Privacy Policy

Tarot Academy ("Company," "we," "us," or "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit tarotacademy.co and purchase course access.

1. Information we collect

We collect the following personal information when you use our services:

Personal details: Name and email address.

Payment information: Processed securely via Squarespace Payments. We do not store full payment details.

Communications: Any information you provide when contacting us or subscribing to our mailing list.

Analytics data: We use Google Analytics to collect non-personally identifiable information about website traffic and user behavior.

We do not collect sensitive personal data such as health, biometric, or government-issued identifiers.

2. How we use your information

We use your information to:

Process and fulfill course purchases and certification enrollments.

Communicate with you about your purchase, inquiries, or customer support needs.

Send marketing emails if you opt into our mailing list. You can unsubscribe at any time.

Analyze website usage and improve our services using Google Analytics.

Comply with legal obligations and prevent fraudulent activity.

3. Legal basis for processing (GDPR compliance)

If you are in the EU or EEA, we rely on the following legal bases:

Contractual necessity: To process your purchases.

Legitimate interest: To improve our services and respond to inquiries.

Consent: When you subscribe to our mailing list or accept cookies for analytics.

Legal compliance: To meet regulatory obligations.

4. Data sharing and third parties

We do not sell your personal data. However, we share necessary data with:

Payment processor: Squarespace and Stripe Payments, for secure transactions.

Email marketing services: If you subscribe to our mailing list.

Analytics services: Google Analytics, for website traffic insights.

Legal authorities: If required by law or to prevent fraud.

5. Data retention

We retain your personal information only as long as necessary for the purposes outlined above, unless a longer period is required by law.

6. Your rights

Depending on your location, you may have the following rights:

Access and correction: Request a copy of your data and correct inaccuracies.

Deletion: Request deletion of your personal data.

Opt-out: Unsubscribe from marketing emails at any time.

Data portability (GDPR): Request your data in a structured format.

CCPA rights (California residents): Request disclosure of data collected and deletion of personal information.

Analytics opt-out: You can disable Google Analytics tracking via browser settings or Google's opt-out tools.

To exercise any rights, email us at thatoracleguypatrick@gmail.com.

7. Data security

We implement industry-standard security measures to protect your data. However, no method of transmission is 100% secure and we cannot guarantee absolute security.

8. International data transfers

Since we operate from the USA, your information may be transferred internationally. We comply with GDPR safeguards when handling EU and EEA customer data.

9. Cookies and tracking technologies

We use Google Analytics to track website traffic and user behavior. Cookies may be placed on your device for analytics purposes. You can manage or disable cookies in your browser settings.

10. Changes to this privacy policy

We may update this policy periodically. Any changes will be posted with the updated effective date.

11. Contact us

For any questions or to exercise your rights, contact us at thatoracleguypatrick@gmail.com.