Privacy Policy

This document was last updated on October 13, 2025.

Effective Date: October 13, 2025

Your privacy is important to us. It is JayaKamala.com's policy to respect your privacy and comply with any applicable law and regulation regarding any personal information we may collect about you, including across our website, https://JayaKamala.com, and other sites we own and operate.

This Privacy Policy outlines how we collect, use, disclose, store, and protect your personal information in accordance with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). If your business has an annual turnover exceeding $3 million, compliance with the Privacy Act is mandatory; however, we follow these principles as best practice regardless.

For users in the European Union (EU), European Economic Area (EEA), United Kingdom (UK), or Switzerland, we also comply with the General Data Protection Regulation (GDPR) and UK GDPR, where applicable. We may process personal data based on legal bases such as your consent, contractual necessity, legitimate interests (e.g., providing services, marketing, security), or legal obligations.

If you are a resident of the United States, additional state-specific rights may apply (e.g., under the California Consumer Privacy Act - CCPA). Please see the relevant sections below.

If you have any questions about this Privacy Policy or our privacy practices, please contact us using the details provided at the end of this policy.

Information We Collect

We collect personal information that is reasonably necessary for our business functions and activities, including but not limited to e-commerce, consulting, life coaching, information provision, blogs, and free/paid subscriptions, when Users visit our site, subscribe to the newsletter, and in connection with other activities, services, features, or resources we make available on our Site.

Personal information means information or an opinion about an identified individual, or an individual who is reasonably identifiable (under Australian law) or personal data as defined under GDPR.

Types of Personal Information

We may collect the following types of personal information:

Name
Email address
Phone/mobile number
Home/mailing address, billing address
Date of birth
Social media profiles
Payment details (e.g., credit card information, processed securely via third-party gateways)
Information provided during consulting or life coaching sessions (e.g., personal goals, preferences)
Subscription details (e.g., preferences for free or paid content)
Blog comments or user-generated content
Any other information you voluntarily provide

Log Data and Device Information

When you visit our website, our servers may automatically log standard data provided by your web browser or device. This may include:

Your device's Internet Protocol (IP) address
Browser type and version
Pages visited, time and date of visit, time spent on pages
Device type and operating system
Referring sites, search terms
Other technical details, including any errors encountered

This data may not personally identify you on its own but could be combined with other information to do so.

Sensitive Information

For services like life coaching, we may collect sensitive information (e.g., health-related data, personal beliefs) only if necessary and with your explicit consent. Under GDPR, this is special category data and processed only with appropriate safeguards.

We do not collect sensitive information unless it is voluntarily provided and relevant to our services.

How We Collect Information

We collect personal information in the following ways:

Directly from you: When you fill out forms on our website (e.g., contact forms, sign-up for newsletters/subscriptions, make purchases, book consulting/life coaching sessions, comment on blogs, or enter competitions).
Automatically: Through cookies, web beacons, or similar technologies when you interact with our site (see "Use of Cookies" section below).
From third parties: Such as analytics providers (e.g., Google Analytics), payment processors (e.g., Stripe, PayPal, Wise), website hosting (e.g., Wix), keyword research tools (e.g., AnswerThePublic Pro), social media platforms, or business partners, where you have consented or it is lawful.
Public sources: If relevant and lawful.

If we receive unsolicited personal information, we will handle it in accordance with the APPs, which may include destroying or de-identifying it if we cannot lawfully retain it.

We will notify you of the collection as soon as practicable, unless an exception applies under the Privacy Act or GDPR.

Legal Bases for Processing Your Personal Information (GDPR-Relevant)

For users in the EU/EEA/UK/Switzerland:

Consent: Where you have given explicit consent (e.g., for marketing or sensitive data).

Contractual Necessity: To perform a contract with you (e.g., processing payments for e-commerce or subscriptions).

Legitimate Interests: For purposes like improving services, fraud prevention, direct marketing (balanced against your rights).

Legal Obligation: To comply with laws (e.g., tax reporting).

You can withdraw consent or object to processing based on legitimate interests at any time.

Use of Your Personal Information

We use your personal information for the primary purposes for which it was collected, or for secondary purposes that are related (or directly related for sensitive information) and that you would reasonably expect. These include:

Providing and improving our e-commerce products, consulting, life coaching services, blogs, and subscriptions.
Processing transactions, payments, and inquiries.
Personalizing content and recommendations (e.g., tailored coaching advice or blog suggestions).
Communicating with you (e.g., responding to queries, sending updates, newsletters).
Marketing and promotions (with your consent or opt-out options).
Analytics, market research, and business development (e.g., using aggregated data).
Complying with legal obligations.
Preventing fraud and ensuring security.

We will not use your information for incompatible purposes without your consent.

Disclosure of Your Personal Information

We may disclose your personal information for the purposes above to:

Our employees, contractors, and related entities.
Third-party service providers, including but not limited to:

Payment processors: Stripe, PayPal, Wise.
Website hosting and tools: Wix.
Analytics: Google Analytics.
Keyword and research tools: AnswerThePublic Pro
Other partners for marketing, data processing, or service delivery.

Business partners or affiliates (e.g., for joint marketing or shared services).
Regulatory authorities, courts, or law enforcement if required by law.
In the event of a business transfer, merger, or acquisition.

We engage in direct marketing and may share data with partners for this purpose, but only with your consent or opt-out options. We do not sell your personal information. Under CCPA, we do not "sell" or "share" personal information as defined, but disclosures to service providers occur for business purposes.

Direct Marketing

We may use your information for direct marketing (e.g., emails about products, coaching sessions, or blogs) if we collected it from you and you would reasonably expect this, or with your consent. We provide simple opt-out mechanisms in all communications.

International Transfers of Personal Information

As an Australian-based business with global customers, your personal information may be stored, processed, or transferred to countries outside Australia, including the United States (e.g., via Google, Stripe), EU/EEA, and others where our partners or providers are located. We ensure that any overseas recipients comply with standards equivalent to the APPs or GDPR, using safeguards such as:

Standard Contractual Clauses (SCCs) approved by the European Commission.
EU-U.S. Data Privacy Framework (DPF) or similar adequacy mechanisms.
Your explicit consent, or other exceptions under applicable laws.

For EU/EEA/UK users, we conduct Data Transfer Impact Assessments where required and ensure transfers do not undermine your rights.

Security of Your Personal Information

We take reasonable steps to protect your personal information from misuse, interference, loss, unauthorised access, modification, or disclosure. This includes:

Using secure servers, encryption (e.g., SSL for transmissions), and firewalls.
Implementing access controls, staff training, and regular security audits.
Secure payment processing via third-party gateways (we do not store full card details).

However, no method is 100% secure. In the event of a data breach, we will comply with the Notifiable Data Breaches scheme under the Privacy Act and notify affected individuals, the Office of the Australian Information Commissioner (OAIC), and (for GDPR) relevant supervisory authorities where required.

How Long We Keep Your Personal Information

We retain your personal information only as long as necessary for the purposes outlined in this policy (e.g., active subscriptions, legal retention for transactions), or as required by law (e.g., 7 years for tax records in Australia). When no longer needed, we will securely delete or de-identify it. For example:

Account data: Retained while active, plus a reasonable period after.
Transaction data: As required for accounting/compliance.

Your Rights and Controlling Your Personal Information

Under the APPs and GDPR (where applicable), you have rights including:

Access: Request details and a copy of your personal information.
Correction: Request updates to inaccurate information.
Deletion/Erasure: Request deletion (subject to exceptions, e.g., legal retention).
Objection/Restriction: Object to processing (e.g., marketing) or restrict it.
Portability: Receive your data in a structured, machine-readable format.
Withdraw Consent: At any time, where processing relies on consent.
Anonymity and Pseudonymity: Interact anonymously where practicable.
Opt-Out: From marketing or certain disclosures (e.g., via unsubscribe links).
Complaints: Lodge a complaint with us, the OAIC (www.oaic.gov.au), or your local GDPR supervisory authority (e.g., the ICO in the UK).

For US residents (e.g., CCPA): Additional rights include knowing categories collected/disclosed, opting out of "sales," non-discrimination, and appeals.

We will respond to requests within 30 days (or 1 month under GDPR), free of charge unless excessive. We may require identity verification. Contact us to exercise rights; we will not discriminate against you.

Use of Cookies and Tracking Technologies

We use cookies and similar technologies (e.g. via Wix, Google Analytics) to collect data about your activity for functionality, analytics, and personalization. You can manage preferences via browser settings or our cookie banner. Disabling may limit functionality.

We may use third-party tools that collect anonymized data.

Children's Privacy

Our services are not directed at children under 16 (or 13 in some jurisdictions). We do not knowingly collect personal information from children without parental consent. If we become aware, we will delete it promptly.

Links to External Sites

Our website may link to third-party sites (e.g., social media). We are not responsible for their practices; review their policies. Some links on our website may be affiliate links or sponsored content. If you make a purchase through these links, we may earn a commission at no extra cost to you. However, we only promote products/services that align with our values.

Changes to This Policy

We may update this policy to reflect changes in practices, laws, or operations. Updates will be posted here with a revised "Last Updated" date. Significant changes may include direct notification. Continued use constitutes acceptance.

Your Acceptance Of These Terms

By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes

Contact Us

For questions, requests, or complaints:

Privacy Officer

JayaKamala.com
Email: info@jayakamala.com

This document was last updated on October 13, 2025.