Data Protection Policy
Your privacy is very important to us. Here is what you should know:
- We are respectful about the personal information you provide through the operation of our services.
- We store personal information for only as long as we have a reason to keep it.
- We want to make it as easy as possible for you to control what information on our website is kept, indexed by search engines, and permanently deleted.
- We help protect you from overreaching government demands for your personal information.
- We aim for full transparency on how we gather and use your personal information.
Who We Are and What This Policy Covers
JeanHaner.com is the home for all of Jean Haner’s work with her company, Clear Home Clear Heart, Inc. Jean’s work focuses on helping people walk a more conscious path in life, one that is based on open-hearted compassion, for others, and for themselves.
- Our website, www.JeanHaner.com (Site);
- Our other products and services that are available on or through www.JeanHaner.com
Information We Collect
We only collect information about you if we have a reason to do so – for example, to provide our Services, to communicate with you, or to make our Services better.
We collect information in three ways: if and when you provide information to us, automatically through operating our Services, and from outside sources. Let’s go over the information that we collect.
Information You Provide to Us
It’s probably no surprise that we collect information that you provide to us. The amount and type of information depends on the context and how we use the information. Here are some examples:
- Basic Information:We ask for some very basic information from you when you contact us or sign up for our mailing list: 1) your email address, so we can reply to you; 2) your state or province; 3) the country you live in.
- Content and Communications With Us:Depending on the Services you use, you may also provide us with information about you through testimonials, photos, videos, emails and/or written letters. These are always assumed to be meant to be completely confidential and we never share them with anyone, publicly or privately. If you write a testimonial, we will ask your consent if we want to share it with anyone. If you choose to post any of this information on the internet, such as Facebook or other forums, anyone can access it.
Information We Collect Automatically
We collect very little information automatically:
- Log Information:Unlike most online service providers, we do not collect information that web browsers, mobile devices, and servers typically make available, such as the browser type, IP address, unique device identifiers, language preference, referring site, the date and time of access, operating system, and mobile network information.
- Location Information:We may determine the approximate location of your device from your IP address but not your personal location. We collect and use this information to, for example, calculate how many people visit our Services from certain geographic regions.
How And Why We Use Information
Purposes for Using Information
We use information about you as mentioned above and for the purposes listed below:
- To provide our Services – for example, to offer products, consultations and courses, provide access to our online services, or charge you for any of our paid Services;
- To further develop and improve our Services – for example by adding new features that we think our users will enjoy or will help them to create and manage their websites more efficiently;
- To monitor and analyze trends and better understand how users interact with our Services, which helps us improve our Services and make them easier to use;
- To measure, gauge, and improve the effectiveness of our advertising, and better understand user retention and attrition–for example, we may analyze how many individuals purchased a product after receiving a marketing message or the courses that have the highest usage history over a certain length of time;
- To monitor and prevent any problems with our Services, protect the security of our Services, detect and prevent fraudulent transactions and other illegal activities, fight spam, and protect the rights and property of JeanHaner.com, Clear Home Clear Heart and others, which may result in us declining a transaction or the use of our Services;
- To communicate with you, for example through an email, about offers and promotions offered by JeanHaner.com and others we think will be of interest to you, solicit your feedback, or keep you up to date on our products and services; and
- To personalize your experience using our Services, provide content recommendations (for example, through our course feedback surveys), target our marketing messages to groups of our users (for example, those who have taken a particular course with us or have been our user for a certain length of time), and serve relevant advertisements.
Legal Bases for Collecting and Using Information
A note here for those in the European Union about our legal grounds for processing information about you under EU data protection laws, which is that our use of your information is based on the grounds that:
(1) The use is necessary in order to fulfill our commitments to you under our Terms and Conditions or other agreements with you or is necessary to administer your service – for example, in order to enable access to an online course on your device or charge you for a product or consultation; or
(2) The use is necessary for compliance with a legal obligation; or
(3) The use is necessary in order to protect your vital interests or those of another person; or
(4) We have a legitimate interest in using your information – for example, to provide and update our Services, to improve our Services so that we can offer you an even better user experience, to safeguard our Services, to communicate with you, to measure, gauge, and improve the effectiveness of our advertising, and better understand user retention and attrition, to monitor and prevent any problems with our Services, and to personalize your experience; or
(5) You have given us your consent–for example before we place certain cookies on your device and access and analyze them later on, as described in our Cookies Policy below.
How We Share Information
We do not sell our users’ private personal information.
We share information about you in the very limited circumstances spelled out below and with appropriate safeguards on your privacy:
- Third Party Vendors:We may share information about you with third party vendors who need to know information about you in order to provide their services to us, or to provide their services to you or your site. This group includes vendors that help us provide our Services to you (like payment providers that process your credit and debit card information, fraud prevention services that allow us to analyze fraudulent payment transactions, postal and email delivery services that help us stay in touch with you, and email support services that help us communicate with you, those that assist us with our marketing efforts (e.g. by providing tools for identifying a specific marketing target group or improving our marketing campaigns), those that help us understand and enhance our Services (like analytics providers).
- Legal Requests:We may disclose information about you in response to a subpoena, court order, or other governmental request. For more information on how we respond to requests for information about users of our Site, please see the Legal Requests section below.
- To Protect Rights, Property, and Others:We may disclose information about you when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of Clear Home Clear Heart, Inc., third parties, or the public at large. For example, if we have a good faith belief that there is an imminent danger of death or serious physical injury, we may disclose information related to the emergency without delay.
- With Your Consent:We may share and disclose information with your consent or at your direction. For example, we may share your information with third parties such as a hotel when you are registering for an event and we are coordinating accommodations.
- Aggregated or De-Identified Information:We may share information that has been aggregated or reasonably de-identified, so that the information could not reasonably be used to identify you. For instance, we may publish aggregate statistics about the use of our Services to facilitate customized ad campaigns with partners.
- Published Support Requests:And if you send us a request (for example, via a support email or one of our feedback mechanisms), we reserve the right to publish that request in order to help us clarify or respond to your request or to help us support other users.
Information Shared Publicly
Information that you choose to make public is of course disclosed publicly. That means, of course, that information like your public profile, posts, other content that you make public on our Facebook pages, groups or other forums, and your “Likes” and comments, are all available to others.
Please keep all of this in mind when deciding what you would like to share.
How Long We Keep Information
We generally discard information about you when we no longer need the information for the purposes for which we collect and use it –which are described in the section above on How and Why We Use Information – and we are not legally required to continue to keep it.
For example, we may keep the web server logs that record information about a visitor to our website, such as the visitor’s IP address, browser type, and operating system, for approximately 30 days. We may retain the logs for this period of time in order to, among other things, analyze traffic to the site and investigate issues if something goes wrong on the site.
We will retain information at least 90 days after a live event in the event there is customer service or support question related to who attended, arrival date and departure date.
While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so, such as monitoring our Services for potential vulnerabilities and attacks.
You have several choices available when it comes to information about you:
- Limit the Information that You Provide:If you contact us, you can choose not to provide the information we request on our contact form. Please keep in mind that if you do not provide this information, certain features of our Services – for example, notifications about free events near you – may not be available.
- Opt-Out of Electronic Communications:You may opt out of receiving promotional messages from us. Just follow the instructions in those messages. While we’ll be very sad to lose our connection, we will not contact you again unless it’s necessary to send you something like a legal notice. Please keep in mind that we may continue to retain your information after ceasing contact, if that information is reasonably needed to comply with (or demonstrate our compliance with) legal obligations such as law enforcement requests, tax obligations, or reasonably needed for our legitimate business interests.
- Set Your Browser to Reject Cookies:You can usually choose to set your browser to remove or reject browser cookies before using our site, with the drawback that certain features of our site may not function properly without the aid of cookies.
If you are located in certain countries, including those that fall under the scope of the European General Data Protection Regulation (AKA the “GDPR”), data protection laws give you rights with respect to your personal data, subject to any exemptions provided by the law, including the rights to:
- Request access to your personal data;
- Request correction or deletion of your personal data;
- Object to our use and processing of your personal data;
- Request that we limit our use and processing of your personal data; and
- Request portability of your personal data.
To access, correct, or delete your personal data, please contact us via our Contact Jean Page.
EU individuals also have the right to make a complaint to a government supervisory authority.
How to Reach Us
Other Things You Should Know (Keep Reading!)
- In the case of US based entities, entering into European Commission approved standard contractual arrangements with them; or
- In the case of entities based in other countries outside the EEA, entering into European Commission approved standard contractual arrangements with them.
You can ask us for more information about the steps we take to protect your personal information when transferring it from the EU.
Change Log: Updated May 25, 2018
We reserve the right to make changes to this Cookies Policy at any time and for any reason. We will alert you about any changes by updating the “Last Updated” date of this Cookies Policy. Any changes or modifications will be effective immediately upon posting the updated Cookies Policy on the Site, and you waive the right to receive specific notice of each such change or modification.
You are encouraged to periodically review this Cookies Policy to stay informed of updates. You will be deemed to have been made aware of, will be subject to, and will be deemed to have accepted the changes in any revised Cookies Policy by your continued use of the Site after the date such revised Cookies Policy is posted.
TYPES OF COOKIES
The following types of cookies may be used when you visit these Sites:
Analytics cookies monitor how users reached the Site, and how they interact with and move around once on the Site. These cookies let us know what features on the Site are working the best and what features on the Site can be improved.
Our cookies are “first-party cookies”, and can be either permanent or temporary. These are necessary cookies, without which the Site won’t work properly or be able to provide certain features and functionalities. Some of these may be manually disabled in your browser, but may affect the functionality of the Site.
Personalization cookies are used to recognize repeat visitors to the Site. We use these cookies to record your browsing history, the pages you have visited, and your settings and preferences each time you visit the Site.
Security cookies help identify and prevent security risks. We use these cookies to authenticate users and protect user data from unauthorized parties.
Site Management Cookies
Site management cookies are used to maintain your identity or session on the Site so that you are not logged off unexpectedly, and any information you enter is retained from page to page. These cookies cannot be turned off individually, but you can disable all cookies in your browser.
Third-party cookies may be place on your computer when you visit the Site by companies that run certain services we offer. These cookies allow the third parties to gather and track certain information about you. These cookies can be manually disabled in your browser. For example, we may embed videos from YouTube and Video which demonstrate our work and each of those website providers use their own tracking cookies.
CONTROL OF COOKIES
Most browsers are set to accept cookies by default. However, you can remove or reject cookies in your browser’s settings. Please be aware that such action could affect the availability and functionality of the Site.
For more information on how to control cookies, check your browser or device’s settings for how you can control or reject cookies.
In addition, you may opt-out of some third-party cookies through the Network Advertising Initiative’s Opt-Out Tool.
OTHER TRACKING TECHNOLOGIES
In addition to cookies, we may use web beacons, pixel tags, and other tracking technologies on the Site to help customize the Site and improve your experience. A “web beacon” or “pixel tag” is tiny object or image embedded in a web page or email. They are used to track the number of users who have visited particular pages and viewed emails, and acquire other statistical data. They collect only a limited set of data, such as a cookie number, time and date of page or email view, and a description of the page or email on which they reside. Web beacons and pixel tags cannot be declined. However, you can limit their use by controlling the cookies that interact with them.
Change Log: Updated May 25, 2018
Data Protection Policy
1. Data protection principles
Clear Home Clear Heart, Inc. (“The Company) is committed to processing data in accordance with the responsibilities under the General Data Protection Regulation (“GDPR”).
Article 5 of the GDPR requires that personal data shall be:
- processed lawfully, fairly and in a transparent manner in relation to individuals;
- collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes;
- adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
- accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
- kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in order to safeguard the rights and freedoms of individuals; and
- processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.”
2. General provisions
- This policy applies to all personal data processed by the Company.
- Jean Haner shall take responsibility for The Company’s ongoing compliance with this policy.
- This policy shall be reviewed at least annually.
- The Company shall register with the Information Commissioner’s Office as an organization that processes personal data.
3. Lawful, fair and transparent processing
To ensure its processing of data is lawful, fair and transparent, The Company shall maintain a Register of Systems, which is a register of all systems in which personal data is processed by The Company. The Register of Systems shall be reviewed at least annually.
- Individuals shall have the right to ask what information The Company holds about them and why, how to gain access to the information, be informed on how to keep it up to date, and to be informed on how The Company is meeting its data protection obligations.
- Individuals have the right to access their personal data and any such requests made to the Company shall be dealt with in a timely manner.
- The Company at its discretion may charge individuals up to $20 USD per request and will provide all relevant data within 20 business days. The Company will always verify the identity of anyone making a personal data request before handing over any information.
- In certain circumstances, personal data may be requested to be disclosed to law enforcement agencies without the consent of the data subject. For more information regarding personal data request from law enforcement agencies, please see the Company’s Legal Requests policy.
4. Lawful purposes
All data processed by the Company must be done on one of the following lawful bases: consent, contract, legal obligation, vital interests, public task or legitimate interests. For more information, visit the ICO website.
- The Company shall note the appropriate lawful basis in the Register of Systems.
- Where consent is relied upon as a lawful basis for processing data, evidence of opt-in consent shall be kept with the personal data.
- Where communications are sent to individuals based on their consent, the option for the individual to revoke their consent should be clearly available and systems should be in place to ensure such revocation is reflected accurately in the Company’s systems.
5. Data security and minimization
- The Company shall ensure that all employees keep all data secure, by taking sensible precautions and following the following guidelines:
i. Strong passwords must be used, and they should not be shared for non-system administrative functions. In the event that a system administrative function requires a single user account and password, such as a root password on a web server, the account and password will be strictly controlled by a restricted set of administrators, no more than necessary to adequately support the business needs.
ii. Personal data not be disclosed to unauthorized people, either within the Company or externally.
iii. The Company should avoid saving personal data directly on laptops or other mobile devices like tablets or smart phones. If there is a need to transfer personal data to a laptop or mobile device for a very specific business need (e.g. exchanging hotel registration information between the event and hotel staff, providing user name tags and rooming lists etc.), the user will be notified and required to provide explicit consent to the transfer of data on their behalf, as well as the data will be immediately removed from the computing device by the event staff once the data is no longer required to support the business transactions.
iv. All servers and computers containing data should be protected by approved security software and a firewall.
v. Personal data must be encrypted before being transferred electronically.
- The Company shall ensure that personal data are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
- The Company will provide training to all employees to help them understand their responsibilities in handling data.
- The Company shall ensure that only people able to access data covered by this policy should be those who need it for their work.
- The Company shall ensure that data is not shared informally. When access to confidential information is required, employees will follow strict processes in validating consent from the customer.
- The Company shall take reasonable steps to ensure personal data is accurate.
- Where necessary for the lawful basis on which data is processed, steps shall be put in place to ensure that personal data is kept up to date.
- Data will be held in as few places as necessary. Staff should not create unnecessary additional data sets.
- Staff should take every opportunity to ensure that data is updated. For example, by confirming a customer’s details when they call.
- The Company will make it easy for customers to update the information held about them. For instance, via the company website.
- Once inaccuracies are discovered, data should be updated. For instance, if a customer can no longer be reached on the telephone number stored in the database, it should be removed.
7. Archiving / Removal
- To ensure that personal data is kept for no longer than necessary, the Company shall put in place an archiving policy for each area in which personal data is processed and review this process annually.
- The archiving policy shall consider what data should/must be retained, for how long, and why.
- The Company shall ensure that personal data is stored securely using modern software that is kept-up-to-date.
- Access to personal data shall be limited to personnel who need access and appropriate security should be in place to avoid unauthorized sharing of information.
- When personal data is deleted this should be done safely such that the data is irrecoverable.
- Appropriate back-up and disaster recovery solutions shall be in place.
In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data, the Company shall promptly assess the risk to people’s rights and freedoms and if appropriate report this breach to the ICO. For more information, visit the ICO website.
END OF POLICY
Change Log: May 25, 2018
What Information Do We Have If You Have Made a Purchase from Us?
Our website, JeanHaner.com, may have certain information from purchasers. The following is a summary of the information that we may collect and store IF you have made a purchase from us.
- Basic information, such as:
- Email address
- Phone number
- Order and purchase information
- Transaction and/or billing information
- We will generally retain the above information until changed or removed by the user (if it’s possible to do so). We may also collect log data, which may include a user’s IP address, browser type, operating system. We keep this information for up to 30 days as a matter of course.
- Live Event Registration Data:
- Email address
- Phone number
- Second Phone Number
- Emergency Contact Phone Number
- Personal preferences regarding accommodations and meals
We may retain the above information for reporting purposes at least 90 days after the event completes.
More Information on Data Release and Retention
Before revealing any of this information to another party, we require a validly issued subpoena, warrant, or court order that specifically requests it unless we have a good faith belief that there is an emergency involving death or serious physical injury. We do not voluntarily provide governments with access to data about users (private or public) for law enforcement, intelligence gathering, or other surveillance purposes. More information on our requirements for releasing private user information can be found in the other policies on this page.
If you wish to stop receiving communications from us, you may request to have your email address removed from our systems by contacting us at the Contact Jean page.
Change Log: Updated May 25, 2018
Copyright and Trademark Policy
Copyright © Clear Home Clear Heart, Inc. 2018 All Rights Reserved
Clear Home Clear Heart, Inc. respects the intellectual property rights of our business partners, instructors, and other third parties and expects our users to do the same when using the Services. We reserve the right to suspend, disable, or terminate contact with users who repeatedly infringe or are repeatedly charged with infringing the copyrights, trademarks, or other intellectual property rights of others.
All files and information contained in this Website or Blog are copyright by Clear Home Clear Heart, Inc., and may not be duplicated, copied, modified or adapted, in any way without our written permission. Our Website or Blog may contain our service marks or trademarks as well as those of our affiliates or other companies, in the form of words, graphics, and logos.
Your use of our Website, Blog or Services does not constitute any right or license for you to use our service marks or trademarks, without the prior written permission of Clear Home Clear Heart, Inc.
Our Content, as found within our Website, Blog and Services, is protected under United States and foreign copyrights. The copying, redistribution, use or publication by you of any such Content, is strictly prohibited. Your use of our Website and Services does not grant you any ownership rights to our Content.
The Digital Millennium Copyright Act of 1998 (the “DMCA”) provides recourse for copyright owners who believe that material appearing on the Internet infringes their rights under U.S. copyright law. If you would like to read the DMCA, please visit the U.S. Copyright Office website at https://www.copyright.gov/legislation/dmca.pdf.
Clear Home Clear Heart, Inc. also respects the trademark rights of others. Posts with any other content that misleads others or violates another’s trademark may be updated, suspended, disabled, or terminated by Clear Home Clear Heart, Inc. in its sole discretion. If you are concerned that someone may be using your trademark in an infringing way on our Services, please contact us via the Contact Jean page and we will review your complaint. If we deem appropriate, we may remove the offending content, and warn the individual who posted the content.