Last Updated: March 8, 2025

1. Introduction

1.1. Nous Collective, a holistic and spiritual wellness brand dedicated to enriching lives through the fusion of ancient wisdom and contemporary wellness practices, sets forth this Privacy Policy (hereinafter referred to as the "Policy"). This Policy is a legally binding agreement between Nous Collective, its subsidiaries, affiliates, and any individual or entity accessing Nous Collective's website (https://nouscollective.org) or other digital platforms under its control (collectively, the "Service").

1.2. By using the Service, users acknowledge and agree to the terms outlined in this Policy. Users should carefully review these terms before accessing the Service. Failure to accept or comply with this Policy may result in the suspension or termination of access to the Service.

1.3. Nous Collective reserves the right to update this Policy at any time. Changes take effect immediately upon posting on the Service. Continued use of the Service after an update constitutes acceptance of the revised terms.

1.4. For questions, concerns, or reports of policy violations, users may contact Nous Collective at contact@nouscollective.org. Nous Collective will address inquiries in a timely and professional manner.

1.3. Nous Collective reserves the right to update this Policy at any time. Changes take effect immediately upon posting on the Service. Continued use of the Service after an update constitutes acceptance of the revised terms.

1.4. For questions, concerns, or reports of policy violations, users may contact Nous Collective at contact@nouscollective.org. Nous Collective will address inquiries in a timely and professional manner.

2. General Business Information

2.1. Business Structure
Nous Collective is a holistic and spiritual wellness brand headquartered in Toronto, Ontario, Canada. As a Canadian-based enterprise serving a global audience, Nous Collective complies with applicable Canadian laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA). Additionally, to uphold high privacy standards, Nous Collective voluntarily adheres to international regulations such as the General Data Protection Regulation (GDPR), ensuring comprehensive data protection for its users worldwide.

2.2. Core Services
Nous Collective offers the following services:

• Private Tarot Readings: Confidential online readings providing personalized spiritual guidance.

• Digital Products: Downloadable wellness tools, including journals, meditations, and breathwork exercises.

• Workshops and Seminars: Virtual events focused on spirituality, mindfulness, and holistic living.

• Subscription-Based Content: Newsletters and blog articles featuring ongoing wellness insights.

2.3. Advanced Personalization Features
To enhance user engagement and provide personalized experiences, Nous Collective offers:

• Wellness Quizzes: Interactive assessments that generate tailored wellness insights.

• Curated Content Series: Expert-led explorations of spirituality, modern healing, and holistic well-being.

2.4. Legal and Operational Integrity
Founded by Kayanna Thompson, Nous Collective operates with a commitment to integrity, transparency, and compliance with applicable privacy and data protection standards.

3. Governing Law

3.1. Nous Collective operates under the laws of the Province of Ontario, Canada, in compliance with the Personal Information Protection and Electronic Documents Act (PIPEDA) and other applicable Canadian data protection laws.

3.2. Recognizing its global audience, Nous Collective aligns its practices with international privacy standards, including the General Data Protection Regulation (GDPR) where applicable, particularly for EU residents.

3.3. Cross-Border Data Transfers
Nous Collective ensures that any transfer of personal data outside Canada is protected through legally recognized safeguards, such as Standard Contractual Clauses (SCCs) under the GDPR or equivalent mechanisms. Transfers to third-party providers, including payment processors, comply with PIPEDA and GDPR requirements. Nous Collective conducts periodic assessments of recipient countries' data protection laws and informs users about transfers, recipients, and associated risks. Where legally required, explicit user consent is obtained. All subprocessors are contractually obligated to maintain high privacy standards.

3.4. Jurisdictional Coverage
This Policy complies with Ontario laws and applicable international data protection regulations, including GDPR protections for EU residents.

3.5. Dispute Resolution and User Responsibilities
All disputes arising under this Policy are governed by the laws of Ontario, Canada. Users outside Canada are responsible for ensuring compliance with their local laws where applicable. Disputes shall first be addressed through good faith negotiation. If unresolved, disputes will be subject to arbitration through the ADR Institute of Canada or a comparable arbitration body for international users.

Exceptions to arbitration include intellectual property disputes, emergency injunctions, and small claims court matters. To the fullest extent permitted by law, users waive the right to participate in class actions. Arbitration proceedings remain confidential except where disclosure is required by law. Arbitration decisions are final and binding. Users may opt out of arbitration within 30 days by contacting legal@nouscollective.org.

(a) Good Faith Negotiation Prior to Arbitration

Before initiating arbitration or formal legal proceedings, both parties agree to attempt resolution through good faith negotiations. Users must submit a written dispute notice to Nous Collective at legal@nouscollective.org with the subject line: Privacy Dispute Resolution – [User’s Name].

Nous Collective will acknowledge receipt within ten (10) business days and provide a substantive response within thirty (30) calendar days. If the dispute remains unresolved after sixty (60) calendar days, either party may proceed with arbitration as outlined in this Policy. In exceptional circumstances, Nous Collective may request a reasonable extension to this timeline.

3.6. Accessibility Commitment

Nous Collective is committed to accessibility. This Privacy Policy is available in large text, Braille, and screen-reader-friendly formats upon request via accessibility@nouscollective.org. A downloadable PDF version is also available. Users may submit accessibility-related feedback to accessibility@nouscollective.org.  

4. Purpose and Commitment

4.1. Nous Collective's primary mission is to inspire, empower, and support individuals on their holistic wellness journeys by offering innovative tools, profound insights, and community-driven resources. These services are designed to promote personal growth, self-discovery, and spiritual clarity. This mission is deeply rooted in Nous Collective's unwavering commitment to excellence, integrity, and user-centric service.

4.2. In furtherance of its mission, Nous Collective pledges to uphold the following core values:

• Ethical Excellence: Nous Collective consistently delivers services and products that adhere to the highest ethical standards, ensuring that every offering aligns with the brand's deep-seated dedication to integrity, transparency, and authenticity.

• Inclusivity: Nous Collective fosters a safe, judgment-free environment where individuals from diverse backgrounds feel seen, valued, and supported in their unique wellness journeys. The brand strives to create a universal space for growth, connection, and personal transformation.

• Transparency: Nous Collective maintains clear, open, and honest communication across all aspects of its operations, including straightforward pricing, comprehensive policies, and accessible practices designed to build trust and confidence among its clients and community members.

4.3. Nous Collective recognizes that its purpose extends beyond the mere provision of services. The brand aims to cultivate a nurturing ecosystem in which every individual feels empowered to achieve their highest potential, supported by Nous Collective's commitment to excellence, compassion, and user-centric care.

4.4 Legal Basis for Processing Data

We process your personal data based on the following lawful bases:

1. Consent: When users explicitly provide permission for specific purposes, such as subscribing to newsletters, accessing personalized content, or participating in surveys and promotions.

   (Example: When you sign up for our newsletter or participate in a survey.)

2. Contractual Necessity: When processing personal data is required to fulfill obligations related to the requested services, such as processing payments, delivering digital products, or managing user accounts.

   (Example: When you purchase a digital product, we use your payment information to process the transaction.)

3. Legal Obligations: When compliance with legal, tax, or regulatory requirements is necessary, including record-keeping and reporting obligations. (Example: Retaining transaction records for tax reporting purposes.)

4. Legitimate Interests: When processing personal data supports Nous Collective’s business interests, such as analyzing website usage, improving offerings, ensuring security, and enhancing the user experience. Nous Collective ensures that legitimate interests are balanced with user rights and expectations.

   (Example: Analyzing browsing behaviour to improve website navigation.)

4.5 Matching Purposes to Legal Bases and Data Types

Nous Collective processes personal data for the following purposes, under their respective legal bases:

1. Account Verification and Management

• Purpose: To verify identity, enable secure login, and manage account settings.

• Legal Basis: Contractual Necessity.

• Data Used: Name, email address, password, IP address.

2. Newsletter and Marketing Communications

• Purpose: To provide updates, promotional offers, and personalized recommendations.

• Legal Basis: Consent (users opt-in by subscribing).

• Data Used: Email address, preferences, analytics data.

3. Transaction Processing

• Purpose: To process payments, issue invoices, and deliver purchased products.

• Legal Basis: Contractual Necessity and Legal Obligations.

• Data Used: Payment details, billing information, transaction history.

4. Customer Support

• Purpose: To respond to inquiries, resolve issues, and provide tailored assistance.

• Legal Basis: Contractual Necessity and Legitimate Interests.

• Data Used: Name, email address, account details, correspondence history.

5. Service Personalization and Enhancement

• Purpose: To analyze user preferences and feedback to improve website functionality and content.

• Legal Basis: Legitimate Interests.

• Data Used: Device information, preferences, browsing patterns.

6. Fraud Prevention and Security

• Purpose: To detect and prevent fraudulent activities, unauthorized access, and security threats.

• Legal Basis: Legitimate Interests and Legal Obligations.

• Data Used: IP address, account activity, payment information.

Security Measures:
Nous Collective employs industry-standard security measures, including firewalls, encryption, and automated monitoring systems, to detect and prevent fraudulent activities. Users are encouraged to safeguard their accounts by using strong passwords and enabling two-factor authentication where available.

Legal Compliance

• Purpose: To meet regulatory requirements, respond to legal inquiries, and fulfill obligations under applicable laws.

• Legal Basis: Legal Obligations.

• Data Used: Transaction records, correspondence, identification information.

  Surveys and Feedback Initiatives

• Purpose: To gather insights into user preferences and experiences.

• Legal Basis: Consent.

• Data Used: Survey responses, email address, preferences.

4.6. Data Retention

Nous Collective retains personal data only for as long as necessary to fulfill the purposes outlined in this Policy or as required by applicable laws and regulations. The following table details retention periods for different data types:

By providing clear and lawful data retention policies, Nous Collective reinforces its commitment to transparency, compliance, and the protection of user data while maintaining the highest standards of privacy and security.

5. Scope of Policy

5.1. This Policy outlines how Nous Collective collects, uses, discloses, and manages personal information provided by users during their interaction with the Service. It applies, without limitation, to any individual or entity that:

a. Accesses or uses the Nous Collective website or any associated services;
b. Creates an account with Nous Collective (as defined in the Terms of Service);
c. Submits personal information to Nous Collective through any means or medium.

5.2. Users acknowledge that certain provisions of this Policy may apply differently depending on their geographic location or the manner in which they access or use the Service. Nous Collective complies with applicable Canadian legal frameworks, including the Personal Information Protection and Electronic Documents Act (PIPEDA), and adheres to international standards, such as the General Data Protection Regulation (GDPR) for users residing in the European Union.

5.3. By accessing the Service or providing personal information to Nous Collective, users indicate their acceptance of this Policy, including how their information is collected and used. If a user does not agree to this Policy or any future updates, they must immediately discontinue use of the Service and refrain from providing any personal information to Nous Collective.

5.4. The Service may contain links to third-party websites or external resources that are not under the control of Nous Collective. This Policy does not apply to personal information collected by or through such external websites. Nous Collective is not responsible or liable for the privacy practices, policies, or content of any third-party sites. Users are strongly encouraged to review the privacy policies of any external websites they interact with to understand how their data may be processed and protected.

6. Information We Collect

6.1. Personal Information

Nous Collective collects personal information, which includes any data that can identify you directly or indirectly, such as your name, email address, or other details associated with you or your household. Examples include your name, contact details, payment information, and preferences. The collection of personal information is carried out in strict accordance with applicable laws and regulations and with the utmost respect for user privacy.

6.2. Data Collection Methods and Third-Party Tools

Nous Collective collects user data through various methods, including user-provided information, automated tracking technologies, and third-party tools. These methods include:

• Google Analytics – Collects and analyzes user interactions, website traffic, browsing behavior, and engagement patterns to enhance user experience.

• APIs – Facilitates seamless data exchange and operational efficiency between integrated third-party services and Nous Collective’s platform.

• Squarespace Storage & Built-in Email Campaigns – Stores subscriber contact information and manages email marketing communications.

• Squarespace Payments – Securely processes transactions and stores payment-related data in compliance with industry standards.

• Weglot Translate – Enables multilingual translation of our website for accessibility to a global audience.

• Judge.me – Facilitates collection and display of product reviews and ratings to improve transparency and trust.

• SEOSpace – Conducts SEO audits, keyword research, and performance monitoring to optimize website visibility and rankings.

• TinyIMG – Enhances website speed, optimizes images, and improves SEO performance through automated compression and optimization tools.

6.3. Data Collection Overview

The following table outlines the types of data we collect, why we collect it, how it's collected, and, if applicable, how it's shared with third parties:

6.5. Data Minimization and User Rights

Nous Collective ensures that the collection of personal information is limited to what is necessary and relevant for the specified purposes. We regularly review and audit our data collection practices to ensure compliance with the principles of data minimization and purpose limitation. Unnecessary or outdated data is securely deleted in compliance with retention policies.

Nous Collective reviews retention policies annually to ensure compliance with legal and business requirements.

Users have the right to access, correct, delete, or restrict the processing of their personal data. To exercise these rights, please contact us at privacy@nouscollective.org with a description of your request. We will respond within 30 days, as required by applicable laws. For security purposes, we may require verification of your identity before processing your request.

Nous Collective also provides data portability options, allowing you to request a copy of your personal data in a machine-readable format. For more information about your rights, please refer to the Privacy Rights section of this Privacy Policy.

6.6. Cookies and Tracking Technologies

Nous Collective uses cookies and similar technologies to enhance website functionality, personalize experiences, and improve performance.

Users can manage cookie preferences via our cookie consent tool, which allows them to opt in or out of non-essential cookies. Additionally, users may modify cookie settings directly within their web browser.

Nous Collective is committed to website accessibility and ensures that all users, including those with disabilities, can navigate and interact with our platform. Accessibility options include screen-reader compatibility, adjustable font sizes, and high-contrast mode. If you experience difficulties, please contact accessibility@nouscollective.org.

6.7. Children's Data

Nous Collective does not knowingly collect personal information from individuals under the age of 18. In compliance with applicable child privacy laws, including the U.S. Children's Online Privacy Protection Act (COPPA) where applicable, we take immediate action to remove any such data if discovered.

If a parent or guardian believes their child has provided personal information, they may:

• Review the personal data submitted by their child.

• Request deletion of the data.

• Manage their child’s account access.

Nous Collective implements age-verification measures, such as birthdate entry or parental consent verification, to restrict access to certain features and prevent unauthorized data collection from minors.

For inquiries regarding children's data, please contact privacy@nouscollective.org.

6.8. Summary and FAQ

Nous Collective collects only necessary data to provide and enhance our services while ensuring transparency and prioritizing the security of your personal information.

Frequently Asked Questions FAQs

Q: What types of data does Nous Collective collect?
A: Nous Collective collects both personal information (e.g., name, contact details, payment information) and non-personal data (e.g., website traffic analytics, session duration).

Q: How does Nous Collective use my personal information?
A: Your personal data is used to deliver services, improve user experience, and communicate with you effectively (e.g., customer support, personalized recommendations).

Q: Can I opt out of cookies or marketing emails?
A: Yes. You can manage cookie preferences through our cookie consent tool and unsubscribe from marketing emails via your account settings or by using the "unsubscribe" link in emails.

For more information, refer to the "How We Collect Information" and "Privacy Rights" sections of this Privacy Policy.

7. How We Collect Information

7.1. Nous Collective collects user information through various methods to provide a personalized, secure, and seamless experience. These methods include, but are not limited to:

a. User-Provided Information

Nous Collective collects personal data directly from users when they:

• Complete electronic forms on the Service or third-party platforms, accessible via desktop, mobile, or tablet devices.

• Submit physical forms during offline events, workshops, consultations, or promotional activities.

• Register for exclusive features, tailored services, or member-only content.

b. Communications and Interactions

Personal information may also be collected through direct interactions, including:

• Messages or correspondence sent to Nous Collective via email, SMS, or other digital communication channels.

• Customer support inquiries via email, phone, or live chat. Relevant details may be retained to improve service efficiency.

• User interactions with live chat systems or dedicated messaging features within the Service.

c. Surveys, Quizzes, and Feedback Mechanisms

Nous Collective may collect information through voluntary participation in:

• Surveys, quizzes, or feedback forms designed to gather insights on user preferences, interests, and experiences.

• Personalized wellness quizzes that recommend tailored content, tools, or resources based on user responses.

d. Third-Party Websites and Social Media Platforms

Nous Collective may receive user data from interactions on external platforms, including but not limited to:

• Social media engagement (e.g., likes, shares, comments, and clicks on sponsored posts across Facebook, Instagram, TikTok, Threads, Twitter, Pinterest, and YouTube).

• Content sharing via third-party websites or social media widgets, including embedded tools that allow users to engage with the Service.

e. Promotions, Events, and Special Offers

Nous Collective collects information when users:

• Participate in promotional campaigns, events, or special offers, either online or in physical locations.

• Register for webinars, workshops, or exclusive discount campaigns.

• Engage with loyalty programs, rewards systems, or incentive-based initiatives.

7.2. Ethical Collection & Compliance

Nous Collective is committed to collecting user data transparently, ethically, and in full compliance with applicable laws and regulations.

• User Consent & Control: Where legally required, Nous Collective obtains explicit consent before collecting or processing personal data.

• Purpose Limitation: Collected data is strictly used for the purposes outlined in this Policy and is not processed beyond its intended scope.

• Data Minimization: Information is only collected when necessary to enhance the user experience.

For additional details on how we store and process user data, please refer to the "Data Retention" and "Privacy Rights" sections of this Policy.

8. Use of Information Collected

Nous Collective recognizes the importance of processing personal information transparently and in strict compliance with applicable legal standards, including the Personal Information Protection and Electronic Documents Act (PIPEDA). This section outlines the specific purposes for which Nous Collective uses personal information and the lawful bases for processing such data.

8.1. Legal Basis for Processing Data

Nous Collective processes personal data under the following lawful bases:

• Consent: When users explicitly provide permission for specific purposes, such as subscribing to newsletters, accessing personalized content, or participating in surveys and promotions.

  Ex. Signing up for our newsletter or participating in a survey.

  Contractual Necessity: When processing personal data is required to fulfill obligations related to the requested services, such as processing payments or managing user accounts.

  Ex. Using payment details to complete a transaction.

  Legal Obligations: When compliance with legal, tax, or regulatory requirements is necessary, including record-keeping and reporting obligations.

  Ex. Retaining transaction records for tax reporting.

  Legitimate Interests: When processing personal data supports Nous Collective’s business operations, such as improving services, ensuring security, or analyzing website usage.

  Ex. Monitoring site traffic to enhance user experience.

8.2. Matching Purposes to Legal Bases and Data Types

The following table details how Nous Collective processes personal data, the corresponding legal basis, and retention policies:

Additional Clarifications

• Secure Deletion Methods: At the end of the retention period, personal data is deleted via encrypted purging or batch deletion. Where applicable, data is anonymized for analytical purposes.

• Legal & Regulatory Retention: Certain records (e.g., tax, dispute-related data) may be retained longer as required by law.

• User Notification: Users will receive an email before inactive accounts are deleted.

• Anonymized Data Use: Nous Collective may retain anonymized data indefinitely for service improvement, research, and analytics.

• Retention Policy Updates: Retention policies are reviewed annually to comply with evolving legal and regulatory standards. Users will be notified of significant changes.

8.3. Transparency and User Empowerment

Nous Collective is committed to empowering users to understand and control how their personal data is processed.

• Consent is Freely Given: Users can opt-in or withdraw consent without impacting access to core services.

• How to Withdraw Consent: Users can update preferences via account settings or contact privacy@nouscollective.org.

• Scenarios for Withdrawing Consent: Users can unsubscribe from newsletters, opt out of surveys, or disable marketing cookies.

• User Rights Are Respected: Users can access, correct, or delete their data, as detailed in the "Privacy Rights and User Control" section.

• Balancing Test for Legitimate Interests: Nous Collective ensures that user rights are not overridden when processing data for legitimate interests.

• Privacy Protection: Aggregated or anonymized data is used whenever possible to protect user privacy.

For further details, please refer to the "Privacy Rights and User Control" section of this Policy.

8.4 Automated Decision-Making

Nous Collective does not use automated decision-making processes that produce legal or significant effects on users without human intervention. If automated systems are employed (e.g., for fraud detection), they are closely monitored and reviewed for fairness and accuracy.

Request Information or Challenge Decisions: Users can request further details about how automated decisions are made and challenge outcomes by contacting privacy@nouscollective.org.

8.5 Summary Table

8.6 Data Retention

Nous Collective retains personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by applicable laws and regulations. At the end of the retention period, personal data is securely deleted or anonymized to protect user privacy. In exceptional circumstances, such as ongoing investigations or legal disputes, Nous Collective may retain data beyond the stated periods and will notify affected users if applicable.

Additional Data Retention Measures

• Deletion or Anonymization: At the end of the retention period, Nous Collective securely deletes or anonymizes personal data to ensure it cannot be reconstructed or linked back to an individual.

• Notification Before Deletion: For inactive accounts, Nous Collective will notify users before account deletion, providing an opportunity to reactivate the account.

• Management of Browsing Data: Browsing data includes both first-party and third-party cookies. Users can manage their preferences through our cookie consent tool. If consent is withdrawn, cookies will be immediately disabled, and related browsing data will be deleted.

By adhering to these data retention practices, Nous Collective maintains compliance with legal requirements while prioritizing user trust and privacy. Providing clear, lawful, and transparent information about the purposes of data use reinforces Nous Collective’s commitment to maintaining the trust and confidence of its user community while adhering to the highest standards of data protection.

9. Sharing of Information with Third Parties

9.1. Commitment to Responsible Data Sharing

Nous Collective acknowledges that the responsible and transparent sharing of user information with third parties is a critical component of its commitment to privacy and data protection. The following sections outline the specific circumstances under which user data may be shared and the safeguards in place to ensure confidentiality and security.

9.2. Service Providers and Business Partners

Nous Collective may engage trusted third-party service providers and business partners to facilitate its offerings, enhance platform functionality, and support operational processes. These entities may include, but are not limited to:

• Payment processors

• Shipping providers

• Customer support services

• Analytics platforms

• Marketing agencies
  User information is shared with these partners only to the extent necessary to fulfill their specific responsibilities and in accordance with strict confidentiality agreements that prohibit unauthorized use or disclosure.

9.3. Legal Compliance and Law Enforcement

Nous Collective may disclose user information when legally required to do so, including in response to:

• Court orders

• Subpoenas

• Search warrants

• Other legal processes
  In such cases, Nous Collective carefully evaluates the legitimacy of requests and provides only the minimum data necessary to satisfy legal obligations. The company reserves the right to challenge overly broad or unjustified demands and prioritizes user privacy to the fullest extent permitted by law.

9.4. Merger, Acquisition, or Business Transition

In the event of a merger, acquisition, sale of assets, or other business transition, Nous Collective may transfer user information to the involved parties as part of the transaction. Reasonable steps will be taken to:

• Maintain the confidentiality and security of user data.

• Provide affected users with notice and, where legally required, an opportunity to opt out of the transfer.

9.5. Aggregated and Anonymized Data

Nous Collective may share aggregated or anonymized user data with third parties for research, analysis, or other legitimate business purposes.

This data:

• Is stripped of personally identifiable information (PII).

• Is combined with information from other users to prevent individual identification.

• Follows industry best practices for anonymization.
  Nous Collective ensures that such data sharing does not compromise user privacy.

9.6. Consent and User Control

Nous Collective respects users' right to control how their personal data is shared. Where required by law or deemed appropriate, Nous Collective will:

• Obtain explicit consent before sharing data with third parties.

• Provide granular data-sharing preferences, such as the ability to opt out of specific types of sharing.

• Allow users to revoke previously granted consent through account settings or by contacting privacy@nouscollective.org.

Nous Collective is committed to honoring user choices and providing transparent mechanisms for managing personal data.

9.7. Third-Party Websites and Services

The Service may contain links to third-party websites or integrate with external services beyond the direct control of Nous Collective. While Nous Collective takes reasonable steps to ensure the security of these partnerships, it cannot be held responsible for the privacy practices of third-party entities.

Potential Risks:

• Third-party sites may collect additional user data, including browsing behavior and personal information.

• Their data protection policies, security measures, and usage terms may differ from those of Nous Collective.

• Nous Collective does not monitor or control how third-party sites handle user data and cannot guarantee compliance with our privacy standards.

Recommendations for Users:

• Review Third-Party Policies: Users should carefully review privacy policies, terms of service, and data security measures before interacting with third-party sites.

• Be Cautious with Personal Information: Users should avoid providing sensitive data unless they fully understand how it will be used and stored.

• Report Suspicious Links: If users encounter misleading or suspicious third-party links, they should report them immediately to privacy@nouscollective.org.
  By clicking on third-party links, users acknowledge that they are leaving the Nous Collective platform, and their data will be subject to the policies of the third party. Nous Collective assumes no responsibility for any consequences arising from these interactions.

9.8. Data Processing Agreements and Cross-Border Transfers

When Nous Collective shares user information with third parties, particularly those outside of the user’s jurisdiction, it ensures compliance through:

• Data Processing Agreements (DPAs): Establishing legal obligations for third-party processors.

• Cross-Border Transfer Mechanisms: Implementing safeguards such as:

• Standard Contractual Clauses (SCCs) under GDPR.

• Privacy Shield certifications (where applicable).
  These measures help ensure compliance with data protection laws, including the General Data Protection Regulation (GDPR) for users in the European Union.

By carefully evaluating and limiting data-sharing circumstances, Nous Collective demonstrates its unwavering commitment to privacy and data security. The brand continuously assesses its partnerships and data-sharing practices to align with evolving legal standards, industry best practices, and user expectations—fostering a trust-based relationship with its community.

9.9. Third-Party Service Providers & Data Sharing Transparency

Nous Collective employs strict data protection measures when sharing user information with trusted third-party service providers. Information is shared only to the extent necessary for operational, legal, or security purposes and in accordance with legally binding agreements that prohibit unauthorized use, modification, or disclosure.

Below is a detailed table outlining the categories of third parties, the types of data shared, the purpose of sharing, and the security measures applied:

9.10. Cross-Border Data Transfers & Compliance

Nous Collective ensures that all international data transfers comply with applicable data protection laws, including GDPR, PIPEDA, and other relevant regulatory frameworks. If user data is transferred outside of Canada, appropriate safeguards are implemented, such as:

• Standard Contractual Clauses (SCCs): Approved by the European Commission for GDPR compliance.

• Data Protection Impact Assessments (DPIAs): Evaluations of potential risks before cross-border transfers.

• Encryption Protocols: Ensuring data is secured both in transit and at rest.

• Annual Audits: Reviewing data processing partners to ensure continued compliance.

Users will be notified in advance of any material changes to cross-border data transfer policies.

9.11. User Control & Consent Mechanisms

Nous Collective upholds data sovereignty principles, ensuring that users can manage how their information is shared:

• Granular Opt-In Controls: Users can enable or disable marketing, analytics, and advertising cookies at any time.

• Data Deletion Requests: Processed within 30 days upon a verified request.

• Transparency Reports: Available upon request for users seeking details on third-party disclosures.

Users may adjust their data-sharing preferences at any time via their account settings or by contacting myaccount@nouscollective.org.

10. Use of Web Technologies

10.1. Overview

Nous Collective employs a range of advanced web technologies to enhance the functionality, performance, and user experience of the Service. This section provides a detailed overview of these technologies, their purposes, and the data they collect.

10.2. Cookies and Similar Tracking Technologies

a. What Are Cookies?

Cookies are small text files stored on a user's device that enable websites to remember preferences, login details, and browsing habits. Nous Collective utilizes:

• Session cookies (expire when the browser is closed).

• Persistent cookies (remain on the device until manually deleted or their expiration date).

b. Types of Cookies Used by Nous Collective

• Essential Cookies: Necessary for the functioning of the Service, enabling features such as secure login, shopping cart functionality, and personalization.

• Analytics & Performance Cookies: Collect aggregated and anonymized data about user interactions, helping Nous Collective analyze trends, monitor site performance, and make data-driven improvements.

• Advertising Cookies: Used only with user consent to deliver targeted ads based on browsing history and interests. Nous Collective partners only with reputable advertisers and ensures all ad targeting complies with privacy regulations.

c. Managing Cookie Preferences

Users can manage, block, or delete cookies through their browser settings. However, disabling certain cookies may impact the functionality of the Service.

10.3. Web Beacons and Pixel Tags

a. What Are Web Beacons and Pixel Tags?

Web beacons and pixel tags are small, transparent images embedded in web pages or emails that help track user interactions and measure engagement metrics such as:

• Email open rates

• Click-through rates

• User engagement patterns

b. Purpose of Tracking

The data collected helps Nous Collective analyze the effectiveness of communications, improve content relevance, and enhance the overall user experience.

c. Compliance and Opt-Out

• Nous Collective complies with applicable privacy laws regarding the use of web beacons and pixel tags.

• Users are provided with the option to opt-out of tracking where legally required.

10.4. Server Logs and Usage Data

a. Data Automatically Collected

Nous Collective's servers automatically log certain user interactions, including:

• IP addresses

• Device types & operating systems

• Referring URLs

• Browsing activities

b. Purpose of Collecting Usage Data

This data is used to:

• Monitor system performance

• Detect and prevent fraudulent activities

• Troubleshoot technical issues

• Generate aggregated insights into user behavior

c. Data Retention & Security

• Server logs are retained only as long as necessary for these purposes.

• Data is protected with strict security measures to prevent unauthorized access or disclosure.

10.5. User Control & Opt-Out Mechanisms

a. Respecting User Privacy

Nous Collective provides clear information about its web technologies and empowers users to make informed decisions about their data.

b. Consent & Preference Management

• Where required by law, Nous Collective obtains user consent before deploying certain technologies, such as advertising cookies.

• Users are provided with easily accessible tools to:

• Opt-out of tracking

• Revoke previously granted consent

c. Compliance & Updates

Nous Collective regularly reviews and updates its use of web technologies to ensure compliance with:

• Evolving privacy laws

• Industry best practices

• User expectations

10.6. Third-Party Technologies and Integrations

a. External Services & Integrations

The Service may incorporate third-party technologies such as:

• Social media platforms

• Analytics services

• Advertising networks

b. Understanding Third-Party Data Practices

• Third-party services operate under their own privacy policies.

• Nous Collective encourages users to review the privacy policies of external providers to understand how their data is handled.

c. Partner Selection & Data Safeguards

• Nous Collective carefully evaluates the reputation and privacy practices of all third-party vendors.

• Where possible, Nous Collective:

• Minimizes data sharing with third-party providers.

• Implements safeguards such as legally binding Data Processing Agreements (DPAs) to protect user information.

By employing web technologies in a transparent, privacy-conscious, and user-centric manner, Nous Collective aims to deliver a seamless, secure, and personalized user experience. The brand continuously monitors technological advancements and adapts its practices to ensure ongoing data protection while leveraging innovation.

11. Cookies Policy

11.1. Commitment to Transparency

Nous Collective is committed to transparency and user empowerment regarding the use of cookies on the Service. This section provides a comprehensive overview of the types of cookies employed, their purposes, and the mechanisms available for users to manage their cookie preferences.

11.2. Categories of Cookies

a. Essential Cookies

• Purpose: Strictly necessary for core functionality, including secure login, shopping cart management, and user authentication.

• Retention: Typically session-based and expire when the browser is closed.

• Opt-Out: Cannot be disabled without significantly impacting the Service’s core functionality.

b. Performance and Analytics Cookies

• Purpose: Collect aggregated and anonymized data to analyze trends, monitor site performance, and make data-driven improvements.

• Third-Party Providers: Nous Collective may use trusted analytics services, such as Google Analytics. Users can opt-out of tracking by installing the Google Analytics Opt-Out Browser Add-On.

• Retention: Can be either session-based or persistent, with varying retention periods.

• Opt-Out: Users can manage preferences through browser settings or the cookie management tools provided by Nous Collective.

c. Advertising Cookies

• Purpose: With user consent, these cookies deliver targeted advertisements based on browsing history and interests.

• Third-Party Providers: These cookies may be set by Nous Collective or advertising networks, subject to their own privacy policies.

• Retention: Typically persistent, with durations determined by the specific advertising partner's policies.

• Opt-Out: Users can manage preferences via browser settings, ad network opt-out pages, or Nous Collective’s cookie management tool.

d. Functionality Cookies

• Purpose: Enable enhanced functionality and personalization, such as remembering preferences, language settings, and customized content.

• Retention: May be session-based or persistent, depending on user preferences.

• Opt-Out: Users can manage preferences via browser settings or the cookie management tool.

11.3. Cookie Management and User Preferences

a. Website Cookie Consent Banner

Upon a user’s first visit, a cookie consent banner allows them to:

• Accept all cookies.

• Reject all non-essential cookies.

• Customize cookie preferences by enabling/disabling specific categories (e.g., Essential, Performance, Advertising, Functionality).

b. Cookie Management Tool

Users can modify their preferences at any time by accessing the "Cookie Preferences" link in the website footer. This tool allows them to:

• Review descriptions of each cookie category.

• Modify previously selected preferences.

• Revoke consent for non-essential cookies.

c. Browser Settings

Users can also manage cookies via their browser settings by:

• Blocking all cookies.

• Enabling notifications before cookies are placed.

• Deleting existing cookies.

Note: Disabling certain cookies through browser settings may impact the functionality of the Service.

11.4. Consent and Opt-Out Mechanisms

• Nous Collective obtains explicit user consent before deploying non-essential cookies, in compliance with privacy regulations such as the GDPR and CCPA.

• Users are provided with clear, accessible information about the cookies used and their purposes.

11.5. Third-Party Opt-Out Mechanisms

For cookies set by third-party providers (e.g., advertising networks), users may need to:

• Visit the respective provider's website to manage preferences.

• Use industry-standard opt-out tools, such as the Digital Advertising Alliance (DAA) or Network Advertising Initiative (NAI) opt-out programs.

11.6. Cookie Policy Updates and Transparency

a. Regular Reviews & Compliance

• Nous Collective regularly reviews and updates its cookie practices to ensure compliance with evolving privacy regulations and industry best practices.

b. Accessibility of the Cookie Policy

• The Cookie Policy is readily available through the Service and updated periodically to reflect changes in:

• Types of cookies used

• New privacy laws and industry standards

c. User Awareness & Responsibility

• Nous Collective encourages users to review this policy periodically to stay informed about how cookies are used and how preferences can be managed.

By prioritizing transparency, compliance, and user control, Nous Collective ensures that cookie usage aligns with the highest standards of data privacy and user trust.

12. Security Measures

12.1. Commitment to Data Protection

Nous Collective is committed to safeguarding user information and maintaining the highest standards of security to prevent unauthorized access, alteration, disclosure, or destruction of user data. The following measures ensure robust protection across all levels of the Service.

12.2. Data Encryption

a. Encryption in Transit

• Nous Collective employs industry-standard encryption protocols such as Transport Layer Security (TLS) and Secure Socket Layer (SSL) to protect data transmitted between users' devices and the Service.

• This ensures that sensitive data, such as login credentials and payment details, remains protected from interception.

b. Encryption at Rest

• Sensitive information, including payment details and personally identifiable information (PII), is encrypted using strong encryption algorithms to prevent unauthorized access.

• Advanced cryptographic techniques such as AES-256 encryption are applied to stored data for maximum security.

12.3. Secure Infrastructure and Data Storage

a. Secure Data Centers & Cloud Infrastructure

• Nous Collective utilizes secure, access-controlled data centers and trusted cloud providers for storing user information.

• Cloud storage solutions comply with ISO 27001 and other leading security frameworks.

b. Advanced Security Controls

• Strict firewalls, intrusion detection/prevention systems (IDS/IPS), and regular vulnerability assessments protect against unauthorized access.

• All infrastructure undergoes real-time threat monitoring and automated security patching to address emerging threats.

c. Access Control & Monitoring

• Access to user information is strictly limited to authorized personnel on a need-to-know basis.

• All access is logged, monitored, and audited for unusual activity to detect and mitigate potential threats.

• Multi-factor authentication (MFA) is enforced for internal administrative access.

12.4. Regular Security Audits and Penetration Testing

a. Independent Security Assessments

• Nous Collective engages independent security experts to conduct regular security audits and penetration tests of its systems.

• These assessments help identify potential vulnerabilities and validate the effectiveness of existing security controls.

b. Continuous Security Improvement

• Findings from audits are immediately addressed, with enhanced security measures implemented as needed.

• Nous Collective follows a proactive security model, continuously adapting to evolving threats through:

• Routine vulnerability scans

• Automated threat detection

• Compliance with industry security best practices

12.5. Employee Training and Confidentiality

a. Security & Privacy Training

• All employees undergo comprehensive security and privacy training to ensure they understand and adhere to Nous Collective’s data protection policies and best practices.

• Training is regularly updated to reflect new security threats and compliance requirements.

b. Confidentiality Agreements & Compliance

• Employees are bound by strict confidentiality agreements and are required to maintain the confidentiality of user information in compliance with Nous Collective's policies and applicable laws.

• Any breach of confidentiality or unauthorized data access is immediately investigated, with disciplinary actions taken against responsible parties.

12.6. Incident Response and Breach Notification

a. Incident Detection & Response Plan

• Nous Collective maintains a comprehensive incident response plan to promptly detect, investigate, and mitigate potential security breaches.

• Security incidents are documented and analyzed to strengthen security measures moving forward.

b. User Notification & Mitigation

• In the event of a confirmed data breach, Nous Collective will notify affected users without undue delay.

• Users will receive clear information about:

• The nature of the breach

• The type of data involved

• Steps taken to resolve the issue

  Nous Collective cooperates fully with relevant authorities and takes all necessary actions to minimize the impact of any security incidents.

12.7. Third-Party Security Assurances

a. Vendor Security Due Diligence

• Nous Collective conducts thorough due diligence before engaging with third-party service providers or partners who may have access to user data.

• Vendors must demonstrate compliance with stringent security standards before integration.

b. Data Processing & Confidentiality Agreements

Third parties must sign strict confidentiality and data processing agreements, outlining their obligations to:

• Protect user data

• Comply with applicable privacy laws (e.g., GDPR, PIPEDA)

• Implement security measures aligned with Nous Collective's standards

c. Continuous Monitoring & Audits

• Nous Collective regularly audits the security practices of its third-party partners to maintain the highest levels of data protection.

• If a vendor fails to meet security requirements, Nous Collective takes corrective action or terminates the partnership.

12.8. User Responsibilities and Best Practices

Nous Collective is committed to maintaining the highest security standards, but users also play an essential role in safeguarding their personal information. While we employ industry-standard measures, no system is entirely immune to breaches. Users should take proactive steps to enhance their security.

Security Disclaimer

Nous Collective implements advanced security measures to protect user data, but no digital system can guarantee absolute security. Users should remain vigilant and adopt best practices to further minimize risks.

Recommended Best Practices

To enhance security and minimize potential threats, Nous Collective strongly advises users to:

• Use Strong, Unique Passwords: Ensure passwords are long, complex, and different for each online service.

• Enable Two-Factor Authentication (2FA): Activate 2FA wherever possible for added security.

• Avoid Sharing Credentials: Never share passwords, security questions, or authentication details.

• Use Secure Networks: Avoid accessing accounts from public Wi-Fi or unsecured connections.

• Regularly Update Software: Keep your operating system, browser, and security software updated.

• Be Aware of Phishing Scams: Verify emails claiming to be from Nous Collective before clicking links or providing information.

• Monitor Account Activity: Regularly review account activity for suspicious actions and report anomalies.

• Log Out from Shared Devices: Always sign out when using public or shared computers.

• Set Up Account Recovery Options: Ensure alternative recovery methods (email/phone) are set up.

Users should immediately report any unauthorized access or security breaches to myaccount@nouscollective.org. Nous Collective remains committed to providing a secure platform while empowering users to protect their data effectively.

13. Children's Privacy

13.1. Age Restrictions and Parental Consent

a. Age Restrictions

• The Service is intended for individuals 13 years of age or older. Nous Collective does not knowingly collect, use, or disclose personal information from children under 13 years of age without verifiable parental consent. This policy complies with the Children’s Online Privacy Protection Act (COPPA) in the United States and similar child privacy regulations in other jurisdictions.

b. Handling of Unintended Data Collection

• If Nous Collective becomes aware that it has inadvertently collected personal information from a child under 13 without parental consent, the brand will take prompt action to delete the data and, if applicable, terminate the child’s account.

c. No Targeted Marketing to Minors

• Nous Collective does not knowingly market its products, services, or content to children under 13. The brand’s offerings are intended for adults seeking holistic wellness guidance and align with this policy.

13.2. Educational and Age-Appropriate Content

a. Content Alignment with Intended Audience

• Nous Collective ensures that all educational content and resources are age-appropriate and designed for adult audiences. The brand’s wellness guidance is tailored to those seeking holistic personal development.

b. Protection Against Exploitation

• The brand takes great care to ensure that its content, products, and services do not exploit, target, or inappropriately appeal to minors. Regular reviews and audits of content offerings help maintain this commitment.

13.3. Parental Rights and Involvement

a. Parental Rights Over Child’s Data

• Nous Collective respects parental rights in controlling the collection, use, and disclosure of their child’s personal information. Parents may:

• Review, modify, or delete their child’s data.

• Refuse further collection or use of their child’s data.

• Contact privacy@nouscollective.org to exercise these rights.

b. Encouraging Parental Involvement

• Nous Collective encourages parents and guardians to be actively involved in their child’s online safety and digital activities by:

• Educating them on secure online practices.

• Monitoring interactions with websites and digital platforms.

• Supervising content consumption to align with appropriate age guidelines.

c. Reporting Unintended Data Collection

• If you suspect or confirm that your child under 13 has shared personal data without consent, contact privacy@nouscollective.org immediately. Nous Collective will:

• Investigate the situation.

• Take necessary steps to remove the data.

• Ensure compliance with applicable child privacy regulations.

13.4. Third-Party Platforms and Age Verification

a. External Platforms & Independent Policies

• Nous Collective may integrate with third-party platforms, such as social media services and external tools, that have their own age restrictions and privacy policies. Users are advised to review these platforms' privacy policies to understand their data collection and usage practices regarding minors.

b. Privacy Compliance for Third-Party Services

• Nous Collective ensures that third-party service providers engaged through its platform adhere to strict privacy standards, particularly regarding the collection of data from minors.

• However, parents and guardians remain responsible for monitoring their children’s interactions with external platforms. Nous Collective does not control third-party data collection policies and encourages parental supervision.

13.5. Compliance with International Regulations

a. Adherence to Global Privacy Standards

• Nous Collective recognizes that laws governing the collection and use of minors' personal information vary across jurisdictions. The brand is committed to complying with all applicable regional and international standards, such as the General Data Protection Regulation (GDPR) in the European Union, which sets specific requirements for processing the personal data of minors.

b. Policy Adaptation for Ongoing Compliance

• Nous Collective will continuously review and adapt its practices and policies to ensure compliance with evolving legal frameworks concerning the protection of minors’ personal data.

c. Commitment to Child Privacy and Well-Being

• By prioritizing the privacy and well-being of minors, Nous Collective strives to create a safe and trustworthy environment for all users.

• The brand fosters open communication with parents, guardians, and regulatory authorities to ensure its practices align with the highest standards of child protection and online safety.

d. Contact for Concerns and Inquiries

• If users have any concerns or questions regarding Nous Collective's policies on the collection and use of minors' personal information, they are encouraged to contact the privacy team at privacy@nouscollective.org.

• Nous Collective is committed to addressing such inquiries promptly and working towards solutions that prioritize the best interests of children and families.

14. Third-Party Advertising and Tracking Technologies

14.1. Engagement with Third-Party Advertising Networks

Nous Collective collaborates with reputable third-party advertising networks and analytics providers to:

• Deliver targeted advertising tailored to user interests.

• Measure the effectiveness of marketing campaigns.

• Gain insights into user behavior on the Service.

This section outlines Nous Collective’s practices regarding third-party advertising and tracking technologies, as well as the safeguards in place to protect user privacy.

14.2. Targeted Advertising

a. User-Centric Advertising Practices

With explicit user consent, Nous Collective may allow third-party advertising partners to display targeted advertisements based on:

• User interests

• Browsing behavior

• Demographic data

These advertisements are designed to be relevant and useful, enhancing user experience by promoting products, services, or content aligned with personalized preferences.

b. Selection of Advertising Partners

Nous Collective carefully selects its advertising partners, ensuring they:

• Adhere to industry best practices.

• Maintain strict data protection standards.

• Comply with privacy regulations to uphold user security and confidentiality.

14.3. Advertising Cookies and Tracking Technologies

a. Use of Tracking Technologies

Third-party advertising partners may employ various tracking technologies, including:

• Cookies (small text files stored on user devices).

• Pixels (small tracking images embedded in web pages or emails).

• Similar technologies used to collect user interaction data, such as:

• Pages visited.

• Ads clicked.

• Content viewed.

b. Purpose of Data Collection

The collected data is used to:

• Build user profiles for more personalized advertising.

• Deliver customized ads that align with user preferences.

• Measure ad effectiveness to optimize campaign strategies.

Data collected is typically aggregated and anonymized to protect individual user privacy.

c. User Control & Management of Advertising Preferences

Users can manage their preferences for advertising cookies and tracking technologies through:

• Browser settings (enabling or disabling cookies).

• Ad network opt-out pages (e.g., Network Advertising Initiative (NAI) or Digital Advertising Alliance (DAA)).

• Nous Collective’s Cookie Management Tools, as detailed in the [Cookies Policy].

14.4. Data Sharing with Advertising Partners

a. Types of Data Shared

Nous Collective may share limited user data with advertising partners to:

• Facilitate targeted advertising.

• Analyze ad performance and effectiveness.

This data may include:

• Device identifiers (e.g., mobile advertising IDs).

• IP addresses (used for regional targeting and analytics).

• Anonymized user segments (grouped behavioral data without personally identifiable details).

b. Privacy Compliance & Safeguards

• Nous Collective ensures strict compliance with:

• Applicable privacy laws (e.g., GDPR, CCPA).

• Industry standards for responsible advertising.

• Contractual safeguards are in place to protect user information and prevent unauthorized use.

c. No Sharing of Personally Identifiable Information (PII)

• Nous Collective does not share personally identifiable information (PII), such as:

• Names

• Email addresses

• Phone numbers

• Any such sharing requires explicit user consent before any personal data is provided to third-party advertisers.

14.5. Third-Party Analytics and Performance Measurement

a. Use of Analytics Providers

• Nous Collective may engage third-party analytics providers, such as Google Analytics, to:

• Collect and analyze user interactions with the Service.

• Track metrics like page views, clicks, and conversion rates.

• Optimize the platform's performance and enhance user experience.

• Analytics data is typically aggregated and does not contain personally identifiable information.

b. User Opt-Out Options

• Users can opt out of certain analytics tracking by:

• Adjusting browser settings.

• Using tools provided by analytics providers, such as the Google Analytics Opt-Out Browser Add-On.

14.6. User Control and Transparency

a. Commitment to Transparency

• Nous Collective is committed to providing clear information about its use of third-party advertising and tracking technologies.

• Details about these practices are made available through:

• The Privacy Policy.

• The Cookies Policy.

• Relevant user communications.

b. User Control & Opt-Out Mechanisms

• Users can exercise control over their data through various opt-out mechanisms, including:

• Adjusting ad personalization settings.

• Revoking consent via the cookie management tool.

• Utilizing browser-based ad-blocking solutions.

c. Ongoing Compliance and Review

• Nous Collective regularly reviews and updates its partnerships with:

• Third-party advertising and analytics providers.

• Industry best practices and privacy regulations.

  This ensures continued compliance with evolving legal standards and maintains user trust.

Next Steps for Users

• Users may review and modify their advertising preferences via Nous Collective’s privacy settings.

• Opt-out options for targeted advertising are available through browser settings, ad network opt-out pages, and in-service privacy controls.

• For further inquiries regarding advertising data usage, users can contact privacy@nouscollective.org.

Nous Collective remains committed to transparency, user control, and compliance while delivering personalized and meaningful advertising experiences.

15. Data Accuracy and Retention

15.1. Commitment to Data Accuracy
Nous Collective is committed to maintaining accurate, complete, and up-to-date user information to ensure a seamless and personalized experience on the Service. The following sections outline the brand’s approach to data accuracy, user responsibilities, and retention policies.

15.2. User Responsibilities for Data Accuracy
a. Users are responsible for providing accurate, current, and complete information when creating an account, making a purchase, or engaging with the Service.
b. Users should update their account details, such as contact information and preferences, to ensure the accuracy and relevance of the data held by Nous Collective.
c. Nous Collective provides easy-to-use tools that allow users to review, modify, or correct their personal information, empowering them to maintain data accuracy.

15.3. Data Verification and Updates
a. Nous Collective employs reasonable measures to verify the accuracy of user information, such as email validation during registration and periodic data hygiene checks.
b. Periodic reminders may be sent to users, encouraging them to review and update their account details.
c. If Nous Collective identifies inaccuracies or inconsistencies, it will take appropriate action, including notifying the user or making corrections where necessary.

15.4. Data Retention Principles
a. Nous Collective retains user information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by applicable laws and regulations.
b. Data retention policies ensure that user information is stored, retrieved, and deleted in accordance with legal and operational requirements.
c. Retention periods vary depending on the nature of the information, the context in which it was collected, and applicable regulatory obligations.

15.5. User Rights and Data Deletion
a. Users have the right to request the deletion of their personal information, subject to certain exceptions where retention is necessary for legal, regulatory, or business purposes.
b. Nous Collective provides clear instructions on how users can exercise their right to data deletion, including submitting a request through the Service’s interface or contacting customer support.
c. Upon receiving a valid deletion request, Nous Collective will take reasonable steps to erase the user’s personal information from its systems and notify relevant third parties to do the same where applicable.

15.6. Data Archiving and Anonymization1
a. In some cases, Nous Collective may retain user data in an archived or anonymized form, ensuring that the information is no longer personally identifiable.
b. Archived data may be used for statistical analysis, research, or other legitimate business purposes, provided appropriate security measures are in place.
c. Anonymized data, which has been stripped of personally identifiable elements, may be retained indefinitely for service improvements, feature development, and market research.

15.7. Legal and Regulatory Compliance
a. In certain situations, Nous Collective may be required to retain user information beyond standard retention periods to comply with legal, regulatory, or contractual obligations.
b. Retained data will be securely stored, with restricted access to authorized personnel only, and deleted promptly once retention requirements expire.

Nous Collective is dedicated to maintaining responsible data management practices, ensuring data integrity while respecting individual rights and privacy preferences. The brand continuously reviews and improves its data retention policies to align with evolving legal frameworks, industry standards, and user expectations.

For questions or concerns regarding Nous Collective’s data accuracy and retention policies, or to exercise rights related to personal information, users may contact the privacy team at privacy@nouscollective.org. Nous Collective is committed to responding to inquiries promptly and addressing requests in a manner consistent with its dedication to user privacy and data protection.

16. Privacy Rights and User Control

16.1. Nous Collective is committed to empowering users to exercise their privacy rights and maintain control over their personal information. The following sections outline the various rights users have in relation to their data and the processes in place to facilitate the effective exercise of those rights.

16.2. Right to Access and Data Portability

a. Access: Users have the right to request a copy of the personal information that Nous Collective holds about them. Upon receiving a verifiable request, Nous Collective will provide a comprehensive overview of the data collected, its purposes, and the categories of third parties with whom the data has been shared.

b. Data Portability: Users can request their data to be provided in a structured, commonly used, and machine-readable format. If technically feasible and legally permissible, they may also request that Nous Collective transfer their data directly to another service provider.

Ex. If you need to move your account details to a different platform, Nous Collective will ensure the secure transfer of your data.

16.3. Right to Rectification

a. Correction of Errors: Users have the right to request corrections to inaccurate or incomplete personal information. Nous Collective provides user-friendly interfaces to update account details and preferences.

b. Verification Process: If a user identifies an error, Nous Collective will verify the accuracy of the request and apply necessary corrections promptly.

Ex. If you’d like to update your email or remove your payment method, you can do so by accessing your account settings.

16.4. Right to Erasure (Right to be Forgotten)

a. Request for Deletion: Users may request that Nous Collective delete their personal information, subject to legal and regulatory exceptions.

b. Deletion Process: Upon receiving a valid request, Nous Collective will remove the data from its systems and notify relevant third parties to do the same where applicable.

(Example: If you close your account, Nous Collective will delete your profile and associated data unless legal obligations require retention.)

16.5. Right to Restrict Processing

a. Temporary Restrictions: Users may request Nous Collective to limit data processing in specific situations, such as when verifying data accuracy or when data is no longer needed but must be retained for legal claims.

b. Processing Limitations: During the restriction period, Nous Collective will store but not actively process the data unless permitted by law.

(Example: If you dispute the accuracy of your personal information, processing will be restricted until verification is complete.)

16.6. Right to Object

a. Objection to Marketing: Users can object to their data being used for direct marketing purposes, including profiling related to marketing activities. Nous Collective will cease processing upon receiving an objection.

b. Objection to Legitimate Interests: Users may also object to data processing based on Nous Collective’s legitimate interests unless compelling legal grounds override their rights.

(Example: You can opt out of marketing emails by adjusting your account preferences or using the unsubscribe link in email communications.)

16.7. Right to Withdraw Consent

a. Consent Withdrawal: If Nous Collective relies on user consent for data processing, users have the right to withdraw consent at any time without affecting previous lawful processing.

b. Ease of Withdrawal: Nous Collective ensures that withdrawing consent is as simple as giving it, with options available through account settings or direct contact.

(Example: If you previously consented to personalized ads but wish to opt out, you can disable this option in your account settings.)

16.8. Right to Lodge a Complaint

a. Filing a Complaint: Users have the right to lodge complaints with data protection authorities in their jurisdiction if they believe Nous Collective is not handling their data lawfully.

b. Internal Resolution: Nous Collective encourages users to first contact privacy@nouscollective.org to resolve concerns before escalating to regulatory authorities.

(Example: If you feel your data rights have been violated, you may file a formal complaint with a relevant supervisory authority.)

16.9. Exercising Privacy Rights

a. Request Submission: Users can exercise their rights by:

• Submitting requests through dedicated account settings.

• Contacting Nous Collective’s privacy team at privacy@nouscollective.org.

• Following the instructions outlined in this Privacy Policy.

b. Identity Verification: To prevent unauthorized access, Nous Collective verifies user identity before processing requests.

c. Response Timeline: Nous Collective will respond to privacy rights requests within the timeframes required by applicable laws and provide clear explanations for any actions taken.

(Example: If you request access to your data, Nous Collective will respond within 30 days, as mandated by the GDPR and CCPA. In exceptional cases requiring additional time, users will be notified within this period and provided with an estimated completion date.)

16.10. Continuous Improvement and User Feedback

a. Nous Collective regularly reviews and updates its privacy practices, policies, and processes to ensure ongoing compliance with evolving legal frameworks, industry standards, and user expectations.

b. The brand actively seeks user feedback on its privacy practices and welcomes suggestions for improvement, recognizing that user trust and satisfaction are crucial to its success and growth.

c. Nous Collective is committed to maintaining open lines of communication with users regarding privacy matters and will promptly address any questions, concerns, or complaints raised by users in a transparent and proactive manner.

By providing users with clear information about their privacy rights, establishing accessible and user-friendly processes for exercising those rights, and maintaining a strong commitment to user empowerment and control, Nous Collective aims to foster a relationship of trust, transparency, and mutual respect with its user community.

If users have any questions or require further assistance in understanding or exercising their privacy rights, they are encouraged to reach out to Nous Collective's dedicated privacy team at privacy@nouscollective.org. The brand's knowledgeable and responsive privacy professionals are committed to helping users navigate the complexities of data protection and ensuring that their rights and preferences are fully respected.

17. Disclosures and Legal Compliance

17.1. Commitment to Transparency and Compliance

Nous Collective is committed to maintaining the highest standards of transparency and legal compliance in handling user information. The following sections provide an overview of the brand's mandatory disclosures, cooperation with legal authorities, and adherence to privacy regulations.

17.2. Categories of Personal Information Collected

Nous Collective collects various categories of personal information from users in connection with the Service, including:

• Identifiers: Names, email addresses, postal addresses, phone numbers, unique user IDs

• Commercial Information: Purchase history, transaction data, payment information

• Internet or Network Activity: Browsing history, search history, interactions with the Service

• Geolocation Data: Physical location or movements, derived from IP addresses or other tracking technologies

• Inferences: User profiles reflecting preferences, characteristics, predispositions, and behaviors

The specific categories of personal information collected may vary based on user interactions with the Service and the features accessed.

17.3. Purposes of Collection and Processing

Nous Collective collects and processes personal information for the following business and commercial purposes:

• Providing and improving the Service

• Personalizing user experiences and delivering relevant content

• Processing transactions and fulfilling orders

• Communicating with users regarding the Service, promotions, and relevant updates

• Detecting, preventing, and addressing security incidents or fraudulent activities

• Conducting research and analysis to improve services and develop new offerings

• Complying with legal obligations and enforcing Nous Collective's terms and policies

Nous Collective will only collect and process personal information for purposes compatible with those disclosed in this Privacy Policy.

17.4. Sharing of Personal Information with Third Parties

Nous Collective may share user personal information in certain circumstances:

• Service Providers: Companies assisting in the operation and provision of the Service, such as hosting providers, payment processors, and customer support vendors

• Business Partners: Entities collaborating with Nous Collective on joint products, services, or promotions

• Legal Authorities: Government agencies, law enforcement, or other parties as required by law

• Corporate Transactions: In the event of a merger, acquisition, or sale of Nous Collective's assets

Nous Collective ensures that any sharing of personal information is conducted in compliance with applicable laws and that appropriate safeguards are in place.

17.5. Legal Bases for Processing (EU/EEA Users)

For users in the European Union or European Economic Area, Nous Collective relies on the following legal bases for processing personal information:

• Performance of a Contract: Processing necessary for fulfilling user agreements

• Legal Obligations: Compliance with legal requirements

• Legitimate Interests: Processing based on legitimate business interests unless overridden by user rights

• Consent: Processing based on user consent, which can be withdrawn at any time

Nous Collective will only rely on consent when legally required or when no other valid legal basis applies.

17.6. International Data Transfers

Nous Collective may transfer personal information across borders and ensures appropriate safeguards, such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission

• Data protection impact assessments before transfers

• Encryption and other technical security measures

Users may contact Nous Collective at privacy@nouscollective.org for more details on data transfer safeguards.

17.7. Data Retention and Deletion

Nous Collective retains personal information only as long as necessary for its intended purposes or legal requirements. When no longer needed, the data is securely deleted or anonymized unless retention is required for legal, regulatory, or business purposes. Users may request data deletion by exercising their right to erasure as outlined in the "Privacy Rights and User Control" section.

17.8. Security Measures

Nous Collective implements strong security measures to protect personal information, including:

• Data encryption (in transit and at rest)

• Strict access controls

• Regular security audits

• Employee training on data protection best practices

Despite these measures, no digital platform can be guaranteed 100% secure. Users are encouraged to take precautions, such as using strong passwords and safeguarding their account details.

17.9. Third-Party Links and Services

The Service may contain links to third-party websites or services. This Privacy Policy does not cover third-party privacy practices, and Nous Collective is not responsible for external data collection policies. Users are encouraged to review the privacy policies of any third-party services they interact with.

17.10. Children's Privacy

Nous Collective does not knowingly collect personal information from children under 13 without verifiable parental consent. If a child’s data is collected unintentionally, Nous Collective will promptly delete it. Parents or guardians can request deletion by contacting privacy@nouscollective.org.

17.11. Changes to the Privacy Policy

Nous Collective reserves the right to update this Privacy Policy in response to changes in laws, regulations, or business practices. Material changes will be communicated via a notice on the Service or an email to registered users. Users are encouraged to review the Privacy Policy periodically.

17.12. Contact Information

For privacy-related questions, concerns, or requests, users may contact Nous Collective’s privacy team at:

privacy@nouscollective.org Nous Collective is committed to responding to inquiries promptly and ensuring user privacy concerns are addressed efficiently.

By providing transparency on data practices, Nous Collective aims to build and maintain trust with its user community. The brand acknowledges that privacy is an ongoing responsibility and will continue refining its policies to align with legal and industry standards.

18. Acceptance of Terms

18.1. By accessing or using the Nous Collective website or any of its associated services, users signify their agreement to be bound by this Privacy Policy in its entirety.

18.2. If a user does not agree to any part of these terms, they must refrain from using the Nous Collective website and its related services.

18.3. Nous Collective reserves the right to update or modify this Privacy Policy at any time without prior notice. Any changes will be effective immediately upon posting the revised version on the Nous Collective website.

18.4. Users are encouraged to review this document periodically to stay informed about Nous Collective's practices and their rights and obligations under these terms.

18.5. Continued use of the Nous Collective website or its services after any modifications to this document constitutes acceptance of the revised terms.

18.6. If any provision of this Privacy Policy is found to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect.

18.7. This Privacy Policy shall be governed by and construed in accordance with the laws of the Province of Ontario, Canada, without regard to its conflict of law provisions.

18.8. Any disputes arising out of or in connection with this document shall be subject to the exclusive jurisdiction of the courts of Toronto, Ontario, Canada.

18.9. The failure of Nous Collective to enforce any right or provision of this Privacy Policy shall not constitute a waiver of such right or provision.

18.10. This document, together with any additional terms, conditions, or policies referenced herein, constitutes the entire agreement between users and Nous Collective regarding the use of the website and its services, superseding any prior agreements or understandings.

Commitment to Transparency and Privacy

Nous Collective is dedicated to transparency, user privacy, and regulatory compliance. This Privacy Policy aims to provide users with a clear understanding of their rights and responsibilities, fostering a relationship of trust and accountability.

As Nous Collective continues to grow and evolve, it remains committed to upholding the highest standards of privacy and data protection. The brand will adapt its practices as necessary to align with regulatory changes and user needs. By prioritizing user privacy and maintaining open lines of communication, Nous Collective strives to create a safe, secure, and trustworthy environment for all who engage with its platform and services.