Privacy Policy

Last updated [August 18, 2023]

Introduction and Definitions

Thank you for choosing to be part of our community at Rebecca Tolin, LLC (“Company”, “we”, “us”, or “our”).  We are committed to protecting and respecting your personal information and your right to privacy.  We take your privacy into consideration when you visit our website, www.rebeccatolin.com ("Website"), or use any of our resources including, but not limited to, our digital or downloadable resources, online courses, classes, programs, subscriptions, workshops, trainings, audio recordings, blogs, videos, and any online forums hosted on our Website or on a third-party website (“Services”). 

We refer to any person accessing or using our Services, including visitors to our Website, coaches providing Services on our Website, and other stakeholders working with us in other contexts not specifically addressed in our Privacy Policy, as “you” or “users”.

We encourage you to read our Privacy Policy so you can better understand what information we collect, or that you provide to us, how we use the information, and what rights you have in relation to your information. In addition to reviewing our Privacy Policy, please read our Terms of Use. We collectively refer to our Privacy Policy and Terms of Use as our “Terms”. Your use of our Website and Services constitutes agreement to our Terms.

If you have any questions or concerns about our practices with regards to your personal information, please contact us. If there are any terms in our Privacy Policy that you do not agree with, please reach out to us, and immediately discontinue the use of Website and Services.

Scope

Our Privacy Policy explains our practices for collecting, using, maintaining, protecting, and disclosing your personal information when you use our Website and Services, such as when you:

  • Navigate our website;

  • Click on internal links;

  • Register for one or more of our Services (e.g., Be Your Own Medicine Course™ (“BYOM”);

  • Participate in one or more of our Services;

  • Fill out a Webform; and,

  • Like/share/comment on a blog post.

Our Privacy Policy does not apply to:

Third-Party Sites. Websites, apps, videos (embedded or direct links), or other content (each a “Linked Site”) to which we link that are not operated by us. Linked Sites have their own personal information collection and use practices, and we are not responsible for those practices. We encourage you to read each Linked Site’s privacy disclosures to understand how your personal information is processed.

Non-Personal Information. Our processing of information that cannot be linked to an identifiable or identified individual. We may process this data for any legitimate business purpose.

What Information Do We Collect, And What Do We Do With It?

Personally Submitted Information and Contributions

When you enroll as a student or subscriber (“Learner”) on our site or related courses, as part of the enrolling process, we collect the personal information you give us such as your name and email address.

We may then send you emails about our site and related course(s), registration, course content, your course progress, or other updates. We may also use your email to inform you about changes to the course, survey you about your usage, or collect your opinion.

When you participate in or attend our Live Services, such as our Be Your Own Medicine™ course, coaching classes, podcasts, Q&A interactive sessions, or when you contribute to our forums, we may collect recordings of your contributions. These contributions may include your image, voice, likeness, comments, and Feedback in video, audio, writing, or photograph format ("Contributions"). This allows us to reflect on and learn from your valuable input, enabling us to continuously improve our Services and build a strong community that provides the best possible value to our current and future Learners. We greatly value your input, and as part of our commitment to enhancing the learning experience, we may utilize some of these Contributions in future Services. For more information about how we handle recorded video conferencing software, please refer to our "Recorded Video Conferencing Software Disclaimer" below.

​​When you submit information to this website via webform (such as our Contact Us form, Somatic Meditation Request form, or any other newsletter signup, popup or embedded form), we collect the data requested in the webform in order to track and respond to your submissions. We share this information with Squarespace, our online store hosting provider, so that they can provide website services to us. 

We may send you marketing emails, which you can unsubscribe from by clicking the link at the bottom of the email. We share your contact information with Squarespace, our email marketing provider, so they can send these emails on our behalf.

Website Visitation and Analytics

As this website is hosted by Squarespace, Squarespace collects personal data when you visit this website, including:

  • Information about your browser, network, and device,

  • Web pages you visited prior to coming to this website,

  • Web pages you view while on this website, and

  • Your IP address.

Squarespace needs the data to run this website, and to protect and improve its platform and services. Squarespace analyzes the data in a de-personalized form.

This website also collects personal data to power our site analytics, including:

  • Information about your browser, network, and device;

  • Web pages you visited prior to coming to this website; and,

  • Your IP address.

This information may also include details about your use of this website, including:

  • Clicks,

  • Internal links,

  • Pages visited,

  • Scrolling, 

  • Searches, and

  • Timestamps.

We share this information with Squarespace, our website analytics provider, to learn about site traffic and activity.

How is Data Collected?

We want to explain how we collect data. Personal information that you voluntarily submit is collected through secure webforms and is shared with our website and forms provider, Squarespace. 

When it comes to our courses, they are hosted by Thinkific Labs Inc. ("Thinkific"). Thinkific provides us with the online course creation platform that enables us to deliver our Services to you. When you register for a course, your data is stored on Thinkific's data storage, databases, and their general application. They prioritize the security of your data and store it on a secure server protected by a firewall.

We use third-party video conferencing software, Zoom, which allows us to use Zoom’s cloud recording storage. Recordings are password-protected. If we enable cloud recording and audio transcripts, both will be stored encrypted. For information on how Zoom secures your data and protects your privacy, please review Privacy & Security for Zoom Video Communications. We also use Google Cloud for recording storage. To learn more about how Google protects organizations’ security and privacy with Google Cloud, please click here

To better understand website usage and traffic, we utilize the services of Squarespace, our analytics provider. Squarespace uses cookies to gather this data.

What are cookies and how do we use them? 

As noted above, our Website uses cookies and similar technologies, which are small files or pieces of text that download to a device when a visitor accesses a website or app. For information about viewing the cookies dropped on your device, please review the cookies Squarespace uses.

  • This functional and required cookie is always used which allows Squarespace, our hosting platform, to securely serve this website to you:

Crumb

These analytics and performance cookies are used on this website, as described below, only when you acknowledge our cookie banner. This website uses analytics and performance cookies to view site traffic, activity, and other data.

ss_cvt Two Years Identifies unique visitors and tracks a visitor’s sessions on a site
ss_cvt 30 minutes Identifies unique visitors and tracks a visitor’s sessions on a site

Share Buttons

This website includes share buttons which enable you to share pages or other content from this site to the following third party services: Facebook, Twitter. If you click a share button, these third parties may receive your personal data, including:

  • Information about your browser, network and device; 

  • Details about the web page or content you shared or proposed to share; and, 

  • Your IP address.

Blog Comments

This website includes commenting functionality on some pages which enables you to post a comment. This website collects personal data when you post a comment, including:

  • Your name (which will be displayed as part of your posted comment);

  • Your email address (optional, to let you know if someone replies to your comment); and,

  • Your website URL (optional).

Our Website includes “likes” functionality on some blog posts which enables you to “like” a post. Our website collects personal data when you like a post to try to prevent the same person from liking the same post during the same visit, including:

  • Information about your browser, network and device;

  • Details about the web page or content you shared or proposed to share; and,

  • Your IP address.

Fonts

Our Website serves font files from and renders fonts using Google Fonts and Adobe Fonts. To properly display this site to you, these third parties may receive personal information about you, including:

  • Information about your browser, network, or device;

  • Information about this site and the page you’re viewing on it; and,

  • Your IP address. 

Payment

We use third-party payment processors, such as Stripe and PayPal, for transactions related to our Services. All payments are encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). We retain your purchase transaction data only for the duration necessary to finalize your purchase.

All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.

PCI-DSS requirements help ensure the secure handling of credit card information by our site and related courses and its service providers.

Disclosure

We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.

Your Privacy Rights 

California Residents - Your Rights under the California Consumer Privacy Act (CCPA)

If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA). These rights include:

  • Right to Know: You have the right to request information about the categories of personal information we collect, the sources from which we collect it, the purposes for which we use it, and the categories of third parties with whom we share it.

  • Right to Delete: You have the right to request the deletion of your personal information held by us, subject to certain exceptions under the law.

  • Right to Opt-Out: You have the right to opt-out of the sale of your personal information to third parties. We do not sell your personal information unless you give us explicit permission to do so.

  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your privacy rights under the CCPA.

Under the "Shine The Light" law (California Civil Code Section 1798.83), California residents have the right to request and obtain, once a year and free of charge, information about the categories of personal information that we have disclosed to third parties for direct marketing purposes, as well as the names and addresses of those third parties. We do not currently disclose your personal information to third parties for direct marketing purposes. Nonetheless, if you are a California resident and would like to make such a request, please contact us with your written request.

For more information about your rights under the CCPA, you can visit the California Attorney General's CCPA website.

European Union (EU) and European Economic Area (EEA) Residents - Your Rights under the General Data Protection Regulation (GDPR)

Residents of the EU and EEA have certain rights regarding their personal data under the General Data Protection Regulation (GDPR). These rights include:

  • Right of Access: You have the right to request access to your personal data and information about how it is processed.

  • Right to Rectification: You have the right to request the correction of inaccurate or incomplete personal data.

  • Right to Erasure: You have the right to request the erasure of your personal data under certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.

  • Right to Restriction of Processing: You have the right to request the restriction of processing of your personal data under certain circumstances, such as when the accuracy of the data is contested or the processing is unlawful.

  • Right to Data Portability: You have the right to receive a copy of your personal data in a structured, commonly used, and machine-readable format and to transmit the data to another controller where technically feasible.

  • Right to Object: You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes.

  • Right to Withdraw Consent: If we rely on your consent as the legal basis for processing your personal data, you have the right to withdraw your consent at any time.

For more information about your rights under the GDPR, you can visit the official European Commission's GDPR website

We are committed to protecting your privacy and ensuring that your rights are respected in compliance with the CCPA and GDPR. To exercise any of these rights, or if you have any questions or concerns regarding your personal data, please contact us

How to review, update, or delete the data we collected 

Please contact us with your request to review, update, or delete your personal information.

Updates To Our Privacy Policy

We reserve the right to update this Privacy Policy from time to time as necessary to stay compliant with relevant laws.  We encourage you to frequently review this Privacy to stay informed of how we are protecting your information.  The updated version will be indicated by an updated “Revised” date and the updated version will be effective as soon as it is accessible. 

If we make material changes to this privacy policy, we shall notify you by prominently posting a notice of such changes. 

Contact Us

If you have any questions or comments regarding our Privacy Policy, please feel free to contact us. You can reach us via email at course@rebeccatolin.com or by sending regular mail to the following address:

Rebecca Tolin, LLC 

8690 Aero Dr, Ste 115 #1008

San Diego, CA 92123

We value your feedback and will respond to your inquiries as promptly as possible.