Privacy Policy

1. Privacy at a Glance

Contact Information:

LifeZen
Marcel Rebsamen
Bismarckstraße 29
55583 Bad Kreuznach
Germany

Email: support@remote-reiki.net
Website: remote-reiki.net

2. Information We Collect

Information You Provide

  • Email Address: For account management and magic link login
  • Payment Information: Processed exclusively through Stripe (see Section 5)
  • Contact Form Data: Name, email, subject, and message when you contact us
  • Recipient Names: Names you enter for Reiki sessions (stored for convenience)

Automatically Collected Information

  • Usage Data: Date and frequency of app usage
  • Session Data: Technical cookies necessary for website functionality
  • Server Log Data: IP address, browser type, access time (automatically collected by web server)

What We Don't Collect

  • ❌ No tracking cookies or analytics
  • ❌ No third-party marketing cookies
  • ❌ No social media tracking
  • ❌ No location data
  • ❌ No personal health information

3. How We Use Your Information

We use your personal information for the following purposes:

  • Service Delivery: To provide and maintain our Remote Reiki application
  • Account Management: To manage your user account and authentication
  • Payment Processing: To process subscriptions and credit purchases via Stripe
  • Customer Support: To respond to your inquiries and provide assistance
  • Service Improvement: To understand how our service is used and improve it
  • Security: To prevent fraud and ensure platform security
  • Legal Compliance: To comply with applicable laws and regulations

4. Legal Basis for Processing (GDPR - For EU Users)

If you are located in the European Economic Area (EEA), our legal basis for collecting and using your personal information depends on the data concerned and the context in which we collect it:

  • Contract Performance: Processing necessary to provide our services (Art. 6(1)(b) GDPR)
  • Legitimate Interests: Technical security and platform operation (Art. 6(1)(f) GDPR)
  • Consent: Where you have given explicit consent (Art. 6(1)(a) GDPR)
  • Legal Obligation: To comply with legal requirements (Art. 6(1)(c) GDPR)

5. Third-Party Services

Stripe Payment Processing

We use Stripe for payment processing:
Stripe, Inc.
510 Townsend Street
San Francisco, CA 94103
United States

When you make a payment, your payment information (credit card number, name, etc.) is transmitted directly to Stripe and processed there. We do not receive or store your complete payment information, only confirmation of successful/failed transactions.

Stripe Privacy Policy: https://stripe.com/privacy

Hosting Services

Our website is hosted on secure servers. Server logs (IP addresses, access times, etc.) are automatically generated for security and technical purposes.

6. Cookies and Tracking

Essential Cookies Only

We only use technically necessary cookies for:

  • Session Cookie: To maintain your login status
  • Validity: Maximum 24 hours
  • Content: Encrypted session ID

These cookies are essential for the website to function properly.

No Marketing or Analytics Cookies

We do not use:

  • ❌ Google Analytics or similar analytics tools
  • ❌ Facebook Pixel or social media tracking
  • ❌ Third-party advertising cookies
  • ❌ Marketing or targeting cookies

Your Cookie Choices

You can configure your browser to reject all cookies or to alert you when cookies are being sent. However, please note that completely disabling cookies may prevent you from using all features of our website.

7. Progressive Web App (PWA)

App Installation and Caching

This website can be installed as a Progressive Web App (PWA) on your device. To improve loading times, static content (CSS files, JavaScript, images, icons) is stored locally in your device's browser cache.

What is Stored Locally?

  • Static Files: Stylesheets, JavaScript files, icons
  • Manifest Data: App configuration (name, colors, icons)
  • Service Worker: Browser script for offline functionality

What is NOT Stored?

  • ❌ No personal data
  • ❌ No cookies beyond session cookies
  • ❌ No tracking or analytics data
  • ❌ The Reiki application itself (always runs live from server)

Control and Deletion

You have full control over the PWA:

  • Installation is voluntary (you will be asked)
  • You can uninstall the app at any time (like any other app)
  • You can clear browser cache at any time in your browser settings
  • Uninstalling deletes all locally stored data

Push Notifications (Currently Inactive)

Note: We currently do not offer push notifications. Should we implement this feature in the future, we will request your explicit consent first and update this Privacy Policy accordingly.

8. Contact Form

Data Processing for Contact Requests

When you send us a message through the contact form, the following data is processed:

  • Your name
  • Your email address
  • Subject and message
  • Time of inquiry

This data is used exclusively to process your inquiry and is deleted after completion of processing, unless there are legal retention obligations.

Spam Protection: The contact form is protected by rate limiting (maximum 3 submissions per hour per IP address) to prevent abuse.

9. Data Sharing and Disclosure

Third-Party Sharing

We share your personal information only with:

  • Stripe: For payment processing (see Section 5)
  • Hosting Provider: For website hosting (see Section 5)
  • Legal Requirements: When required by law or legal process

No Sale of Personal Information

We do NOT sell, rent, or trade your personal information to third parties for marketing purposes.

10. Data Retention

Storage Duration

  • Account Data: Until account deletion
  • Usage Data: 30 days (automatic deletion)
  • Contact Inquiries: After processing, maximum 6 months
  • Payment Data: Stored by Stripe according to their privacy policy
  • Server Logs: 7 days (automatic deletion)
  • Transaction Records: 7 years (legal requirement for tax purposes)
  • PWA Cache: Locally on your device, deletable by you at any time

Account Deletion

You can request deletion of your account at any time by contacting us via email. After deletion, all personal data will be removed, except data we must retain due to legal obligations.

11. Your Privacy Rights

General Rights

You have the following rights regarding your personal information:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your personal data
  • Restriction: Request limitation of processing
  • Data Portability: Receive your data in a structured format
  • Objection: Object to processing of your data
  • Withdraw Consent: Withdraw previously given consent

California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: What personal information we collect, use, disclose, and sell
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt-out of the sale of personal information (we don't sell data)
  • Right to Non-Discrimination: Not be discriminated against for exercising your rights

How to Exercise Your Rights

To exercise any of these rights, please contact us at:
Email: support@remote-reiki.net
Subject: "Privacy Rights Request"

We will respond to your request within 30 days (45 days for complex requests).

12. Data Security

We implement technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction, or access by unauthorized persons:

  • SSL/TLS encryption for all data transfers
  • Encrypted storage of sensitive data
  • Regular security updates
  • Access restrictions to server data
  • Secure authentication procedures (Magic Link instead of passwords)
  • Rate limiting to protect against abuse

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

13. Children's Privacy

Our services are not intended for children under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will take steps to delete such information.

14. International Data Transfers

Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ from those in your jurisdiction.

If you are located outside the United States and choose to use our services, please note that we transfer your information to the United States and process it there.

For EU Users: We ensure appropriate safeguards are in place for international data transfers, such as Standard Contractual Clauses approved by the European Commission.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons.

We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date at the top
  • Sending you an email notification (for significant changes)

Your continued use of our services after any changes constitutes acceptance of the updated Privacy Policy.

16. Contact Us About Privacy

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

LifeZen Marcel Rebsamen
Bismarckstraße 29
55583 Bad Kreuznach
Germany
Email: support@remote-reiki.net
Subject: "Privacy Inquiry"

17. Dispute Resolution

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, you may contact your local data protection authority or:

For EU Residents:
You have the right to lodge a complaint with your local supervisory authority.

For California Residents:
California Attorney General's Office
Privacy Enforcement and Protection Unit
File a complaint online