Thank you for choosing Soul Kaya (“we”, “us”, “our”). We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website [insert URL], use our online or in-person yoga/wellness services (collectively, the “Services”), enroll in classes, purchase packages, or otherwise interact with us.
1. Information We Collect
We may collect and process the following types of information:
- Personal identification information: such as your name, email address, phone number, postal address, date of birth, gender (if necessary).
- Transaction/payment information: details of payments you make, invoices, billing address, other payment-related data.
- Usage / technical information: IP address, browser type and version, device identifiers, operating system, pages visited, referring site, duration of visit, click-behaviour, cookies and tracking technologies.
- Health / wellness-specific information: If you submit it as part of your enrolment or intake form: for example existing medical conditions, pregnancy status, injuries, allergies, fitness levels, wellness goals.
- Communications: Any messages or feedback you send to us (via email, chat, forms), and our replies.
2. How and Why We Use Your Information
We process your information for legitimate business and service-related purposes, including but not limited to:
- To provide you with the Services you request: enrol you in classes, schedule sessions, send reminders, deliver online content.
- To manage your account, process payments, issue receipts, track membership/package status.
- To personalise and improve our Services: recommending classes, tracking your progress, adapting wellness advice.
- To send you communications: e.g., class updates, promotional offers (you may opt out), newsletters, feedback requests.
- To ensure the security and functioning of our website and online platform: diagnosing technical issues, preventing fraud/misuse, complying with legal requirements.
- To comply with legal obligations under applicable laws (including the India DPDPA) and handle any disputes or claims.
3. Legal Basis for Processing
We rely on your consent when collecting health-specific information or when required by law. We may also rely on performance of a contract (membership or class agreement), legitimate interest (improving our Services, website performance), or compliance with legal obligations.
4. Cookies & Tracking Technologies
We use cookies, web beacons, similar tracking technologies to collect usage and technical information, enhance your experience, analyse site traffic, and customise content. You can choose to disable cookies via your browser settings — though this may affect site functionality.
5. Disclosure of Your Information
We may share your information with:
- Service providers/vendors who help us deliver the Services (payment processors, hosting providers, email/communication services, analytics providers).
- If required by legal/regulatory authorities or to protect our rights or those of others.
- In the event of a corporate transaction (merger, acquisition, sale of assets) — with prior notice.
We do not sell or rent your personal information to third parties for marketing purposes without your explicit consent.
6. Cross-Border Transfers
If we transfer your personal information outside India (for example to cloud service providers), we will ensure that appropriate safeguards are in place, and ensure compliance with applicable laws (including those under the DPDPA).
7. Data Security & Retention
We implement reasonable technical and organisational security measures to protect your personal data against unauthorised access, modification, disclosure or destruction. We retain your data for as long as necessary for the purposes described (e.g., while you are our member, plus certain period thereafter for legal, accounting or business purposes). Once the retention period ends, we will securely delete or anonymise your information.
8. Your Rights
Depending on your jurisdiction and applicable laws (including India’s DPDPA), you may have rights such as:
- Right to access your personal data we hold
- Right to correct inaccurate or incomplete data
- Right to request deletion/erasure of your data (subject to legal obligations)
- Right to withdraw consent or object to certain processing
- Right to request portability of data (where applicable)
- Right to lodge a complaint with the relevant supervisory authority
We will respond to such requests in accordance with our internal processes and applicable law.
9. Children’s Privacy
Our Services are not intended for children under the age of 16, unless authorised by a parent/guardian. We do not knowingly collect personal information from minors without consent. If we become aware that we have collected such data, we will take steps to delete it.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements or Services. We will post the updated version on our Site with the “Last updated” date. Your continued use of the Services after updates indicates your acceptance of the new terms.