The website Holistic Health Herbalist and its content are owned by Tashenna Penman (“Company”, “we”, or “us”). The term “you” refers to the user or viewer of holistichealthherbalist.com (“Website”).
What personal information do we collect from the people that visit our blog, website or app?
We collect personal information from you so that we can provide you with a positive experience when utilizing our Website or content. We will only collect the minimum amount of information necessary for us to fulfill our obligation to you. We may collect:
- A name and an email address so we can deliver our newsletter to you – you would be affirmatively consenting to this by providing this to us in our contact forms.
- Billing information including name, address and credit card information so that we can process payment to deliver our products or services to you under our contractual obligation.
- A name and an email address if you complete our contact form and/or email opt-in. We may send you marketing emails with either your consent or if we believe we have a legitimate interest to contact you based on your contact or question.
Please note that the information above (“Personal Data”) that you are giving to us is voluntarily, and by you providing this information to us you are giving consent for us to use, collect and process this Personal Data. You are welcome to opt-out or request for us to delete your Personal Data at any point by contacting us at [email protected]
If you choose not to provide us with certain Personal Data, you may not be able to participate in certain aspects of our Website or content.
OTHER INFORMATION WE MAY COLLECT:
Anonymous Data Collection and Use
To maintain our Website’s high quality, we may use your IP address to help diagnose problems with our server and to administer the Website by identifying which areas of the Website are most heavily used, and to display content according to your preferences. Your IP address is the number assigned to computers connected to the Internet. This is essentially “traffic data” which cannot personally identify you, but is helpful to us for marketing purposes and for improving our services. Traffic data collection does not follow a user’s activities on any other websites in any way. Anonymous traffic data may also be shared with business partners and advertisers on an aggregate basis.
When do we collect information?
We collect information from you when you place an order, subscribe to a newsletter or enter information on our site.
How do we use your information?
We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
• To administer a contest, promotion, survey or other site feature.
• To quickly process your transactions.
• To send periodic emails regarding your order or other products and services.
We may also:
We may contact you with information that you provide to us based on these lawful grounds for processing:
- We may contact you if you give us your clear, unambiguous, affirmative consent to contact you.
- We will contact you under our contractual obligation to deliver goods or services you purchase from us.
- Legitimate Interest. We may contact you if we feel you have a legitimate interest in hearing from us. For example, if you sign up for a webinar, we may send you marketing emails based on the content of that webinar. You will always have the option to opt out of any of our emails.
We will use the Personal Data you give to us in order to process your payment for the purchase of goods or services under a contract. We only use third party payment processors that take the utmost care in securing data and comply with the GDPR.
Targeted Social Media Advertisements
We may use the data you provide to us to run social media advertisements and / or create look-alike audiences for advertisements.
Share with Third Parties
We may share your information with trusted third parties such as our newsletter provider in order to contact you via email, our merchant accounts to process payments, and Google / social media accounts in order to run advertisements and our affiliates.
Viewing by Others
Note that whenever you voluntarily make your Personal Data available for viewing by others online through this Website or its content, it may be seen, collected and used by others, and therefore, we cannot be responsible for any unauthorized or improper use of the information that you voluntarily share (i.e., sharing a comment on a blog post, posting in a Facebook group that we manage, sharing details on a group coaching call, etc.).
Submission, Storage, Sharing and Transferring of Personal Data
Personal Data that you provide to us is stored internally or through a data management system. Your Personal Data will only be accessed by those who help to obtain, manage or store that information, or who have a legitimate need to know such Personal Data (i.e., our hosting provider, newsletter provider, payment processors or team members).
We retain your Personal Data for the minimum amount of time necessary to provide you with the information and / or services that you requested from us. We may include certain Personal Data for longer periods of time if necessary for legal, contractual and accounting obligations.
To use certain features of the Website, such as paid courses, you may need a username and password. You are responsible for maintaining the confidentiality of the username and password, and you are responsible for all activities, whether by you or by others, that occur under your username or password and within your account. We cannot and will not be liable for any loss or damage arising from your failure to protect your username, password or account information. If you share your username or password with others, they may be able to obtain access to your Personal Data at your own risk.
You agree to notify us immediately of any unauthorized or improper use of your username or password or any other breach of security. To help protect against unauthorized or improper use, make sure that you log out at the end of each session requiring your username and password.
We will use our best efforts to keep your username and password(s) private and will not otherwise share your password(s) without your consent, except as necessary when the law requires it or in the good faith belief that such action is necessary, particularly when disclosure is necessary to identify, contact or bring legal action against someone who may be causing injury to others or interfering with our rights or property.
How do we protect visitor information?
Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.
We use regular Malware Scanning.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information.
All transactions are processed through a gateway provider and are not stored or processed on our servers.
Do we use ‘cookies’?
Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the site’s or service provider’s systems to recognize your browser and capture and remember certain information.
We may use the standard “cookies” feature of major web browsers. We do not set any personally identifiable information in cookies, nor do we employ any data-capture mechanisms on our Website other than cookies. You may choose to disable cookies through your own web browser’s settings. However, disabling this function may diminish your experience on our Website and some features may not work as intended.
• Help remember and process the items in the shopping cart.
• Understand and save user’s preferences for future visits.
• Keep track of advertisements.
• Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser (like Internet Explorer) settings. Each browser is a little different, so look at your browser’s Help menu to learn the correct way to modify your cookies.
If you disable cookies off, some features will be disabled It won’t affect the user’s experience that makes your site experience more efficient and some of our services will not function properly.
However, you can still place orders.
This Site is affiliated with CMI Marketing, Inc., d/b/a CafeMedia (“CafeMedia”) for the purposes of placing advertising on the Site, and CafeMedia will collect and use certain data for advertising purposes. To learn more about CafeMedia’s data usage, click here: www.cafemedia.com/publisher-advertising-privacy-policy
We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information.
Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third party sites have separate and independent privacy policies. We, therefore, have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en
We use Google AdSense Advertising on our website.
We have implemented the following:
• Remarketing with Google AdSense
• Google Display Network Impression Reporting
• Demographics and Interests Reporting
• DoubleClick Platform Integration
We along with third-party vendors, such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions, and other ad service functions as they relate to our website.
Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt-out by visiting the Network Advertising Initiative opt-out page or permanently using the Google Analytics Opt Out Browser add on.
California Online Privacy Protection Act
According to CalOPPA we agree to the following:
Users can visit our site anonymously
Users are able to change their personal information:
• By emailing us
How does our site handle do not track signals?
We honor do not track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third party behavioral tracking?
It’s also important to note that we allow third party behavioral tracking
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not specifically market to children under 13.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify the users via in site notification:
• Within 7 business days
We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
• Send information, respond to inquiries, and/or other requests or questions.
• Process orders and to send information and updates pertaining to orders
• We may also send you additional information related to your product and/or service.
• Market to our mailing list or continue to send emails to our clients after the original transaction has occurred
To be in accordance with CANSPAM we agree to the following:
• NOT use false, or misleading subjects or email addresses
• Identify the message as an advertisement in some reasonable way
• Include the physical address of our business or site headquarters
• Monitor third party email marketing services for compliance, if one is used.
• Honor opt-out/unsubscribe requests quickly
• Allow users to unsubscribe by using the link at the bottom of each email
If at any time you would like to unsubscribe from receiving future emails, you can:
• Follow the instructions at the bottom of each email.
and we will promptly remove you from ALL correspondence.
HOW YOU CAN ACCESS, UPDATE OR DELETE YOUR PERSONAL DATA
You have the right to:
- Request information about how your Personal Data is being used and request a copy of what Personal Data we use.
- Restrict processing if you think the Personal Data is not accurate, unlawful, or no longer needed.
- Rectify or erase Personal Data and receive confirmation of the rectification or erasure. (You have the “right to be forgotten”).
- Withdraw your consent at any time to the processing of your Personal Data.
- Lodge a complaint with a supervisory authority if you feel we are using your Personal Data unlawfully.
- Receive Personal Data portability and transference to another controller without our hindrance.
- Object to our use of your Personal Data.
- Not be subject to an automated decision based solely on automatic processing, including profiling, which legally or significantly affects you.
You may unsubscribe from our e-newsletters or updates at any time through the unsubscribe link at the footer of all email communications. If you have questions or are experiencing problems unsubscribing, please contact us at [email protected]
We take commercially reasonable steps to protect the Personal Data you provide to us from misuse, disclosure or unauthorized access. We only share your Personal Data with trusted third parties who use the same level of care in processing your Personal Data. That being said, we cannot guarantee that your Personal Data will always be secure due to technology or security breaches. Should there be a data breach of which we are aware, we will inform you immediately.
We have a no spam policy and provide you with the ability to opt-out of our communications by selecting the unsubscribe link at the footer of all e-mails. We have taken the necessary steps to ensure that we are compliant with the CAN-SPAM Act of 2003 by never sending out misleading information. We will not sell, rent or share your email address.
Third Party Websites
We may link to other websites on our Website. We have no responsibility or liability for the content and activities of any other individual, company or entity whose website or materials may be linked to our Website or its content, and thus we cannot be held liable for the privacy of the information on their website or that you voluntarily share with their website. Please review their privacy policies for guidelines as to how they respectively store, use and protect the privacy of your Personal Data.
Children’s Online Privacy Protection Act Compliance
We do not collect any information from anyone under 18 years of age in compliance with COPPA (Children’s Online Privacy Protection Act) and the GDPR (General Data Protection Regulation of the EU). Our Website and its content are directed to individuals who are at least 18 years old or older.
Notification of Changes
Data Controller and Processors
We are the data controllers as we are collecting and using your Personal Data. We use trusted third parties as our data processors for technical and organizational purposes, including for payments and email marketing. We use reasonable efforts to make sure our data processors are GDPR- compliant.
Last Updated: May 2018