Privacy Policy

Overview

SOMATYX ("we", "us", "our") operates somatyx.com. This policy explains what personal data we collect, how we use it, and your rights. We operate with minimal data collection. We do not sell your data.

1. What We Collect

We collect only what is necessary to deliver our products and services:

• Email address — collected when you purchase a product, subscribe, or submit a support or intake form. Used to deliver your access, communicate about your order, and respond to enquiries.
• Name — collected via intake form submissions to personalise your System Analysis report.
• System Analysis intake responses — the structured self-assessment you complete in the intake form. Used exclusively to produce your personal analysis. It is never shared, sold, or used for any other purpose.
• Payment information — processed entirely by our payment processor. We never see or store your card details.
• Usage data — we use a privacy-focused analytics service that collects no personal data and uses no cookies. Aggregate page-level data only (e.g. page views, referrers).

2. How We Use Your Data

• Delivering your purchased product access via email
• Sending your System Analysis report and any follow-up communication about it
• Sending a welcome confirmation if you subscribed to our list
• Responding to support enquiries
• Understanding site usage at an aggregate level to improve the experience

We do not use your data for advertising, retargeting, or selling to third parties.

3. Email Communications

Transactional emails — order confirmations, access links, support replies, and intake confirmations — are delivered via a third-party email service. These are necessary to fulfil your purchase or enquiry and cannot be opted out of while using the service.

If you are on our subscriber list and wish to be removed, reply to any list email with "unsubscribe" or contact us at hello@somatyx.com.

4. Data Retention

• Email addresses and purchase records are retained for as long as your access is active and for a reasonable period afterward for legal and support purposes.
• System Analysis intake responses are retained to deliver your analysis and for a reasonable period afterward. You may request deletion once your report has been delivered.
• Payment information is not retained by us — it is held solely by our payment processor.

5. Third-Party Services

We work with a small number of third-party services to operate. Each handles data only as needed to perform their function:

• Stripe — payment processing. Your card details are handled exclusively by Stripe and are not visible to us. See Stripe's Privacy Policy.
• Email delivery service — used to send transactional emails (access links, confirmations, reports). Only your email address and the content of the email are passed to this service.
• Hosting infrastructure — our website and serverless functions run on a third-party cloud hosting platform. Standard server request logs (IP addresses, request metadata) may be retained by the platform for security purposes.
• Privacy-focused analytics — we use an analytics service that collects no personal data, sets no cookies, and is fully compliant with GDPR and CCPA. Data is aggregate only.

6. Cookies and Local Storage

We do not use tracking cookies or advertising cookies. We use browser local storage to store your access token after purchase so you are not required to re-authenticate on each visit. This data is stored on your device and is only transmitted to our servers to verify your access. It is not shared with any third party.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access — request a copy of the data we hold about you
• Correction — request that inaccurate data be corrected
• Deletion — request that your data be deleted, subject to legal and contractual obligations
• Objection or restriction — object to or request restriction of how we process your data
• Portability — request your data in a portable format where technically feasible

To exercise any of these rights, contact us at hello@somatyx.com. We will respond within 30 days.

8. Children's Privacy

Our Services are not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe we have inadvertently collected data from a child, please contact us and we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. Continued use of the Services after any changes constitutes your acceptance of the revised policy.

10. Contact

For privacy questions, data requests, or to exercise your rights:

• Email: hello@somatyx.com
• Support form: somatyx.com/contact

SOMATYX — United States