Who we are
Our website address is: https://astonishingsecret.org.
What personal data we collect and why we collect it
Contact forms
We collect data on the Contact Us page of our website to answer queries that people may have or to signpost them to an appropriate source where we are unable to answer.
These email queries are held in an email system on our web hosting platform. Any information sent is not held on the website itself.
The contact form may also be a request for someone to be added to our mailing list. People on our mailing list receive occasional emails to inform them about materials or events that are associated with the topics covered in the Astonishing Secret website.
If anyone on the mailing list wishes all their personal details to be removed from the database, or for their details to be updated, they can email us and a strict procedure is then followed to ensure the correct data is deleted, changed or kept, depending on the wishes of the person.
We use your details to contact you via electronic mail only because you have requested this. You have the option of unsubscribing from email communications that you have opted into.
Cookies
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Who we share your data with
The Astonishing Secret website does not share any personal data collected through the Registration Process with any other organisation.
The credit or debit card details collected as part of the course payment process are directly sent to our Payment Processor (Stripe Payments) and are not either processed or stored on the Astonishing Secret website itself.
How long we retain your data
For users that register on our website, we store the minimal personal information provided in a ‘user profile’. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information. We retain this information until there is a request from the user to remove it.
What rights you have over your data
If you have an account on this site you can request to receive an exported file of the personal data we hold about you. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
As explained above, your credit or debit card details are sent directly from your browser to our Payment Processor (Stripe Payments)
Visitor comments may be checked through an automated spam detection service.
Additional information
How we protect your data
The minimal amount of data provided through registration is held on our secure web hosting system. All interactions with the website use the secure https protocol. Our website has a number of good practice security features to minimise the risk of the website being hacked and details of registered users being used elsewhere.
What data breach procedures we have in place
In the event of a data breach we will follow all current legislative reporting requirements both to the relevant authorities and to registered users in a timely way. Following any action needed to prevent a repeat of the breach, new passwords and/or usernames will be sent to all affected users.
What third parties we receive data from
Our Payment Processing provider, Stripe Payments, returns to the website either a successful payment message, with a reference for the transaction, or a payment failure message.