top of page

Privacy Policy for Mindthol

Last Updated: August 13, 2025

Mindthol, LLC (“Mindthol,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit mindthol.com and any associated sub‑domains, mobile applications, or other digital services that link to this policy (collectively, the “Site”). By accessing or using the Site, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access the Site.

1. Scope and Applicability

This Privacy Policy applies to personal information we collect through the Site and through our interactions with you online (e.g., when you purchase products, contact us, or sign up for newsletters). This policy does not apply to information collected offline or through channels not listed here.

2. Information We Collect

We collect information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked to you (“personal information”).

2.1 Information You Provide Directly

  • Contact information: Name, email address, phone number, billing and shipping addresses.

  • Account information: Username, password, and preferences if you create an account.

  • Payment information: Payment card details and other information necessary to process your purchases. Payment details are processed by third‑party processors and are not stored by Mindthol.

  • Communications: Records of correspondence with us, including customer support inquiries, survey responses, or reviews.

2.2 Information We Collect Automatically

When you visit the Site, we automatically collect certain information via cookies, web beacons, log files, and similar technologies, such as:

  • Device and usage data: Internet Protocol (IP) address, browser type, device identifiers, operating system, referring URL, and date/time stamps of your interactions with the Site.

  • Browsing activity: Pages viewed, links clicked, features used, and the order in which you visit the Site.

  • Location data: Approximate location derived from your IP address or device settings. We do not collect precise geolocation unless you grant explicit permission.

2.3 Sensitive and Special Categories of Data

We do not intentionally collect sensitive personal information (e.g., biometric, health, racial or ethnic data) unless you choose to provide it (for example, if you disclose a health concern in a support request). If you provide us with any sensitive information, you consent to our processing of that information for the purpose of responding to your request.

2.4 Information from Third‑Party Sources

We may receive information about you from third‑party vendors and service providers, such as payment processors, analytics providers (e.g., Google Analytics), advertising partners, and shipping carriers. These third parties may collect data under their own privacy policies. We only use this information to the extent necessary to fulfil your orders, provide services, or improve our Site.

3. How We Use Your Information

We use personal information for the following purposes:

  1. Order processing: To process payments, fulfil orders, deliver products, and provide customer support.

  2. Account management: To set up, manage, and secure your account on our Site.

  3. Communications: To send transactional messages (e.g., order confirmations, shipping updates), respond to inquiries, and provide customer service.

  4. Marketing: To send newsletters, promotional messages, and offers you have opted into. You may unsubscribe at any time.

  5. Analytics and improvements: To analyze Site usage, monitor performance, fix errors, and develop new features and products.

  6. Compliance and legal obligations: To comply with applicable laws and regulations, enforce our Terms and Conditions, detect and prevent fraud, and protect our rights or those of our customers.

  7. Personalization: To tailor your experience on the Site, including recommending products, displaying content based on your preferences, and remembering your settings.

  8. Research and development: To conduct aggregated and anonymized research about how users interact with our Site to improve our offerings. We do not use your personal information to make automated decisions that legally or significantly affect you.

4. Legal Bases for Processing (EU/EEA Visitors)

If you are located in the European Union or European Economic Area, we rely on the following legal bases to collect and process your personal information under the General Data Protection Regulation (GDPR):

  • Contractual necessity: To provide products and services you request.

  • Legitimate interests: To analyze, develop, and improve our business, prevent fraud, and secure our Site, provided these interests do not override your rights and freedoms.

  • Consent: For certain marketing communications and the use of non-essential cookies. You may withdraw your consent at any time.

  • Legal obligations: To comply with legal requirements, including tax and consumer-protection laws.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience, analyze Site traffic, and support marketing activities. Cookies are small text files stored on your device that allow us to remember your preferences and recognize you upon return visits. We categorize cookies as follows:

  • Essential cookies: Necessary for the Site to function properly (e.g., enabling shopping cart features and secure log-in).

  • Performance cookies: Collect aggregated, anonymous data about how visitors use the Site to help us improve its performance.

  • Functional cookies: Remember your preferences, such as language or region.

  • Marketing cookies: Track your browsing habits to deliver personalized advertising.

Where required by law, we will obtain your consent before placing non-essential cookies on your device. You can manage cookie preferences through our cookie banner, browser settings, or the “Do Not Sell or Share My Personal Information” link for California residents.

6. How We Share Your Information

We may disclose your information in the following circumstances:

  1. Service providers: We engage third‑party vendors to perform functions on our behalf, such as payment processing, order fulfillment, analytics, marketing, and hosting services. We require service providers to process personal information only for specified purposes and to implement appropriate security measures. Privacy policy templates emphasize the importance of disclosing any sharing of user data with third partiestermly.io.

  2. Business transfers: In the event of a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction, subject to applicable laws.

  3. Legal requirements: We may disclose your information if required to do so by law, regulation, court order, or government request; to enforce our legal rights; or to protect the rights, property, and safety of Mindthol, our customers, or others.

  4. With your consent: We may share your information for other purposes with your explicit consent.

We do not sell personal information for monetary compensation. However, under California law, “selling” or “sharing” may include certain disclosures for targeted advertising. If we engage in such practices, we will provide a clear “Do Not Sell or Share My Personal Information” link and honor Global Privacy Control signals as required.

7. Your Rights and Choices

Depending on where you live, you may have specific rights regarding your personal information. We respect these rights and provide mechanisms to exercise them.

7.1 California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

  • Right to know: You may request disclosure of the categories and specific pieces of personal information we collect, the sources of that information, our purposes for collecting or sharing it, and the categories of third parties to whom it is disclosedstrobes.co.

  • Right to delete: You may request that we delete your personal information, subject to certain exceptions (such as when data is needed to complete a transaction or comply with legal obligations).

  • Right to opt-out of sale or sharing: If we sell or share your personal information with third parties for cross-context behavioral advertising, you can opt out via our “Do Not Sell or Share My Personal Information” link.

  • Right to correct: You may request correction of inaccurate personal information.

  • Right to limit use of sensitive personal information: You may instruct us to limit our use and disclosure of your sensitive personal information, if collected.

  • Right to non-discrimination: We will not discriminate against you for exercising your privacy rights.

7.2 General Data Protection Regulation (GDPR) Rights

If you are located in the EU/EEA, you may have the following rights under the GDPR:

  • Right of access: Obtain a copy of the personal data we hold about you.

  • Right to rectification: Request correction of inaccurate or incomplete information.

  • Right to erasure: Request deletion of your personal data (also known as the “right to be forgotten”).

  • Right to restriction: Ask us to limit the processing of your data under certain circumstances.

  • Right to data portability: Receive your data in a structured, commonly used format for transfer to another controller.

  • Right to object: Object to our processing of your personal data for direct marketing or when processing is based on our legitimate interests.

  • Rights related to automated decision-making: We do not use your data for automated decision-making that produces legal or similarly significant effects.

7.3 Other State and International Privacy Laws

Residents of other U.S. states and countries may also have privacy rights under laws such as Virginia’s Consumer Data Protection Act (VCDPA), Colorado Privacy Act (CPA), Utah Consumer Privacy Act (UCPA), Canada’s PIPEDA, and others. These rights generally include transparency about data collection, access, correction, deletion, and opt-out of targeted advertising. We will honour these rights where applicable.

7.4 Exercising Your Rights

To exercise any of your rights, please submit a request via our online Privacy Request Form or email us at privacy@mindthol.com. We may need to verify your identity before responding to your request. If you are submitting a request on behalf of someone else, we may require proof of authorization.

8. Data Retention

We retain personal information only as long as necessary to fulfil the purposes described in this policy, to comply with legal and accounting requirements, or as otherwise permitted by law. Privacy guidance for 2025 emphasizes defining and communicating retention timelines for each data. When data is no longer needed, we will securely delete or anonymize it.

9. Data Security

We implement administrative, technical, and physical safeguards to protect your personal information against unauthorized access, disclosure, alteration, and destruction. This includes encryption of data in transit and at rest, access controls, secure server environments, and employee training on data security. Most data privacy laws require businesses to describe such security measures in their privacy. However, no method of transmission over the Internet or electronic storage is 100 % secure. Therefore, while we strive to use commercially acceptable means to protect your data, we cannot guarantee its absolute security.

10. International Data Transfers

If you are located outside the United States and access our Site, your information may be transferred to, stored, and processed in countries other than your own. We ensure that international transfers comply with applicable data protection laws, including the use of standard contractual clauses or other approved mechanisms to safeguard your data.

11. Children’s Privacy

Our Site is intended for a general audience and is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13 without verifiable parental consent, we will delete that information as soon as possible. If you believe we might have any information from or about a child, please contact us. Websites must include a children’s data clause and comply with COPPA if collecting information from minors

12. Third‑Party Websites and Services

The Site may contain links to external websites or services not operated by Mindthol. We have no control over, and assume no responsibility for, the privacy practices or content of any third‑party sites. We encourage you to review the privacy policies of each site you visit.

13. Universal Opt‑Out Mechanisms

Certain U.S. state laws require businesses to recognize browser or device signals that indicate a user’s preference to opt out of data sales or targeted advertising. We honour such universal opt‑out mechanisms, including the Global Privacy Control (GPC). When we detect a valid GPC or similar signal, we will treat it as a request to opt out of the sale or sharing of your personal information to the extent required by law.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other reasons. When we make material changes, we will notify you by updating the effective date at the top of this policy and, in some cases, by providing additional notice (such as via email or a prominent notice on the Site). We encourage you to review this policy periodically for any updates.

15. Contact Information

If you have questions or concerns about these Terms or our products, please contact us at:

Mindthol, LLC
Attn: Legal Department
Phone: 650-541-9159
E‑mail: support@mindthol.com

bottom of page