Sati Yoga Privacy Policy

This privacy policy has been compiled to better serve those who are concerned with how their 'Personally Identifiable Information' (PII) is being used online. PII, as described in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read this privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.

What personal information do I (Jennifer O'Sullivan)  collect from the people that visit my blog or website?

If you are just browsing this website (www.sati.yoga), I am only tracking non-identifiable information in order to understand how people are using my website, such as which pages are popular, what's hard to find, etc. In the aggregate, I can also see where my visitors are. But I am unable to identify you specifically. I currently use Plausible to monitor my website traffic. 

While I maintain an index of my blog articles on my website, the actual posts are hosted on Medium, which is a third party provider. Their privacy policy applies when you visit their site.

I use several third party tools to handle registrations and purchases (Convertkit, Jotform, Airtable, Acuity Scheduling, and Thrivecart). When registering or ordering something on my site, as appropriate, you may be asked to enter your name, email address or other details so I can deliver those products and services to you.

When do I collect information?
I collect information from you when you subscribe to a newsletter, fill out a form or enroll coaching, classes, webinars, courses, or email challenges.

How do I use your information?
I may use the information I collect from you when you register, make a purchase, sign up for my newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:

* To personalize your experience and to allow me to deliver the type of content and product offerings in which you are most interested or have purchased.
* To administer a contest, promotion, survey or other site feature.
* To send periodic emails regarding your order or other products and services.

How do I protect your information?
The thid party apps I use conform to GDPR and other standards in how they handle your data on their platforms. I do not use vulnerability scanning and/or scanning to PCI standards.

This site only provides articles and information. I only ask for your credit card numbers when you purchase coaching services, classes, courses, and other paid services.

SSL certificate
This site uses an SSL certificate to protect your data and privacy.

Do I use 'cookies'?
Yes. Cookies are small files that a site or its service provider transfers to your computer's hard drive through your Web browser (if you allow) that enables the site's or service provider's systems to recognize your browser and capture and remember certain information.

I use Plausible Analytics cookies to track website traffic. I used to use the Facebook pixel for marketing purposes, but I no longer do so. However, some old pages on my website may still contain their code, but it's inactive.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since every browser is a little different, look at your browser's Help Menu to learn the correct way to modify your cookies.

If you turn cookies off, it won't affect your experience browsing the site.

Third-party disclosure
I do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information.

Third-party links
There are times when I work through Third Parties who manage payment and registration for my services. Whenever possible, I clearly indicate when that is the case.

California Online Privacy Protection Act
CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law's reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared. - See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf

According to CalOPPA, I agree to the following:
Users can visit my site anonymously.

Once this privacy policy is created, I will add a link to it on my home page or as a minimum, on the first significant page after entering my website.

My Privacy Policy link includes the word 'Privacy' and can easily be found on the page specified above.

You will be notified of any Privacy Policy changes on my Privacy Policy Page.

You can change your personal information by emailing me.

How does my site handle Do Not Track signals?
I honor Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

Does my site allow third-party behavioral tracking?
I do not allow third party behavioral tracking.

COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years old, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States' consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.

I do not specifically market to children under the age of 13 years old.

Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices I will take the following responsive action, should a data breach occur, I will notify you via email within 7 business days.

I also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.

CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

I collect your email address in order to:
• Send information, respond to inquiries, and/or other requests or questions
• Market to my mailing list or continue to send emails to my clients after the original transaction has occurred.

To be in accordance with CANSPAM, I agree to the following:
• Not use false or misleading subjects or email addresses.
• Identify the message as an advertisement in some reasonable way.
• Include the physical address of my business or site headquarters.
• Monitor third-party email marketing services for compliance, if one is used.
• Honor opt-out/unsubscribe requests quickly.
• Allow users to unsubscribe by using the link at the bottom of each email.

If at any time you would like to unsubscribe from receiving future emails, you use the link at the bottom of each email. This will automatically and promptly remove you from ALL mailing list correspondence (i.e. newsletters and other messages specfiically from me). It does not automatically remove you from notifications from my appointment scheduler or my virtual community hosted on Mighty Networks. You can visit https://community.sati.yoga to manage your notification settings or leave the network.

Contacting Me
If there are any questions regarding this privacy policy, you may contact me using the information below.

Sati Yoga
6801 Conti Ct
Annandale, VA 22003
USA
jen (at) sati (dot) yoga

Last Edited on 2023-05-02 to indicate that I switched from Google Analytics to Plausible and to add a list of specfiic third party tools that I use to run my business.