Privacy Policy

This Privacy Policy describes how GoWellness ("we", "us", "our") collects, uses, and shares information when you visit gowellness.io or use our affiliate platform (the "Service"). By using the Service, you agree to this policy.

1. Information we collect

Information you provide

• Account details — name, email, and password (managed by our auth provider, Clerk).
• Application data — your role (creator, coach, marketer, entrepreneur), audience size, focus areas, and other answers you submit on the application form.
• Payout details — PayPal email and tax form data, which are entered and stored by our merchant partner TriVita, not by GoWellness directly.

Information collected automatically

• Usage data — pages visited, links clicked, browser type, device, and timestamps.
• Cookies — required cookies for authentication (Clerk session), and optional analytics cookies. We do not sell cookie data to third parties.
• Affiliate tracking — when a visitor clicks your affiliate link, TriVita's tracking system records the click, conversion, and resulting commission. We receive aggregate commission data from TriVita.

2. How we use information

• Operate, maintain, and improve the Service.
• Verify your eligibility, approve applications, and onboard you to TriVita.
• Track commissions and prepare payouts (TriVita handles the actual payment).
• Communicate with you about your account, commissions, and product updates.
• Detect and prevent fraud, spam, and abuse.
• Comply with legal obligations.

3. How we share information

We do not sell your personal information. We share data only with:

• Service providers — Clerk (authentication), Supabase (database), Vercel (hosting), and similar infrastructure vendors who process data on our behalf under contractual safeguards.
• TriVita — our merchant partner. When you enroll, your name, email, and PayPal/payout info are shared with TriVita so they can pay you.
• Legal compliance — when required by law, subpoena, or to enforce our Terms.
• Business transfers — in the event of a merger, acquisition, or asset sale, your data may transfer to the successor entity.

4. Data retention

We retain account and application data for as long as your account is active. After deletion, we retain limited records (commission history, tax records) as required for legal and accounting purposes — typically 7 years.

5. Your rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or export your personal information, and to object to or restrict certain processing. To exercise these rights, email privacy@gowellness.io.

Canadian residents (PIPEDA / BC PIPA): You have the right to access the personal information we hold about you, request corrections, and withdraw consent (subject to legal and contractual restrictions). You may also file a complaint with the Office of the Privacy Commissioner of Canada or the Office of the Information and Privacy Commissioner for British Columbia.

California residents (CCPA/CPRA): You have the right to know what categories of personal information we collect, request deletion, and opt out of "sales" of personal information. We do not sell personal information.

EEA/UK residents (GDPR): Our legal bases for processing are contract performance, legitimate interest, consent, and legal obligation.

6. Security

We use industry-standard safeguards including TLS encryption in transit, encrypted databases at rest, row-level security in our database, and managed auth via Clerk. No system is perfectly secure — please use a strong, unique password and enable 2FA in your account settings.

7. Children

The Service is not directed to children under 18. We do not knowingly collect personal information from minors.

8. Changes to this policy

We may update this policy from time to time. We will notify you of material changes by email or in-app notice. The "Last updated" date at the top reflects the most recent revision.

9. Contact

Questions or requests? Email privacy@gowellness.io.