1. Information We Collect

We collect information you provide directly, automatically, and from third parties.

• Personal Information: Includes name, email address, and any optional details (e.g., preferences) when you sign up for newsletters, download templates/guides/workbooks, or pre-order books.

• Payment and Financial Information: When you purchase consulting services or premium content, we collect billing details (e.g., credit card number, expiration date, CVV) via secure third-party payment processors. We do not store full credit card information on our servers.

• Service-Related Information: For consulting services, you may submit additional data (e.g., business details, project requirements) to enable automated processing.

• Usage Data: Automatically collected via cookies and similar technologies, including IP address, browser type, device information, pages visited, and time spent on the Site.

• Third-Party Data: From analytics providers (e.g., Google Analytics), email services (e.g., Mailchimp), or payment processors (e.g., Stripe) for performance tracking and transaction fulfillment.

We do not collect sensitive personal information (e.g., health data) unless required for specific services.

​

2. How We Use Your Information

We use your information to:

• Provide and improve Services (e.g., sending PDFs, processing pre-orders, delivering automated consulting outputs based on your inputs).

• Process payments and fulfill purchases (e.g., charging your credit card for premium content or services).

• Communicate with you (e.g., newsletters, updates, service confirmations).

• Analyze usage for marketing and optimization, including AI-driven insights (e.g., automated analysis of submitted data for consulting).

• Comply with legal obligations and protect our rights.

Legal bases for processing (under GDPR): Consent, contract performance (e.g., for purchases), legitimate interests (e.g., analytics), or legal compliance.

​

3. Sharing Your Information

We share information with:

• Service providers (e.g., email automation tools like Zapier, hosting providers like Wix, payment processors like Stripe for transaction handling).

• Affiliates or partners for joint marketing.

• Legal authorities if required (e.g., subpoenas).

We do not sell your personal information. For CCPA purposes, "sale" includes sharing for monetary value, but we do not engage in this. Payment data is shared only with PCI DSS-compliant processors.

International transfers: Data may be transferred outside your jurisdiction (e.g., to US servers). We use Standard Contractual Clauses for GDPR compliance.

​

4. Cookies and Tracking

We use cookies for functionality, analytics, and marketing. You can manage preferences via browser settings or our cookie banner. For more, see our Cookie Policy.

​

5. Your Rights

• Access, Correction, Deletion: Request access to or deletion of your data.

• Opt-Out: Unsubscribe from emails or marketing.

• CCPA Rights (CA Residents): Right to know, delete, opt-out of sales (none occur), correct inaccurate info, and non-discrimination. Submit requests via info@galyx.com or 1-800-XXX-XXXX. We verify requests using provided info.

• GDPR Rights (EU/UK Residents): Additional rights like portability and objection. We are the data controller; contact our DPO at privacy@galyx.com.

• Global Rights: Similar rights under laws like Brazil's LGPD or Canada's PIPEDA.

We respond to verified requests within 45 days (CCPA) or 1 month (GDPR).

​

6. Data Security

We use industry-standard measures (e.g., encryption, firewalls) to protect data, including PCI DSS compliance through our payment processors. However, no system is 100% secure.

​

7. Children's Privacy

Services are not for children under 13 (or 16 in some jurisdictions). We do not knowingly collect their data.

8. Changes to This Policy

We may update this Policy; changes are posted here with the effective date.

​

9. Contact Us

For questions: info@galyx.com