Privacy Policy for Mirror Astrology

Effective Date: March 8, 2025
Product: Mirror Astrology
Company: Heaven on Earth Maui LLC
Contact Email: [email protected]
Mailing Address: 1135 Makawao Ave, STE 103 PMB 185, Makawao, HI 96768, USA

Introduction

Welcome to Mirror Astrology. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our website and services. By using Mirror Astrology, you agree to the practices described in this policy. If you do not agree with this Privacy Policy, please discontinue use of our services.

Data Collection

We collect personal and usage information to provide and improve our services. This includes:

Information You Provide: When you create an account or use Mirror Astrology, you may provide personal details such as your name, email address, and birth details (e.g. birth date, time, and location). This information is used to create your profile and generate personalized astrological insights.
Chat Content: If our platform offers chat features or consultations, we collect and store the content of your messages or chat conversations. This helps us deliver the service (for example, generating astrological readings or providing customer support) and improve our offerings.
Automatically Collected Data: We automatically collect certain data about your device and usage of our site through analytics tools (like PostHog) and server logs. This may include your IP address, browser type, operating system, pages visited, and timestamps of visits. This information helps us understand how users interact with our site, diagnose technical issues, and improve user experience. All automatic data collection is for internal analytics only and is not used to identify you personally.

Cookies

Cookies are small text files stored on your device to help websites function. Mirror Astrology uses cookies only for essential purposes and not for advertising or tracking. Specifically:

Session Management: We use cookies to keep you logged in and maintain your session as you navigate the site. These cookies are essential for the website to operate (for example, remembering your login status or preferences while you use our services).
No Third-Party Ad Tracking: We do not use cookies for third-party advertising, marketing campaigns, or cross-site tracking. We also do not use any third-party analytics cookies beyond our own PostHog analytics implementation. This means we are not tracking your browsing activities on other sites, and we do not allow third-party advertisers to place cookies on our site.

You have the option to disable cookies through your browser settings, but please note that doing so may affect the functionality of Mirror Astrology (for example, you might not stay logged in or some features may not work). Our use of cookies is minimal and solely focused on providing you with a smooth, secure experience.

Email Communications

By providing your email to Mirror Astrology, you consent to receive communications from us. These may include:

Newsletters & Updates: We may send occasional newsletters, astrological insights, or promotions about our services. These emails are meant to keep you informed about new features, special offers, or content that might interest you.
Opt-Out Anytime: If you prefer not to receive promotional or newsletter emails, you can unsubscribe at any time. Every marketing email will include an Unsubscribe link at the bottom, allowing you to opt out of future communications. You can also contact us directly to be removed from our mailing list.
Transactional Emails: Even if you opt out of marketing emails, you may still receive essential service-related emails. For example, we might send you messages about account transactions (like payment receipts from a purchase), important account notifications, password reset emails, or customer support responses. We limit these communications to what is necessary for the operation of the service or compliance with our obligations.

We value your choice and will honor unsubscribe requests promptly. We do not share your email address with third parties for their own marketing purposes.

Third-Party Services

Mirror Astrology uses a few trusted third-party services to operate our platform and enhance your experience. We do not sell your personal data, and we only share information with these providers as needed for them to perform their services on our behalf. The third-party services we use are:

Stripe (Payment Processing): If you make purchases or payments on Mirror Astrology, payments are processed through Stripe. Stripe may collect and process your payment information (such as credit card number, billing name, and address) to complete the transaction. We do not store your full credit/debit card details on our servers. Payment data is transmitted securely to Stripe, and Stripe handles your payment information in accordance with their own security standards (PCI-DSS compliance) and privacy policy. For more details, please see the Stripe Privacy Policy.
PostHog (Analytics): We use PostHog to gather analytics about how users interact with our site so we can improve the service. PostHog may collect information like page visits, clicks, and other usage data. This information is generally aggregated and does not include personally identifying details beyond technical information (though things like IP address or device identifiers might be collected for analytics purposes). We use these insights to understand user behavior and preferences in order to make Mirror Astrology better. The analytics data is used internally only. For more information, you can review PostHog’s Privacy practices.
Google Authentication (Login): Mirror Astrology offers the option to log in or sign up using your Google account (OAuth). If you choose to use Google Auth, we will receive basic information from your Google profile, such as your name and email address, which we use to create or log in to your account. We do not receive your Google password or any other data from your Google account beyond the necessary profile information you consent to share. Google may place an authentication cookie or token on your device as part of the login process. Your use of Google’s login functionality is subject to Google’s own privacy policy (see the Google Privacy Policy for details). We only use the information provided by Google to authenticate you and manage your Mirror Astrology account.

Each of these third-party providers is given only the information necessary to perform their functions, and they are contractually obligated to protect your data. We do not allow these partners to use your information for any other purposes beyond providing their services to Mirror Astrology. Aside from the services listed above, we do not share your personal information with any other third parties, except if required by law (such as to comply with a legal process) or as part of a business transfer (for example, if Mirror Astrology is involved in a merger or acquisition, in which case we will notify you as appropriate).

Your Rights and Choices

We respect your rights over your personal data. Depending on where you live, you may have specific privacy rights under laws like the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Mirror Astrology is committed to complying with these regulations and empowering all users with control over their data. Below, we outline your key rights and how you can exercise them:

GDPR (EU) Data Protection Rights

If you are in the European Union (or in a jurisdiction with similar laws), you have the following rights regarding your personal data:

Right to Access: You can request a copy of the personal data we hold about you. We will provide you with a summary of the information we have, why we have it, and who it’s shared with.
Right to Rectification: If any of your personal information is incorrect or incomplete, you have the right to request that we correct or update it.
Right to Erasure: You can request that we delete your personal data (right to be forgotten). We will erase the information we hold about you, provided we do not have a legal obligation to retain it (for instance, for transaction record-keeping or legal compliance).
Right to Restrict Processing: You have the right to ask us to limit or suspend the processing of your personal data in certain circumstances (for example, if you contest the accuracy of your data or if the processing is unlawful but you do not want the data deleted).
Right to Object: You may object to our processing of your personal information if you feel it impacts your rights. This includes the right to object to processing for direct marketing. In practice, this means you can tell us to stop using your data for certain purposes, and we will comply unless we have compelling legitimate grounds to continue or a legal requirement.
Right to Data Portability: You can request that we provide your personal data to you, or to a third party you designate, in a commonly used, machine-readable format. This makes it easier for you to take your data to another service if needed.
Right to Withdraw Consent: If we are processing your personal data based on your consent, you have the right to withdraw that consent at any time. For example, you can unsubscribe from our newsletters (withdrawing consent for email marketing). Withdrawal of consent does not affect the lawfulness of any processing we did before you withdrew consent.

To exercise any of these rights under GDPR, please contact us (see the Contact Us section below). We may need to verify your identity before fulfilling your request for security reasons. We will respond to your request within the timeframe required by law (typically within one month for GDPR requests). You also have the right to lodge a complaint with your local data protection authority if you believe we have not handled your data properly.

CCPA (California) Privacy Rights

If you are a resident of California, the CCPA gives you specific rights regarding your personal information. These include:

Right to Know: You have the right to request that we disclose the categories of personal information we have collected about you, the categories of sources of that information, the business or commercial purpose for collecting it, and the categories of third parties with whom we share personal information. You also have the right to request the specific pieces of personal information we have collected about you.
Right to Delete: You can request that we delete any personal information about you that we have collected and retained, subject to certain exceptions. For example, we may retain information needed to complete a transaction you initiated, for security purposes, or to comply with legal obligations. If no such exceptions apply, we will delete your data and instruct any service providers to do the same.
Right to Opt-Out of Sale of Personal Information: The CCPA gives you the right to opt out of the sale of your personal information. Note: Mirror Astrology does not sell your personal information to third parties. In other words, we do not exchange your data for money or other valuable consideration. Because we do not sell data, you will not see a Do Not Sell My Info link on our site. However, if this practice ever changes, we will update this policy and provide a clear method for you to opt out.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. This means we won’t deny you services, charge you a different price, or provide a lesser quality of service just because you exercised your privacy rights under CCPA.

To exercise your CCPA rights to know or delete, you can contact us with your request (see Contact Us below). We will verify your identity (for example, by confirming information we already have on file, like your email address) to ensure we are dealing with the correct person. Once verified, we will respond to your request in accordance with California law (generally within 45 days). If needed, we can extend this period once by an additional 45 days with notice to you.

Global Privacy Practices: Even if you do not reside in the EU or California, we are committed to honoring the spirit of these regulations for all our users. This means any user can contact us to inquire about their data, request corrections or deletions, or ask questions about privacy. We aim to provide a high level of privacy protection to everyone, regardless of location.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required for legitimate business or legal reasons. In general:

Retention Period: We may keep your information for up to 5 years from your last interaction with the service. This period allows us to maintain records for internal analysis, improve our services over time, and comply with legal or contractual obligations. For example, analytics data might be kept to analyze long-term trends, and account information might be retained for a period after account deletion in case of any issues or legal requirements.
Inactive Accounts: If you have not used your Mirror Astrology account for an extended period (we may consider accounts inactive after a certain time), we may remove or anonymize your personal data as part of routine data cleanup, especially after the 5-year retention window has passed.
Deletion Upon Request: If you request deletion of your data (as described in the Rights section above), we will delete your personal information from our active databases, except for information we are required to keep by law or for legitimate business purposes. We may retain minimal information to document that we fulfilled your request.
Anonymized Data: In some cases, we may convert your data into an aggregated or anonymized form for statistical analysis or business purposes. In this form, it will no longer be associated with you and may be retained indefinitely without further notice to you.

After the retention period expires, or upon verified request for deletion, we will securely dispose of or anonymize your personal data. Please note that residual copies might persist in backup systems for a short period, but such backups are maintained securely and purged on a regular cycle.

Data Security

We take the security of your personal information seriously. Mirror Astrology implements a range of technical and organizational measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These measures include:

Encryption: Our website is secured via industry-standard encryption (HTTPS/TLS) to protect data in transit between your device and our servers. Sensitive information (such as passwords) is stored in encrypted or hashed form.
Access Controls: Personal data is accessible only by authorized personnel who need it to perform their job (for example, providing customer support or maintaining the system). We limit access to your information and ensure those with access are bound by confidentiality obligations.
Security Practices: We regularly update our software and frameworks (including our Ruby on Rails platform) to incorporate the latest security patches. We also monitor for potential vulnerabilities and attacks, and have procedures in place to deal with any suspected data breach.
Third-Party Security: When we use third-party services like Stripe or PostHog, we ensure that they also use appropriate security measures. For instance, Stripe is certified to handle payment data securely. We choose reputable providers and aim to sign agreements that require them to protect personal data to high standards.

Despite our best efforts, no method of transmission over the internet or electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security. In the unlikely event of a data breach that affects your personal data, we will notify you as required by applicable law.

Legal Jurisdiction

Mirror Astrology is a company incorporated in the State of Delaware, USA. By using our website and services, you agree that this Privacy Policy (and any disputes relating to it) is governed by the laws of Delaware. Any proceedings arising from or relating to this Privacy Policy shall be brought in the appropriate courts of Delaware.

If you are accessing Mirror Astrology from outside the United States, be aware that your information will be transferred to and processed in the U.S. (where our servers and our service providers are located). We will handle your information in accordance with this Privacy Policy and all applicable laws, which may differ from the laws in your country. By using our services, you consent to the transfer of your personal data to the United States and to the jurisdiction of Delaware law as it pertains to this policy.

Changes to This Privacy Policy

We may update or change this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. When we make changes, we will update the Effective Date at the top of this policy. If the changes are significant, we may provide a more prominent notice (such as a notice on our website or an email notification).

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of Mirror Astrology after any modifications to this policy will signify your acknowledgment of the changes and agreement to be bound by the updated policy.

Contact Us

Your privacy is important to us. If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

Email: [email protected]

You can also reach out to us through the contact form on our website or via our mailing address, if provided on our site. We will do our best to address your inquiry promptly and thoroughly.

Thank you for trusting Mirror Astrology with your personal information. We are dedicated to safeguarding your data and providing you with a transparent and secure experience.