Privacy Policy

Last Updated: May 28, 2025

At Nimitta LLC, we value your trust and are committed to protecting your personal information with mindful stewardship. This Privacy Policy explains how we collect, use, store, and protect your data when you use our website, Vedic astrology readings, spiritual coaching, or metaphysical tools. We align with applicable data protection laws, including the California Consumer Privacy Act (CCPA) for California residents and the General Data Protection Regulation (GDPR) for EU residents. While our small business may not meet CCPA’s revenue or data volume thresholds, we voluntarily comply with CCPA principles to protect California clients. GDPR applies to any EU clients engaging our services, regardless of our revenue, ensuring robust protections for all users.

Information We Collect

We collect the following types of information to provide our services:

  • Personal Information:

    • Name, email address, and contact details provided when booking services, subscribing to newsletters, or contacting us.

    • Birth data (e.g., date, time, place of birth) submitted voluntarily during the booking process for Vedic astrology readings. This data is input into our proprietary astrology software to generate your personalized birth chart.

  • Payment Information:

    • Transactional data, such as order amount, date, and customer name, collected when you book services or purchase metaphysical tools.

    • Note: We do not collect or store sensitive payment details, such as credit card numbers, expiration dates, or CVV codes. These are processed securely by third-party payment providers (e.g., Stripe, PayPal) compliant with Payment Card Industry Data Security Standards (PCI DSS).

  • Non-Personal Information:

    • Website usage data, such as IP addresses, browser types, and pages visited, collected via cookies or analytics tools (e.g., Squarespace Analytics, Google Analytics).

    • Preferences or feedback provided through surveys or interactions.

How We Use Your Information

Your data is used to:

  • Provide personalized Vedic astrology readings and spiritual coaching sessions. Birth data is processed in our proprietary astrology software to create your Vedic birth chart, enabling accurate and meaningful interpretations.

  • Process bookings, payments, and service delivery for consultations or metaphysical tools. Transactional data (e.g., order details) is used to confirm purchases and maintain records.

  • Send newsletters, updates, or promotional offers (with your consent, where required).

  • Improve our website and services through analytics and user feedback.

  • Comply with legal obligations or respond to lawful requests.

Data Sharing and Disclosure

  • No Third-Party Sales: We do not sell your personal information, including payment or transactional data, to third parties.

  • Service Providers: We share limited data with trusted service providers to facilitate our services, such as:

    • Payment processors (e.g., Stripe, PayPal) to handle secure transactions. These providers receive only the data necessary to process payments and are bound by PCI DSS and data protection laws.

    • Communication tools (e.g., Squarespace’s email system or Google Workspace) for sending booking confirmations, transactional emails, or newsletters (with your consent).

    • Google Drive, used to securely store birth data processed by our proprietary astrology software, with industry-standard encryption and access controls.

  • Legal Requirements: We may disclose data if required by law, such as in response to a court order or regulatory request.

  • Anonymous Data: Aggregated, non-identifiable data (e.g., website traffic statistics) may be shared for analytics or marketing purposes.

Data Storage and Security

  • Storage: Personal and transactional data is stored securely on Squarespace servers or Google Workspace platforms, including Google Drive. Birth data input into our proprietary astrology software is processed locally on secure devices managed by Nimitta LLC and stored on Google Drive using AES-256 encryption and two-factor authentication for enhanced security.

  • Retention: We retain personal and transactional data only for the duration needed to fulfill our services or as required by law (e.g., tax records). By default, birth data is stored indefinitely on Google Drive to enable future Vedic astrology readings, provided you consent during the booking process (e.g., via a pre-checked checkbox). You may opt-out of indefinite retention by requesting deletion within 30 days of chart generation, after which your birth data will be manually deleted from our software and Google Drive. You can manage your retention preference during booking or by contacting us.

  • Security Measures: We use industry-standard encryption (e.g., SSL for website data, AES-256 for Google Drive and local devices) and access controls to protect your data. Devices running our astrology software are protected with updated antivirus software and strong authentication. Our payment processors adhere to PCI DSS, and Google Drive complies with Google’s security standards (e.g., ISO 27001). Two-factor authentication on Google Workspace ensures additional protection against unauthorized access.

  • Data Deletion: You may request deletion of your data, including birth data, at any time (see “Your Rights” below). If you opt-out of indefinite retention, birth data is deleted within 30 days of service completion.

Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal or transactional data we hold about you, including birth data stored on Google Drive.

  • Correction: Request updates to inaccurate or incomplete data.

  • Deletion: Request deletion of your data, including birth data and transactional records, subject to legal or service-related exceptions (e.g., tax compliance).

  • Opt-Out: Unsubscribe from newsletters or marketing emails, or opt-out of indefinite birth data retention, at any time by contacting us.

  • GDPR-Specific (EU Residents): Request data portability, restrict processing, or object to certain uses of your data.

  • CCPA-Specific (California Residents): Request disclosure of data collected or sold (note: we do not sell data) and opt out of future sales.

To exercise these rights, contact us at support@nimitta.org. We will respond within the legally required timeframe (e.g., 30 days for GDPR, 45 days for CCPA).

Children’s Privacy

Our services are designed exclusively for adults and are not intended for individuals under 18. We do not knowingly collect, store, or process personal information, including birth data, from or about minors under 18. If you believe we have inadvertently collected such data, please contact us at support@nimitta.org to request immediate deletion. We are committed to protecting the privacy of minors and ensuring our services remain compliant with laws like the Children’s Online Privacy Protection Act (COPPA) and GDPR.

Cookies and Tracking

  • Cookies: Our website uses cookies to enhance functionality, track usage, and deliver personalized content. You can manage cookie preferences via your browser settings or our cookie consent banner (for EU users). Cookies are not used to collect data from minors.

  • Third-Party Analytics: Tools like Google Analytics collect anonymized data to improve our services. You can opt out via browser add-ons or our consent settings.

International Data Transfers

As a U.S.-based company, your data may be processed in the United States or other countries where our service providers (e.g., Squarespace, payment processors, Google Workspace) operate. Birth data stored on Google Drive is processed in U.S.-based servers, with Google’s GDPR-compliant safeguards (e.g., Standard Contractual Clauses) for EU data transfers. We ensure all service providers meet applicable data protection standards.

Changes to This Policy

We may update this policy to reflect changes in our services or legal requirements. Updates will be posted on this page with a revised “Last Updated” date. Significant changes will be communicated via email or website notice.

Contact Us

For questions, concerns, or to exercise your data rights, please contact us at support@nimitta.org. We are committed to addressing your needs promptly and transparently, honoring your spiritual journey with sacred care.