Privacy Policy

We may collect the following types of personal information:

​

Information you provide directly: Your name, email address, phone number, and any details you share when booking a session, subscribing to our newsletter, completing a contact form, or communicating with us.

​

Payment information: When you purchase a service, payment is processed through third-party providers such as Stripe or PayPal. We do not store your full payment card details on our systems.

​

Usage data: Information about how you use our Site, including pages visited, time spent on pages, and referring websites. This data is collected through cookies and analytics tools.

​

Communication data: Records of correspondence if you contact us by email or through the Site.

​

Newsletter subscription data: Your email address and preferences when you subscribe to our mailing list via Substack or other platforms.

​

3. How We Use Your Information

​

We use the personal information we collect for the following purposes:

​

To provide and deliver our Services, including coaching sessions, ThetaSync Self-Hypnosis sessions, and the Cosmic Camino programme.

To process payments and send transaction confirmations.

To send you newsletters, updates, and promotional materials where you have opted in to receive them.

To respond to your enquiries and provide customer support.

To improve our Site, Services, and user experience.

To comply with legal obligations and protect our rights.

​

4. Legal Basis for Processing (GDPR)

​

Under the General Data Protection Regulation (GDPR), we rely on the following legal bases to process your personal data:

​

Consent: When you subscribe to our newsletter or opt in to marketing communications.

Contract: When processing is necessary to fulfil a service you have purchased or requested.

Legitimate interests: When we use your data to improve our Services or respond to enquiries, provided this does not override your rights.

Legal obligation: When we are required by law to process or retain your data.

​

5. Cookies and Tracking Technologies

​

Our Site uses cookies and similar tracking technologies to enhance your browsing experience and analyse site traffic. Cookies are small text files placed on your device when you visit the Site.

​

We use the following types of cookies:

​

Essential cookies: Required for the Site to function properly.

Analytics cookies: Used to understand how visitors interact with the Site (e.g., via Google Analytics or Wix Analytics).

Marketing cookies: Used to deliver relevant advertisements and track campaign performance.

​

You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of the Site.

​

6. Third-Party Services

​

We may share your personal information with trusted third-party service providers who assist us in operating the Site and delivering our Services. These include:

​

Wix.com: Our website hosting platform.

Stripe / PayPal: For secure payment processing.

Substack: For newsletter distribution.

Google Analytics: For website traffic analysis.

YouTube, Instagram, and Podcast platforms: For content delivery.

​

These third parties are required to protect your data in accordance with applicable data protection laws. We do not sell your personal information to any third party.

​

7. Data Retention

​

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Specifically:

​

Client records and session data are retained for the duration of our working relationship and for up to 7 years afterwards for legal and accounting purposes.

Newsletter subscriber data is retained until you unsubscribe.

Website analytics data is retained in accordance with the policies of our analytics providers.

​

When your data is no longer needed, it will be securely deleted or anonymised.

​

8. Your Rights Under GDPR

​

If you are located in the European Economic Area (EEA), you have the following rights regarding your personal data:

​

Right of access: You may request a copy of the personal data we hold about you.

Right to rectification: You may ask us to correct any inaccurate or incomplete data.

Right to erasure: You may request that we delete your personal data, subject to legal obligations.

Right to restrict processing: You may ask us to limit how we use your data.

Right to data portability: You may request that we transfer your data to another organisation in a structured, machine-readable format.

Right to object: You may object to our processing of your data where we rely on legitimate interests.

Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time.

​

To exercise any of these rights, please contact us at kit@kitross.ie. We will respond to your request within 30 days.

​

9. International Data Transfers

​

Your personal data may be transferred to and processed in countries outside the EEA where our third-party service providers operate. Where such transfers occur, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your data.

​

10. Data Security

​

We take reasonable technical and organisational measures to protect your personal information against unauthorised access, loss, or misuse. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

​

11. Children's Privacy

​

Our Services are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe that a child has provided us with personal data, please contact us at kit@kitross.ie and we will take steps to delete such information.

​

12. Changes to This Privacy Policy

​

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any updates will be posted on this page with a revised "Last Updated" date. We encourage you to review this page periodically.

​

13. Contact Us

​

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us:

​

Kit Ross Ltd

Email: kit@kitross.ie

Website: kitross.ie

​

You also have the right to lodge a complaint with the Data Protection Commission (DPC) in Ireland if you believe your data has been handled unlawfully. You can contact the DPC at www.dataprotection.ie.