspectorate, when legally required.

All partners comply with GDPR, process data only as instructed, and maintain confidentiality. Health data from RTT sessions is shared only with essential providers (e.g., Zoom) and protected with strict security measures. We do not share your data with unrelated third parties.

5. Anti-Spam Commitment

We adhere to anti-spam regulations and provide an “unsubscribe” option in all promotional emails. You can opt out of marketing communications at any time. If we transfer or sell parts of our business, client data may be included, but we will notify you of any significant changes to this Privacy Policy.

6. Cookies

We use cookies to improve your Site experience, customize content, and track usage. Cookies include temporary (session) and persistent types. For more details on cookies and how to control them, visit our Cookie Policy at [yourwebsite.com/cookies]. You can accept or reject non-essential cookies through our consent tool or browser settings. Disabling cookies may limit some Site features. Our Site may not respond to Do Not Track signals.

Our Site may include links to external websites (e.g., payment or session platforms). This Privacy Policy applies only to our Site. We are not responsible for third-party privacy practices and recommend reviewing their policies.

8. Data Protection and Incident Response

We use robust security measures, such as encryption and access restrictions, to protect your data from unauthorized access, loss, or disclosure. RTT health data is safeguarded with enhanced protections due to its sensitivity. Only authorized staff or contractors with a business need can access your data, and they are bound by confidentiality agreements.

If a data breach occurs, we will evaluate its scope and impact. If it risks your rights, we will notify you and the Data State Inspectorate within 72 hours, where possible, as required by GDPR. You acknowledge that data you share voluntarily could be intercepted by third parties without our knowledge, and you release us from claims related to such incidents.

9. Data Retention

We keep personal data only as long as needed for its intended purpose or legal obligations. For example:

  • Client and Payment Data: Retained for up to six years to meet tax and accounting requirements.
  • Marketing Data: Kept until you unsubscribe, then deleted within 30 days unless legally required.
  • Health Data: Stored for the duration of your RTT program and up to one year after to support continuity, unless you request earlier deletion or legal requirements apply.
  • Anonymized Data: May be retained indefinitely for research or statistical purposes.

Unneeded data is securely deleted or anonymized.

10. Cross-Border Data Transfers

Your data may be transferred outside the European Economic Area (EEA), such as to US-based providers (e.g., Google, Zoom). We ensure protection through Standard Contractual Clauses (SCCs) or the EU-US Data Privacy Framework (DPF) for compliant providers. Contact us at [your email] for details on data processing locations.

11. Children’s Privacy

We do not knowingly collect or solicit data from children under 13, in line with the Children’s Online Privacy Protection Act (COPPA).

12. Policy Updates

We may revise this Privacy Policy to reflect changes in our practices or legal requirements. Significant updates will be communicated via email or a clear notice on our Site. We encourage you to review this policy periodically.

13. Your Data Rights

Under GDPR and Latvian data protection laws, you can:

  • Request access, correction, or deletion of your personal data.
  • Limit or object to data processing.
  • Request data portability.
  • Withdraw consent (where applicable).

To exercise these rights, email us at [your email]. We will respond within one month, free of charge, unless your request is repetitive or unfounded, in which case a reasonable fee may apply. We may verify your identity for security. If you believe our data handling violates regulations, you can contact the Data State Inspectorate (Datu valsts inspekcija) in Latvia at [https://www.dvi.gov.lv/lv] or info@dvi.gov.lv.

14. Contact Us

This Site is operated by Ars Altera Lux, SIA, 40203611894 (Limited Liability Company).
Reach us at:

  • Email: info@happysisters.club

For privacy questions or to update your information, please contact us to ensure our records are accurate. All communications and data, including health information from RTT sessions, are treated with strict confidentiality, except where legally required.