1. Introduction

Welcome to Tarot Reading ("we," "our," or "us "). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and protect your personal information. This Privacy Policy applies to our website and services, and complies with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable privacy laws.

By using our services, you agree to the collection and use of information in accordance with this policy.

2. Data Controller

For the purposes of GDPR, the data controller is:

3. Information We Collect

3.1 Personal Information

• Name and email address (when you contact us or subscribe to updates)
• IP address and location data
• Device information and browser type
• Usage patterns and preferences

3.2 Automatically Collected Information

• Cookies and similar tracking technologies
• Log files and analytics data
• Session information and user interactions

3.3 Tarot Reading Information

• Cards drawn and reading results (stored locally in your browser)
• Reading preferences and history (anonymized)
• Questions asked (not linked to personal identity)

4. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

• Consent: For marketing communications and non-essential cookies
• Legitimate Interest: For website analytics and service improvement
• Contract Performance: To provide our tarot reading services
• Legal Obligation: To comply with applicable laws and regulations

5. How We Use Your Information

• Provide and improve our tarot reading services
• Respond to your inquiries and provide customer support
• Analyze website usage and optimize user experience
• Send marketing communications (with your consent)
• Comply with legal obligations and prevent fraud
• Maintain security and prevent unauthorized access

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

• Service Providers: Third-party services that help us operate our website (analytics, hosting)
• Legal Compliance: When required by law or to protect our rights
• Business Transfers: In case of merger, acquisition, or sale of assets

7. Your Rights

7.1 GDPR Rights (EU Users)

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your personal data
• Restriction: Limit how we process your data
• Portability: Receive your data in a portable format
• Objection: Object to processing based on legitimate interest
• Withdraw Consent: Withdraw consent for consent-based processing

7.2 CCPA Rights (California Users)

• Know: Right to know what personal information we collect
• Delete: Right to delete personal information
• Opt-Out: Right to opt-out of sale of personal information
• Non-Discrimination: Right to equal service regardless of privacy choices

8. Cookies and Tracking

We use cookies and similar technologies to:

• Remember your preferences and settings
• Analyze website traffic and user behavior
• Improve website functionality and performance

You can control cookies through your browser settings. For more information, see our Cookie Policy.

9. Data Security

We implement appropriate security measures to protect your personal data:

• SSL encryption for data transmission
• Secure hosting and data storage
• Regular security assessments and updates
• Access controls and employee training
• Incident response procedures

10. Data Retention

We retain personal data only as long as necessary for:

• Providing our services
• Complying with legal obligations
• Resolving disputes and enforcing agreements
• Legitimate business purposes

Tarot reading data is stored locally in your browser and is not transmitted to our servers unless you explicitly choose to save or share results.

11. International Data Transfers

If we transfer your data outside the EU/EEA, we ensure adequate protection through:

• Adequacy decisions by the European Commission
• Standard Contractual Clauses (SCCs)
• Other appropriate safeguards as required by law

12. Children's Privacy

Our services are not directed to children under 13 (or 16 in the EU). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by posting the new policy on our website and updating the "Last Updated" date. Continued use of our services after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy or want to exercise your rights, contact us:

15. Supervisory Authority

EU users have the right to lodge a complaint with your local data protection authority if you believe we have not complied with applicable data protection laws.