Privacy Policy

Last Updated: 29th January 2026

  1. INTRODUCTION

This Privacy Policy describes how Asmita Pty Ltd (trading as “Path of the Heart” and “Art of Being You”) collects, uses, and protects your personal information when you:

  • Visit our websites pathoftheheart.live and artofbeingyou.com.au
  • Purchase our products (digital products, physical products, clothing, hats, accessories, branded merchandise, and self-awareness tools)
  • Participate in our programs
  • Engage with our services

We are committed to protecting your privacy and handling your personal information in accordance with:

  • Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth)
  • General Data Protection Regulation (GDPR)
  • Other applicable privacy laws
  1. CONTACT INFORMATION

After reviewing this policy, if you have questions, want more information, or would like to make a complaint:

Email: hello@artofbeingyou.com.au
Mail: Asmita Pty Ltd, P.O. Box 436, Chirn Park QLD 4215, Australia
Websites: pathoftheheart.live | artofbeingyou.com.au

  1. PERSONAL INFORMATION WE COLLECT

When you visit our websites, purchase products, subscribe to our services, or participate in our programs, we collect certain information about you. “Personal Information” refers to any information about an identifiable individual.

3.1 Device Information

Purpose: To load our websites accurately, perform analytics on site usage, and optimize our websites.

Source: Collected automatically when you access our websites using cookies, log files, web beacons, tags, pixels, or other automatic collection tools.

Information Collected:

  • Web browser version
  • IP address
  • Time zone
  • Cookie information
  • Pages or products you view
  • Search terms
  • Website interaction data

Shared With: WordPress & WooCommerce, analytics services, hosting providers

3.2 Order Information

Purpose: To provide products or services, fulfill contracts, process payments, arrange shipping, provide invoices/confirmations, communicate with you, screen for fraud, and provide advertising (when aligned with your preferences).

Source: Collected from you at time of purchase.

Information Collected:

  • Name
  • Billing address
  • Shipping address
  • Payment information
  • Email address
  • Phone number

Payment Processors:

Important: We do not store complete credit card information on our servers. Payment information is processed and stored securely by our payment processors in accordance with Payment Card Industry Data Security Standards (PCI DSS).

Shared With: WordPress & WooCommerce, payment processors

3.3 Email Marketing Information

Purpose: To send newsletters, inquiries, session/consultation reminders, program updates, community announcements, and promotional communications (only with your consent).

Source: Collected when you subscribe to our newsletter, register for programs (such as the Inner Circle), purchase products, or opt-in to communications.

Information Collected:

  • Email address
  • First name
  • Last name
  • Country
  • Phone number (optional, for SMS reminders)
  • Areas of interest
  • Subscription preferences
  • Engagement data (email opens, clicks)

Third-Party Processor: MailerLite (https://www.mailerlite.com/legal/privacy-policy)

Data Location: European Union and United States

Your Rights: Unsubscribe anytime using the link in any email or contact us at hello@artofbeingyou.com.au

Shared With: MailerLite or similar email marketing platforms

3.4 SMS Communications (Optional)

Purpose: To send SMS reminders for meditation sessions, live coaching programs, events, and important updates (only if you explicitly opt-in).

Source: Collected when you provide your phone number and consent to SMS notifications.

Information Collected:

  • Mobile phone number
  • SMS opt-in consent timestamp

How to Opt Out:

Note: Standard message and data rates may apply.

Shared With: ClickSend or similar SMS service providers

3.5 Digital Products, Services & Content Delivery

Purpose: To deliver digital products and content including ebooks, audio meditations, guided meditation recordings, journals (PDF format), recorded coaching programs, and other digital materials.

Source: Collected at time of purchase or program registration.

Information Collected:

  • Email address
  • Name
  • Purchase history
  • Download records

Access: Digital products are delivered via email or secure download links. Access credentials and purchase history are stored in your customer account.

Shared With: Content delivery systems, WooCommerce platform, cloud storage providers

3.6 Community Participation

Purpose: To facilitate your participation in exclusive Facebook communities, group meditation programs, and interactive coaching sessions.

Source: Collected when you join our Inner Circle, register for group programs, or accept invitation to private Facebook communities.

Information Collected:

  • Facebook profile name and profile picture (as controlled by your Facebook privacy settings)
  • Information you voluntarily share in community discussions
  • Program registration information (name, email, program enrollment)

Important Notices:

  • We do not control Facebook’s data collection or usage practices
  • Information you share in community spaces may be seen by other members
  • Review Facebook’s Privacy Policy: https://www.facebook.com/privacy/policy/
  • Exercise caution when sharing personal or sensitive information in community discussions
  • We are not responsible for how other community members use or share information posted in community spaces

Community Guidelines: All participation is subject to our Community Guidelines and Facebook’s Terms of Service.

3.7 Video Conferencing & Recorded Sessions

Purpose: To facilitate live meditation sessions, coaching programs, workshops, and virtual events.

Source: Collected when you join live sessions via video conferencing platforms.

Information Collected:

  • Name and email address (for session access)
  • Video and audio recordings (if sessions are recorded)
  • Participation data (attendance, chat messages)

Recorded Sessions:

  • Live sessions may be recorded for educational purposes and to provide replay access to registered participants
  • Recordings are hosted on Vimeo (https://vimeo.com/privacy) or similar secure video hosting platforms
  • Recordings are shared only with registered program participants
  • By participating in live sessions, you consent to being recorded

If You Don’t Wish to Be Recorded:

  • Disable your camera and microphone
  • Participate audio-only
  • Contact us for alternative arrangements

Storage: Recorded sessions are stored securely and accessible only to registered program participants for the session or program duration (refer to program guidelines for specific timelines).

Shared With: Zoom (https://explore.zoom.us/en/privacy/) or similar video conferencing platforms

3.8 Booking & Scheduling Information

Purpose: To enable you to book and schedule meditation sessions, coaching appointments, workshops, and events.

Source: Collected when you book a session or event through our booking system.

Information Collected:

  • Name and email address
  • Phone number (optional)
  • Appointment/session preferences
  • Booking history and attendance records
  • Calendar synchronization data (if synced with Google Calendar)

Integrations:

  • Google Calendar – To sync bookings with your personal calendar (with your permission)
  • Zoom – To automatically generate meeting links for virtual sessions
  • Payment processors – To process booking payments
  • WordPress plugin for Zoom calendar

Your Control: Manage booking preferences, cancel appointments, and opt out of calendar syncing anytime.

3.9 Automation & Integration Services

Purpose: To automate workflows between different platforms (e.g., automatically adding new subscribers to email lists, syncing booking data).

Source: Data is transferred between our platforms based on your actions (e.g., when you sign up for a program, make a booking, or purchase a product).

How It Works: Zapier (or similar automation platforms) acts as a bridge between our services (such as Amelia bookings → MailerLite email lists). When you perform an action on one platform, the automation tool may automatically update information on another platform.

Information Processed:

  • Data you’ve provided (name, email, booking details, purchase information)
  • The automation platform temporarily processes this data to complete transfers between services
  • The automation platform does not permanently store your data beyond what’s necessary for automation

Security: All data transfers are encrypted and comply with industry security standards.

Shared With: Zapier (https://zapier.com/privacy) or similar automation tools

3.10 Customer Support Information

Purpose: To provide customer support, respond to inquiries, and assist with technical issues or questions.

Source: Collected when you contact us via email, contact forms, or other communication channels.

Information Collected:

  • Contact information (name, email, phone number)
  • Order or account information relevant to your inquiry
  • Communications history
  • Additional information you provide to help us assist you

Shared With: Our customer support team and customer relationship management systems

3.11 Community Interactions & User-Generated Content

When you participate in our Facebook communities, group programs, forums, or other interactive spaces:

Visibility: Your name, profile information (as determined by Facebook settings), and any content you post (comments, questions, shared experiences) may be visible to other community members and program participants.

User Responsibility: You are responsible for any information you choose to share in community spaces. We recommend:

  • Not sharing sensitive personal information (health details, financial information, etc.)
  • Being mindful that other members may screenshot or reference your posts
  • Reviewing and understanding privacy settings on third-party platforms (like Facebook)
  • Following our Community Guidelines when participating

Our Role: We moderate communities to maintain a respectful, supportive environment, but:

  • We are not responsible for content posted by other members
  • We cannot control how other members use information you share
  • We reserve the right to remove content or members who violate Community Guidelines
  • We do not guarantee confidentiality of information shared in group settings

Third-Party Platforms: Community interactions on platforms like Facebook are also subject to those platforms’ privacy policies and terms of service.

3.12 Social Media Interactions

Purpose: To enable you to connect with us on social media, share content, and participate in our social media communities.

Platforms We Use:

Information We May Collect:

  • Public profile information (username, profile picture, bio) when you interact with our content
  • Comments, messages, and other interactions on our social media posts
  • Engagement data (likes, shares, follows)

Important Notices:

  • Each social media platform has its own privacy policy and data practices
  • We do not control how these platforms collect, use, or share your data
  • Information you share on social media is subject to that platform’s privacy settings and terms
  • Content you post publicly on our social media pages may be seen by other users

Your Data on Social Platforms:

  • Review and adjust your privacy settings on each platform
  • We may use social media platform analytics to understand engagement and improve our content
  • We do not sell or share data collected through social media with third parties beyond the platform’s own data practices

Social Media Advertising:

  • We may use Facebook, Instagram, TikTok, and other social media platform advertising tools to show you relevant ads
  • These platforms use their own tracking technologies (pixels, cookies) to measure ad performance
  • You can control ad preferences through each platform’s settings

3.13 Children’s Privacy

Our services are not directed or recommended for individuals under the age of 18. We do not knowingly collect Personal Information from children under 18.

  1. HOW WE SHARE YOUR INFORMATION

We share your Personal Information with service providers and partners to help us provide our services and fulfill our contracts with you. We strive to minimize disclosure to only what is necessary.

Service Providers We Use:

Website & E-commerce Platform

Shipping & Fulfillment

  • Third-party shipping and fulfillment providers for production, print-on-demand, and delivery of physical products including books, journals, artwork, clothing, hats, accessories, and branded merchandise
  • Some products may be offered direct from Asmita Pty Ltd and shipped accordingly
  • Purpose: Order fulfillment, product manufacturing, quality control, shipping, delivery tracking

Important: Third-party print-on-demand and fulfillment services receive only the information necessary to fulfill your order (name, shipping address, product specifications).

Email Marketing

Payment Processing

Booking & Scheduling

Automation & Integration

SMS Communications

Video Conferencing & Hosting

Analytics

Social Media Platforms

Other Sharing

We may also share your Personal Information to:

  • Comply with legal obligations – Respond to subpoenas, search warrants, or lawful requests for information
  • Prevent fraud or security issues – Investigate or prevent fraud or security threats
  • Protect rights and safety – Protect our rights, property, or safety, or that of our users
  • Enforce agreements – Enforce our Terms of Service or other agreements

We do not sell your Personal Information to third parties.

  1. HOW WE USE YOUR INFORMATION

We use your Personal Information to:

  • Provide products and services – Process orders, deliver physical and digital products (including clothing, hats, accessories, branded merchandise, self-awareness tools, books, ebooks, audio meditations, journals), facilitate program access
  • Fulfill orders – Coordinate with third-party providers to manufacture, package, and ship physical products to your specified address
  • Manage inventory – Track product sizes, colors, styles, and preferences for clothing, hats, accessories, and merchandise
  • Deliver programs – Enable participation in meditation programs, coaching sessions, and community events
  • Process payments – Securely handle transactions and provide receipts/invoices
  • Communicate with you – Send order confirmations, shipping updates, program information, and respond to inquiries
  • Send marketing communications – Deliver newsletters, promotional offers, and updates about our services (with your consent)
  • Facilitate community participation – Enable access to exclusive Facebook groups and interactive program spaces
  • Send reminders – Provide SMS or email reminders for meditation sessions and events (with your consent)
  • Improve our services – Analyze website usage, gather feedback, and enhance user experience
  • Provide customer support – Respond to questions, resolve issues, and assist with technical problems
  • Ensure security – Prevent fraud, protect against unauthorized access, and maintain platform security
  • Comply with legal obligations – Meet tax, accounting, and regulatory requirements
  1. LAWFUL BASIS FOR PROCESSING (GDPR)

If you are a resident of the European Economic Area (EEA) or United Kingdom, we process your Personal Information under the following lawful bases pursuant to the General Data Protection Regulation (GDPR):

  • Your consent – When you opt-in to marketing communications, SMS notifications, or community participation
  • Performance of contract – To fulfill our obligations when you purchase products or register for programs
  • Compliance with legal obligations – To meet tax, accounting, and regulatory requirements
  • Legitimate interests – To improve our services, prevent fraud, and communicate about our offerings (where such interests do not override your fundamental rights and freedoms)
  • Protection of vital interests – In rare cases where processing is necessary to protect someone’s life or physical safety
  • Public interest – When processing is necessary for tasks carried out in the public interest

You have the right to withdraw consent at any time where we rely on consent as the lawful basis for processing.

  1. AUSTRALIAN PRIVACY PRINCIPLES (APP)

Asmita Pty Ltd complies with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth).

If you are an Australian resident, you have rights under the APPs including:

  • Right to access – Request access to the personal information we hold about you
  • Right to correction – Request correction of inaccurate or incomplete information
  • Right to deletion – Request deletion of your information (subject to legal retention requirements)
  • Right to complain – Lodge a complaint with us or with the Office of the Australian Information Commissioner (OAIC)

To exercise these rights, contact us at: hello@artofbeingyou.com.au

Australian Privacy Commissioner

Website: https://www.oaic.gov.au
Phone: 1300 363 992
Email: enquiries@oaic.gov.au

  1. YOUR RIGHTS UNDER GDPR (EEA RESIDENTS)

If you are a resident of the European Economic Area (EEA) or United Kingdom, you have the following rights:

  • Right to access – Obtain confirmation of whether we process your Personal Information and request a copy
  • Right to rectification – Request correction of inaccurate Personal Information
  • Right to erasure (“right to be forgotten”) – Request deletion of your Personal Information in certain circumstances
  • Right to restriction – Request restriction of processing in certain circumstances
  • Right to data portability – Receive your Personal Information in a structured, commonly used format and transmit it to another controller
  • Right to object – Object to processing based on legitimate interests or for direct marketing purposes
  • Right to withdraw consent – Withdraw consent at any time (where processing is based on consent)
  • Right to lodge a complaint – File a complaint with your local data protection authority

To exercise these rights, contact us at: hello@artofbeingyou.com.au

Data Transfers: Your Personal Information may be processed in Australia, the European Union, and the United States. We ensure appropriate safeguards are in place for international transfers.

Supervisory Authority: You can contact your local data protection authority or our supervisory authority if you have concerns about our data processing practices.

  1. YOUR RIGHTS UNDER CCPA (CALIFORNIA RESIDENTS)

If you are a resident of California, you have rights under the California Consumer Privacy Act (CCPA):

  • Right to Know – Request information about the categories and specific pieces of Personal Information we collect, use, disclose, and sell
  • Right to Delete – Request deletion of your Personal Information (subject to certain exceptions)
  • Right to Opt-Out – Opt out of the “sale” of Personal Information (Note: We do not sell Personal Information)
  • Right to Non-Discrimination – You will not receive discriminatory treatment for exercising your CCPA rights

To exercise these rights, contact us at: hello@artofbeingyou.com.au

Authorized Agent: If you would like to designate an authorized agent to submit requests on your behalf, please contact us with written authorization.

Verification: We may need to verify your identity before processing your request to protect your Personal Information.

  1. DATA RETENTION

We retain your Personal Information for different periods depending on the type of information and its purpose:

Data Type

Retention Period

Reason

Order and Purchase Data

7 years from date of purchase

Required for tax, accounting, and legal compliance under Australian law

Email Marketing Data

Until you unsubscribe or request deletion

To fulfill marketing communications obligations with your consent

Customer Account Information

Until you request account deletion, or after 3 years of account inactivity

To provide ongoing service and maintain your preferences

Community Participation Data

Duration of program participation plus 1 year

To maintain program integrity and provide access to recorded content

Recorded Sessions

Duration of program plus 90 days after program completion

To provide replay access to participants

Customer Support Communications

2 years after your last interaction

To improve service quality and maintain support history

Website Analytics

26 months (Google Analytics default)

To analyze website performance and user behavior trends

SMS Consent Records

Until you opt out, plus 3 years

To maintain records of consent for compliance purposes

Legal Holds: Some data may be retained longer if required by law, to resolve disputes, enforce our agreements, or protect our legal rights.

Deletion Requests: You may request deletion of your Personal Information at any time by contacting us. We will comply with your request except where we have a legal obligation to retain certain information.

  1. AUTOMATIC DECISION-MAKING

General Practice: We do NOT engage in fully automated decision-making that has a legal or otherwise significant effect using customer data.

Limited Automated Processing: Our payment processors (WooCommerce, Stripe, or similar) use limited automated decision-making to prevent fraud, which does not have a legal or otherwise significant effect on you. This includes:

  • Temporary blocklist of IP addresses associated with repeated failed transactions (persists for a small number of hours)
  • Temporary blocklist of payment methods associated with suspicious activity (persists for a small number of days)

Your Rights: If you are a resident of the EEA, you have the right to object to processing based solely on automated decision-making (including profiling) when that decision-making has a legal effect on you or otherwise significantly affects you.

  1. COOKIES

A cookie is a small amount of data downloaded to your computer or device when you visit our websites. We use cookies to:

  • Remember your preferences and settings
  • Understand how you use our websites
  • Improve your browsing experience
  • Deliver relevant advertising (with your consent)
  • Analyze website performance

Types of Cookies We Use

Strictly Necessary Cookies

These cookies are essential for our websites to function properly. They enable core functionality like security, network management, and accessibility.

Cookie Name

Duration

Purpose

woocommerce_cart_hash

Session

Helps WooCommerce determine when cart contents/data changes

woocommerce_items_in_cart

Session

Helps WooCommerce determine when cart contents/data changes

wp_woocommerce_session_

2 days

Contains a unique code for each customer to find cart data in database

woocommerce_recently_viewed

Session

Powers the Recently Viewed Products widget

store_notice[notice id]

Session

Allows customers to dismiss store notices

Functional Cookies

These cookies enable enhanced functionality and personalization.

Cookie Name

Duration

Purpose

woocommerce_snooze_suggestions__[suggestion]

2 days

Allows dashboard users to dismiss marketplace suggestions

woocommerce_dismissed_suggestions__[context]

1 month

Count of suggestion dismissals

Analytics Cookies

These cookies help us understand how visitors interact with our websites.

  • Google Analytics – We use Google Analytics (or similar analytics platforms) to collect information about website usage, including pages visited, time spent, and user demographics (aggregated and anonymized)
  • Purpose: To improve website performance and user experience
  • Privacy: https://policies.google.com/privacy

Marketing Cookies

These cookies track your activity to deliver relevant advertising.

  • Facebook Pixel – Tracks conversions from Facebook ads and enables retargeting on Facebook and Instagram
  • TikTok Pixel – Tracks conversions from TikTok ads and enables retargeting
  • MailerLite Tracking – Measures email campaign effectiveness when you visit our site after clicking an email link
  • Other social media pixels – We may use pixels from other social media platforms as needed
  • Purpose: To measure advertising performance and show you relevant content

Cookie Consent & Management

Consent: When you first visit our websites, we will ask for your consent to use non-essential cookies (analytics and marketing cookies). You can update your preferences at any time.

Browser Controls: You can control and manage cookies through your browser settings. Most browsers automatically accept cookies, but you can modify your settings to:

  • Block all cookies
  • Block third-party cookies only
  • Delete cookies when you close your browser
  • Alert you when cookies are being set

Important: Blocking or deleting cookies may negatively impact your user experience, and some features of our websites may not function properly.

Learn More: For information on managing cookies, visit: www.allaboutcookies.org

Opting Out of Targeted Advertising

You can opt out of targeted advertising by:

  1. DO NOT TRACK

Please note that because there is no consistent industry understanding of how to respond to “Do Not Track” signals, we do not alter our data collection and usage practices when we detect such a signal from your browser.

However, you can use the cookie management and opt-out options described above to control tracking and advertising.

  1. SECURITY

We take reasonable measures to protect your Personal Information from unauthorized access, use, disclosure, alteration, or destruction. Our security measures include:

  • Encryption – We use SSL/TLS encryption to protect data transmitted between your browser and our servers
  • Secure Payment Processing – Payment information is processed by PCI DSS compliant payment processors
  • Access Controls – We limit access to Personal Information to employees and service providers who need it to perform their job functions
  • Regular Security Assessments – We regularly review and update our security practices

Important Notes:

  • No method of transmission over the Internet or electronic storage is 100% secure
  • We cannot guarantee absolute security of your Personal Information
  • You are responsible for maintaining the confidentiality of your account passwords and login credentials

If you suspect a security breach, please contact us immediately at: hello@artofbeingyou.com.au

  1. INTERNATIONAL DATA TRANSFERS

Your Personal Information may be transferred to, stored, and processed in countries other than Australia, including:

  • European Union – MailerLite processes data in EU data centers
  • United States – Some service providers (e.g., Google Analytics, payment processors) may process data in the US

We ensure that appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Privacy Shield certification (where applicable)
  • Service provider privacy commitments and security measures
  1. THIRD-PARTY LINKS

Our websites may contain links to third-party websites, plugins, and applications (including social media platforms like Facebook, Instagram, and YouTube).

Important:

  • Clicking on those links or enabling those connections may allow third parties to collect or share data about you
  • We do not control these third-party websites and are not responsible for their privacy practices
  • When you leave our websites, we encourage you to read the privacy policy of every website you visit
  1. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect:

  • Changes to our practices
  • Changes in applicable laws or regulations
  • New features or services we offer
  • Operational, legal, or regulatory requirements

Notice of Changes:

  • We will post the updated Privacy Policy on this page
  • We will update the “Last Updated” date at the top of this policy
  • For material changes, we may notify you via email or prominent notice on our websites
  • Your continued use of our services after changes constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

  1. COMPLAINTS & DISPUTE RESOLUTION

If you have a complaint about our handling of your Personal Information, please contact us first:

Email: hello@artofbeingyou.com.au
Mail: Asmita Pty Ltd, P.O. Box 436, Chirn Park QLD 4215, Australia

Our Process:

  1. We will acknowledge your complaint within 7 business days
  2. We will investigate and respond to your complaint within 30 days
  3. If we need more time, we will notify you and provide a reason

If You Are Not Satisfied With Our Response:

Australian Residents:

Office of the Australian Information Commissioner (OAIC)

EEA/UK Residents:

California Residents:

California Attorney General’s Office

  1. CONTACT US

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us:

Asmita Pty Ltd
Trading as: Path of the Heart and Art of Being You

Email: hello@artofbeingyou.com.au
Mail: P.O. Box 436, Chirn Park QLD 4215, Australia
Websites: pathoftheheart.live | artofbeingyou.com.au

Last Updated: January 29, 2026

© 2026 Asmita Pty Ltd. All rights reserved.