Document reference date:
Privacy Policy
This Policy describes how Wlozarinaxex collects, uses, discloses, stores, and protects personal data when you visit our website, purchase educational materials, book paid consulting sessions, or communicate with our Philadelphia studio. We publish general information about flexible nutrition only; this document is separate from any clinical relationship you may have with other providers. For cookies and similar technologies, see our Cookie Policy.
Who is responsible for your data
The data controller is Wlozarinaxex, located at 232 W Girard Ave, Philadelphia, PA 19123, United States. For privacy requests, email touch@wlozarinaxex.world or call +1 267-858-4279 during published business hours. We respond to rights requests without undue delay and within statutory timeframes where applicable (typically within one month for GDPR-style requests, subject to extensions for complex cases).
If you are located in the European Economic Area or the United Kingdom, you may also contact your local supervisory authority. We nevertheless encourage you to reach us first so we can address concerns directly.
Use the email above for access, deletion, correction, and portability requests.
We may confirm identity before disclosing or deleting data to prevent fraud.
Definitions
Personal data means information relating to an identified or identifiable individual. Processing means any operation on personal data, including collection, storage, use, disclosure, or deletion. Subprocessors are vendors that process personal data on our behalf under contract.
Sensitive or special categories (such as health data in some jurisdictions) receive additional protection. We do not ask you to upload medical records through our public forms. If you voluntarily disclose health-related details in email, we treat that content as personal data and limit use to the purpose of your message.
Scope of this Policy
This Policy applies to personal data processed through https://wlozarinaxex.world/, related landing pages, email correspondence with our team, video calls arranged for consulting, and checkout flows for digital products. It does not govern third-party websites that we link to for reference; their policies apply once you leave our domain.
Content on the site is informational. We do not use the public contact form to collect detailed medical histories. If sensitive categories of data appear in a message you voluntarily send, we treat that content according to this Policy and delete it when no longer needed for the purpose you specified, unless a longer period is required by law or documented dispute.
How we collect personal data
We collect information in three main ways: directly from you (forms, email, contracts, checkout), automatically when you browse (technical logs, device data, and—if you consent—analytics or marketing tools), and from partners such as payment processors that confirm transaction status. We combine these sources only where necessary for the purposes below.
If you apply for a job or contractor role in the future, a separate privacy notice may apply to recruitment data; this site Policy covers educational services and marketing to prospective clients.
Categories of personal data
The table below summarizes typical categories. Not every visitor provides every type of data.
| Category | Examples | Typical source |
|---|---|---|
| Identity & contact | Name, email, phone, billing or shipping address | You, when you fill forms or sign agreements |
| Account & transaction | Order references, program enrollment, payment status (card data handled by processors) | You and payment partners |
| Communication | Messages, scheduling notes, preferences you describe for meal planning documents | You |
| Technical & usage | IP address, device type, browser, approximate location, pages viewed, timestamps | Your device and, if consented, analytics tools |
| Consent records | Cookie choices stored in localStorage under key tdde_cookie_prefs_v1 |
Your browser |
Purposes and legal bases
Under the GDPR and similar laws, we must identify a lawful basis for each processing purpose. The following mapping reflects our current practices.
Service delivery and pre-contract steps
We process identity, contact, and communication data to answer inquiries, schedule sessions, and deliver PDFs or templates you purchase. Legal bases: performance of a contract, or steps taken at your request before entering a contract (Article 6(1)(b) GDPR).
Legitimate interests
We rely on legitimate interests for network security, spam prevention, internal analytics in aggregated form, and improving educational content where not overridden by your rights. We balance these interests against your expectations and offer opt-outs where appropriate (Article 6(1)(f) GDPR).
Legal obligation
Tax, corporate, and accounting rules may require retaining certain transaction records (Article 6(1)(c) GDPR).
Consent
Optional analytics and marketing measurement deploy only after you opt in through the cookie interface. You may withdraw consent at any time with effect for future processing (Article 6(1)(a) GDPR). If you enable marketing measurement, advertising platforms (for example Google Ads) may receive limited conversion or usage signals in line with that vendor’s documentation and our Cookie Policy.
How long we keep data
Retention depends on the purpose. The schedule below describes default periods unless a longer period is required by law or a documented dispute.
| Data type | Default retention |
|---|---|
| General contact form submissions | Up to ninety days after last reply, unless part of an active project |
| Consulting notes and deliverables | Duration of the engagement plus three years for professional records, unless a shorter period is agreed in writing |
| Accounting and tax evidence | Up to seven years where United States law requires |
| Cookie consent logs (browser storage) | Until you clear site data or we bump the storage key after a material policy change |
| Security and anti-abuse logs | Rolling window as configured by our host, typically not longer than twelve months unless tied to an incident investigation |
When retention ends, we delete or anonymize data so it can no longer be linked to an identifiable person, except where archival copies are technically isolated and not used for operational decisions.
Recipients and subprocessors
We do not sell personal data. We share data with categories of recipients who help us operate the business:
- Hosting and infrastructure providers that store website files and databases.
- Email and calendar services used to correspond with clients.
- Payment processors that handle card transactions; they process payment details under their own agreements.
- Analytics or advertising technology vendors, only when you enable the relevant cookie categories.
- Professional advisers such as accountants or lawyers, under confidentiality obligations, when required for compliance.
Contracts with subprocessors include data protection terms consistent with this Policy. We perform reasonable due diligence on new vendors, including review of security documentation and, where applicable, data processing agreements. A detailed subprocessor list is available on request for active commercial clients.
International data transfers
Our studio is in the United States. If you access services from the EEA, UK, or Switzerland, your data may be transferred to the United States or other countries. Where required, we implement appropriate safeguards such as Standard Contractual Clauses, the UK International Data Transfer Agreement, or reliance on adequacy decisions. You may request a summary of the mechanisms we use for your specific transaction.
Security measures
We implement administrative, technical, and organizational measures proportionate to the risk, including role-based access, authentication for internal tools, encryption in transit for website connections (HTTPS), and vendor review before onboarding new systems. Staff receive orientation on confidentiality. No method of electronic storage is perfectly secure; you should protect your own devices and passwords.
If we become aware that credentials or links to your materials may have been exposed, we will follow the breach section below and notify you when required.
Personal data breaches
We maintain internal procedures to detect, document, and respond to personal data breaches. Depending on severity and applicable law, we may notify supervisory authorities within required timelines and communicate with affected individuals when the breach is likely to result in high risk to their rights and freedoms.
Notifications describe the nature of the breach, likely consequences, and measures we are taking or proposing. If you suspect unauthorized access to your account or materials, contact us immediately at touch@wlozarinaxex.world.
Your privacy rights
Depending on your jurisdiction, you may have rights to access, rectify, erase, restrict processing, object to processing, withdraw consent, and receive a portable copy of data you provided. You may also lodge a complaint with a supervisory authority. To exercise rights, email us with enough detail to verify your identity and locate relevant records. We may ask for additional information to prevent fraudulent requests.
We will inform you of the outcome within the timeframe required by law. If we decline a request, we explain the reason and your options, including appeal paths where applicable. We do not charge a fee for legitimate requests unless the law allows a reasonable administrative fee for repetitive or excessive requests.
Automated decision-making
We do not use solely automated decision-making, including profiling, that produces legal or similarly significant effects concerning you. If that changes, we will update this Policy and describe your right to human review.
Children
Our services are directed at adults. We do not knowingly collect personal data from anyone under sixteen for marketing or profiling. If you believe we have received a child’s data without appropriate consent, contact us and we will delete it promptly after verification.
Additional regional information
Residents of certain U.S. states may have specific rights regarding sale, sharing, or targeted advertising. We do not sell personal data as defined by those laws. California residents may request disclosure or deletion subject to statutory exceptions. Colorado, Virginia, and other states may grant appeal rights if we deny a request. EEA and UK residents benefit from the GDPR and UK GDPR rights described above. If local law grants you a right we have not explicitly listed, contact us and we will respond in line with applicable rules.
Changes to this Policy
We revise this Policy when our processing activities, legal requirements, or organizational structure changes materially. The reference date at the top of this page updates automatically when you load it in a modern browser; we also mirror key dates in the site footer. Continued use of the website after changes constitutes acceptance of the updated Policy for new activities. Prior transactions remain governed by the Policy version in effect when you consented or completed payment, unless we notify you otherwise.
Contact
For privacy questions or rights requests: touch@wlozarinaxex.world. Postal address: Wlozarinaxex, 232 W Girard Ave, Philadelphia, PA 19123, USA.
Related documents: Cookie Policy, Terms of Use, Refund Policy.