Your Privacy is Our Priority

At AuraWell Collective, our commitment to your wellness extends to safeguarding your personal and health information with the highest standards of privacy and security. We believe that an informed client is an empowered client, and transparency regarding data handling is foundational to the trust we aim to build.

This policy outlines how we collect, use, protect, and disclose information gathered through our services and website. We are dedicated to maintaining compliance with all applicable data protection laws, including HIPAA where relevant to health information.

Last Updated: October 26, 2023 | Version 2.1

Contact Us with Privacy Questions

Abstract shield intertwined with a gentle green leaf, symbolizing data protection and wellness, rendered with soft, organic shapes.

What Information We Collect and Why

To provide you with personalized wellness plans and a seamless experience, AuraWell Collective collects various types of information. Our intention is always to collect only the data necessary to deliver effective services and enhance your journey.

This includes details like your name, email address, mailing address, phone number, and date of birth, collected during account registration or when you contact us. This data is essential for setting up your profile, communicating with you, and verifying your identity.

For personalized coaching, we collect information related to your health history, current wellness goals, dietary preferences, exercise habits, sleep patterns, and mindfulness practices. This information is gathered through confidential intake forms, direct consultations, and progress tracking tools. This sensitive data is strictly used to tailor your wellness plan and monitor your progress, always with your explicit consent.

When you visit our website, we automatically collect certain information about your device, including your IP address, browser type, referring pages, and interaction patterns. This helps us understand how our site is used, optimize user experience, and detect potential security threats. We use aggregated, anonymized data for analytical purposes to improve our services.

For billing purposes, we collect payment card details or other billing information. All payment processing is handled by secure third-party payment gateways, and we do not store sensitive financial information on our servers. Your payment data is encrypted and managed according to PCI DSS compliance standards.

Illustration of various data points flowing securely into a central, protected vault, representing different types of information being collected safely.

How We Use and Protect Your Information

AuraWell Collective uses your collected information exclusively to fulfill our service commitment to you and to enhance your wellness journey. Protecting this information is paramount.

  • Personalized Service Delivery: Your health and personal data enable us to create, deliver, and adjust your tailored wellness plans, including coaching sessions, workshop access, and curated recommendations.
  • Communication and Support: We use your contact information to provide important updates about your plans, respond to your inquiries, and offer customer support.
  • Service Improvement: Aggregated and anonymized usage data helps us analyze trends, improve website functionality, and develop new wellness programs that better serve our community.
  • Limited Third-Party Sharing: We do not sell or rent your personal information to third parties. Information may be shared with trusted service providers only when necessary to perform functions on our behalf (e.g., secure payment processing, analytics hosting), always under strict confidentiality agreements and limited to the necessary scope.
  • Marketing Communications: With your explicit consent, we may send you newsletters or promotional materials. You can easily manage your communication preferences or opt-out at any time.
  • Data Retention: We retain your information for as long as necessary to provide our services and for legitimate business purposes such as complying with legal obligations, resolving disputes, and enforcing our agreements. Specific health records are retained in accordance with HIPAA guidelines.
  • Robust Security Measures: We employ a suite of technical and organizational safeguards, including advanced encryption (SSL/TLS), firewalls, regular security audits, and access controls, to protect your data from unauthorized access, alteration, disclosure, or destruction.
Abstract depiction of digital protection, with lines of code and a glowing padlock icon surrounded by subtle, organic green tones.

Your Rights and Control Over Your Data

You have distinct rights regarding the personal information AuraWell Collective holds about you. We are committed to empowering you with control over your data.

  • Right to Access and Review

    You have the right to request access to the personal information we hold about you and to receive a copy of that information. Please contact us at [email protected] to initiate a request.

  • Right to Correction and Update

    If you believe any information we hold about you is inaccurate or incomplete, you have the right to request that we correct or update it. You can often update basic profile information directly through your client portal.

  • Right to Deletion (Right to Be Forgotten)

    In certain circumstances, you may request the deletion or removal of your personal data where there is no compelling reason for its continued processing. Please note that legal or contractual obligations may prevent immediate deletion of all data.

  • Opt-Out of Communications

    You can opt-out of receiving marketing communications from us at any time by following the unsubscribe link in our emails or by contacting our support team. This will not affect essential service-related communications.

  • Complaint Procedures

    If you have concerns about our data handling practices, please contact us first. If you remain unsatisfied, you have the right to lodge a complaint with the relevant data protection authority.

Icons representing user control: a hand holding a data cloud, a cogwheel for settings, and a magnifying glass over personal documents.

Our Commitment to Data Security

Data security is not just a feature; it's a foundational pillar of trust at AuraWell Collective. We implement comprehensive measures to protect your digital well-being as diligently as we support your physical and mental health.

Technical Safeguards

  • End-to-End Encryption: All data transmitted between your device and our servers is secured using industry-standard SSL/TLS encryption.
  • Robust Firewalls: Our network infrastructure is protected by advanced firewalls to prevent unauthorized access.
  • Secure Cloud Hosting: Data is stored on highly secure, compliant cloud platforms with redundant backups.
  • Regular Security Audits: Independent third-party security audits are conducted periodically to identify and mitigate vulnerabilities.

Compliance and Best Practices

  • Staff Training: All AuraWell personnel undergo rigorous training on data privacy protocols and secure data handling practices.
  • Access Controls: Access to sensitive client data is restricted to authorized personnel on a need-to-know basis, enforced through multi-factor authentication.
  • HIPAA Compliance: For Protected Health Information (PHI), we adhere strictly to HIPAA (Health Insurance Portability and Accountability Act) regulations, ensuring the utmost confidentiality and integrity.
  • Incident Response: We have a defined incident response plan for swiftly addressing and mitigating any potential data breaches, accompanied by appropriate notification procedures as required by law.
Visual representation of HIPAA compliance, with medical symbols, a lock, and legal scales in a clean, professional, and trustworthy aesthetic.