1. Introduction

This section provides an overview of the DojoWell Data Privacy Policy, outlining our commitment to protecting your personal information and detailing the practices we follow to ensure compliance with applicable data protection laws.

1.1. Purpose and Scope

The purpose of this Privacy Policy is to inform you about how DojoWell collects, uses, discloses, stores, and protects your personal information when you interact with our platform, which includes our websites, mobile applications, and any other related services. This policy applies to all users of DojoWell, regardless of where you access our services, and is designed to:

• Ensure Transparency: Clearly explain our data processing practices so that you understand what information we collect and why.
• Protect Your Data: Detail the security measures we have implemented to safeguard your personal information.
• Outline Your Rights: Describe the rights you have regarding your personal data, including how you can access, correct, or request deletion of your information.
• Demonstrate Compliance: Affirm our commitment to adhere to relevant privacy laws and regulations such as the GDPR, CCPA, and other applicable regional data protection laws.

1.2. Definitions and Key Terms

For the purposes of this Privacy Policy, the following definitions and key terms apply:

• Personal Information: Any information relating to an identified or identifiable natural person, including names, email addresses, contact details, and wellness data.
• Data Processing: Any operation performed on personal data, such as collection, storage, use, disclosure, or deletion.
• Data Controller: The entity (DojoWell) that determines the purposes and means of processing your personal information.
• Data Processor: A third party that processes personal data on behalf of the Data Controller.
• Consent: A freely given, specific, informed, and unambiguous indication of your wishes to allow the processing of your personal data.
• GDPR: The General Data Protection Regulation, a comprehensive data protection law in the European Union.
• CCPA: The California Consumer Privacy Act, which provides data privacy rights to California residents.
• De-Identified Data: Information from which identifying details have been removed, rendering the data no longer attributable to an individual.

Additional terms used in this policy will be defined as necessary to ensure clarity and understanding.

1.3. How to Use This Privacy Policy

This Privacy Policy is organized into clear, distinct sections and subsections, each focusing on a specific aspect of our data privacy practices. We recommend that you:

• Review the Entire Policy: Read through all sections to gain a complete understanding of how we handle your personal data.
• Refer to the Section Headings: Use the table of contents to navigate to specific sections that are most relevant to your concerns, such as data collection, security measures, or your privacy rights.
• Stay Informed of Updates: The policy may be updated periodically to reflect changes in our practices or regulatory requirements. Please check back regularly to stay informed.
• Contact Us: If you have any questions or require further clarification about any part of this policy, please contact our Data Protection Officer at helpdesk@dojowell.com

2. Collection of Personal Information

DojoWell collects personal information from a variety of sources to enhance your experience, provide our services, and ensure the security and efficiency of our platform. This section outlines the different categories of personal information we collect, the methods by which we gather it, and the purposes for which it is used.

2.1. Information You Provide to Us

When you interact with DojoWell, you may voluntarily provide us with personal information, including:

• Contact Information and Identifiers: Your name, email address, phone number, and other contact details that you provide during registration or through your user profile. This information allows us to communicate with you and manage your account.
• Account and Profile Information: Data that you supply when setting up your account, such as usernames, passwords, profile pictures, and other related details, which help in personalizing your experience and maintaining your account.
• Wellness and Health Data: Information you input related to your wellness activities, health metrics, fitness goals, or other health-related details. This data is used to tailor our services to your personal wellness journey and provide customized recommendations.
  User behavior, engagement patterns, and habit progression data are used to determine the unlocking of additional content and levels. This system ensures a personalized wellness journey, discouraging overconsumption and aligning with the app’s purpose-driven design
• Payment and Transaction Data (if applicable): If you engage in any financial transactions with us, you may provide payment details such as credit or debit card numbers, billing addresses, and other payment-related information. Note that such data is processed securely through trusted third-party payment processors, and we do not store full payment credentials on our systems.
  DojoWell does not collect or store full payment card details. All payment transactions are securely handled through Paddle, our third-party payment processor. Please refer to Paddle’s Privacy Policy (https://www.paddle.com/legal/privacy) for details on their handling of financial data.

2.2. Information Received from Third Parties

In certain instances, we may receive personal information about you from external sources, including:

• Third-Party Integrations: Information from social media platforms or other external services you use to access our platform, should you choose to link those accounts.
• Affiliate or Sponsor Data: If you access DojoWell through an employer, health plan, or other benefit sponsor, we may receive information such as your name, email address, and enrollment details directly from the sponsoring entity.
• Partner Organizations: Data provided by our trusted partners or other third parties with whom you have an existing relationship, subject to your consent and applicable legal obligations.

2.3. Information Automatically Collected

Our platform also gathers certain information automatically as you navigate and interact with our services. This includes:

• Device, Browser, and Usage Data: Information such as your IP address, device type, operating system, browser type, screen resolution, and other technical data. Additionally, we collect data on how you use our platform—pages visited, links clicked, session duration, and navigation patterns—to optimize our services and enhance user experience.
• Cookies and Tracking Technologies: We deploy cookies, web beacons, and similar tracking mechanisms to collect data about your browsing behavior on our platform. This data is used to analyze trends, administer the website, track user movements, and gather demographic insights, all while ensuring your privacy is maintained.

2.4. Aggregated, Anonymous, and De-Identified Data

In addition to personal information, we may compile aggregated, anonymous, or de-identified data from the information we collect. This data is processed in a way that it cannot be linked back to any individual and is used for:

• Analytics and Research: Understanding usage patterns, identifying trends, and improving the overall functionality and performance of our platform.
• Service Enhancements: Developing new features and optimizing existing services without compromising individual privacy.

3. Use of Personal Information

We use the personal information we collect to deliver a personalized, secure, and continuously improving experience on DojoWell. This section outlines the various ways in which we process and utilize your data, ensuring that each purpose is aligned with applicable legal requirements and our commitment to protecting your privacy.

3.1. To Provide, Maintain, and Improve Our Services

• Service Delivery: We use your personal information to create and manage your account, deliver the features and functionalities of our platform, and ensure that our services are tailored to your individual wellness needs.
• System Maintenance and Performance: Your data helps us monitor, troubleshoot, and optimize the performance of our platform. This includes maintaining server functionality, updating software, and ensuring that your interactions with DojoWell are smooth and uninterrupted.
• Continuous Improvement: By analyzing aggregated data on usage patterns and system performance, we identify opportunities to enhance our services, introduce new features, and improve user experience.

3.2. For Customer Support and Communication

• Responsive Support: Your contact information and service usage data enable our customer support team to respond promptly and effectively to your inquiries, issues, or feedback.
• Service Notifications: We use your data to send you important information related to your account, updates to our services, security alerts, and other communications that ensure you remain informed about changes that may affect your usage of DojoWell.
• Feedback and Improvement: Communications from you help us understand your needs and preferences, which in turn allows us to make necessary adjustments to better support you.

3.3. For Personalization, Analytics, and Research

• Customized Experience: We analyze your wellness and usage data to tailor the content, recommendations, and features you see on DojoWell, ensuring that your experience is relevant and engaging.
• Performance Analytics: Aggregated and anonymized data is used to measure the effectiveness of our services, assess user satisfaction, and identify trends in user behavior. This analysis supports our goal of continually refining the platform.
• Research and Development: Your data, when aggregated and de-identified, may be used for internal research and to inform the development of innovative features. This research is conducted with a strong commitment to protecting your identity and privacy.

3.4. For Marketing, Promotions, and Service Enhancements

• Targeted Marketing: With your consent, we may use your personal information to deliver personalized marketing communications about new features, products, services, or promotional offers that we believe may be of interest to you.
• Promotional Activities: We may also share aggregated insights with our marketing partners to help them tailor their promotional efforts. However, no identifiable personal information is disclosed without your explicit consent.
• Service Enhancements: Data collected from your interactions with DojoWell is analyzed to identify areas for service improvement and to develop new offerings that align with your preferences and needs.

3.5. Legal Basis for Processing

• Consent: In many cases, we process your personal information based on your explicit consent. You have the right to withdraw your consent at any time, subject to legal or contractual restrictions and reasonable notice.
• Contractual Necessity: Processing is necessary for the performance of a contract with you, such as when you sign up for an account or purchase a service from DojoWell.
• Legitimate Interests: We may process your data under the basis of our legitimate interests, including improving our services, securing our platform, and enhancing user engagement, provided these interests are not overridden by your privacy rights.
• Legal and Regulatory Compliance: In certain situations, processing is required to comply with legal obligations or to respond to lawful requests from public authorities, ensuring that we meet our regulatory requirements.

4. Sharing of Personal Information

DojoWell is committed to protecting your personal information and sharing it only under circumstances that are necessary for providing our services, complying with legal obligations, or enhancing your overall experience. We take care to ensure that any sharing of your data is performed securely and in accordance with applicable laws. Below is an overview of the contexts in which we may share your personal information:

4.1. With Service Providers and Trusted Partners

• Service Providers: We share your personal information with third-party service providers who perform essential functions on our behalf, such as payment processing, data analytics, customer support, and IT infrastructure management.
• Trusted Partners: Your data may be shared with trusted partners who help us enhance and deliver our services. These partners are contractually bound to adhere to strict data protection standards and are only permitted to use your information for the purposes we specify.

4.2. With Affiliates and Subsidiaries

• Corporate Affiliates: We may share your personal information with our affiliates, subsidiaries, or other entities under common ownership. This sharing is conducted to ensure consistent service delivery and to enable seamless account management across our group of companies.
• Consistent Privacy Protections: All such entities are required to maintain privacy practices that are at least as protective as those set forth in this Privacy Policy.

4.3. For Legal, Regulatory, and Safety Purposes

• Legal Compliance: We may disclose your personal information to comply with legal obligations, including responses to subpoenas, court orders, or other legal processes.
• Regulatory Requirements: In order to meet regulatory obligations or cooperate with law enforcement, we may be required to share your data with governmental agencies.
• Safety and Security: Your data may be disclosed if necessary to protect the rights, property, or safety of DojoWell, our users, or other parties, including in situations to prevent or investigate potential fraud or security breaches.

4.4. Third-Party Advertising and Marketing Partners

• Personalized Marketing: With your consent, we may share aggregated or anonymized information with third-party advertising and marketing partners to provide you with personalized content and promotional offers.
• Opt-Out Options: You always have the option to opt out of having your information used for targeted advertising or shared with marketing partners by adjusting your privacy settings or contacting us directly.

4.5. Cross-Border Data Transfers and International Disclosures

• Global Operations: In order to provide our services internationally, your personal information may be transferred, stored, and processed in countries outside your own.
• Safeguards: We implement appropriate safeguards—such as Standard Contractual Clauses or Binding Corporate Rules—to ensure that your data remains protected during cross-border transfers and is processed in accordance with applicable data protection laws.
• Transparency: Any international disclosures of your personal information are managed with a focus on maintaining a consistent level of privacy protection, regardless of where the data is processed.

5. Data Security and Retention

At DojoWell, safeguarding your personal information is a top priority. We employ a range of technical and organizational measures to protect your data from unauthorized access, disclosure, or loss, while ensuring that it is retained only as long as necessary to fulfill our service obligations and legal requirements.

5.1. Security Measures

We have implemented robust security protocols to ensure the protection of your data:

• Encryption and Secure Storage:
  • All sensitive personal data is encrypted both in transit and at rest using industry-standard encryption protocols, such as TLS (Transport Layer Security) for data transmission and AES-256 for stored data.
  • Data is stored in secure, access-controlled environments that are continuously monitored and audited to prevent unauthorized access or data breaches.
• Access Controls and Authentication:
  • Strict access controls are enforced to ensure that only authorized personnel can access your personal information, following a “need-to- know” basis.
  • Multi-factor authentication (MFA) is required for accessing sensitive data and administrative systems, providing an additional layer of security.
  • Comprehensive logging and monitoring are implemented to detect, analyze, and respond to any suspicious or unauthorized access attempts.

5.2. Data Retention Policy

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, or resolve disputes:

• Retention Period:
  • The duration for which your data is stored varies depending on the nature of the information and the purpose for which it was collected. For example, account-related data is retained for the duration of your active use of DojoWell, while transaction or service-related data may be kept for longer periods as required by applicable laws.
• Deletion and Anonymization:
  • Once the retention period expires or upon your request (subject to legal and contractual obligations), we will securely delete or anonymize your personal data so that it can no longer be associated with you.
  • This process also applies to data stored in backup systems, ensuring that obsolete data is effectively removed or rendered anonymous in accordance with our data retention practices.
  • For inactive user accounts, we retain personal data for a maximum of 36 months unless otherwise required by legal or operational needs. Users may request earlier deletion at any time.

5.3. Data Breach Notification Procedures

In the unlikely event of a data breach, DojoWell has established protocols to promptly address and mitigate the incident:

• Incident Response:
  • Our dedicated security team monitors for any signs of unauthorized access or breaches and will initiate our incident response plan immediately upon detection of a potential breach.
  • A thorough investigation is conducted to assess the extent of the breach, identify affected data, and determine the necessary steps to contain and remediate the issue.
• Notification:
  • If a data breach occurs that poses a risk to your personal information, we will notify affected users and the appropriate regulatory authorities in accordance with applicable laws (such as GDPR, CCPA, or other relevant regulations).
  • Notifications will include details about the nature of the breach, the data affected, the measures taken to mitigate the breach, and recommendations on how you can protect yourself.
• Remediation and Continuous Improvement:
  • Post-incident, we take immediate steps to address any vulnerabilities, enhance our security measures, and prevent future breaches.
  • All data breach incidents are thoroughly documented, and lessons learned are incorporated into our ongoing security strategy to ensure continuous improvement.

6. Your Privacy Rights

At DojoWell, we are committed to ensuring that you have control over your personal information. We have established processes that allow you to exercise your privacy rights in a clear, secure, and straightforward manner. Depending on your jurisdiction and applicable laws (such as GDPR, CCPA, and other data protection regulations), you are entitled to the following rights:

6.1. Right to Access and Correction

• Access: You have the right to request a copy of the personal information we hold about you in a structured, commonly used, and machine-readable format.
• Correction: If any of your personal information is inaccurate or incomplete, you may request that we correct or update it to ensure that your records are accurate.

6.2. Right to Data Portability

• You may request the transfer of your personal data to you or directly to another data controller, where technically feasible.
• We will provide your data in a structured, commonly used, and machine-readable format to facilitate such transfers, subject to applicable legal and technical constraints.

6.3. Right to Deletion (Right to be Forgotten)

• In certain circumstances, you have the right to request the deletion of your personal information.
• We will assess your request and, where no legal or contractual obligations prevent us from doing so, will delete your data. This right does not apply where data retention is necessary for compliance with legal obligations, for the establishment, exercise, or defense of legal claims, or for other legitimate purposes.

6.4. Right to Restrict or Object to Processing

• Restriction: You have the right to request that we restrict the processing of your personal data under certain conditions. This means that while we may retain your data, it will not be processed further without your explicit consent.
• Objection: You may object to the processing of your personal data for reasons related to your particular situation, including the use of your data for direct marketing. In such cases, we will cease processing your data for those purposes unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms.

6.5. Right to Withdraw Consent

• If you have provided your consent for the processing of your personal data, you have the right to withdraw that consent at any time.
• Withdrawing your consent will not affect the lawfulness of any processing carried out prior to your withdrawal, and we may continue to process your data based on other legal grounds if applicable.

6.6. Non-Discrimination for Exercising Your Rights

• You will not be subject to any form of discrimination or adverse treatment for exercising your privacy rights.
• Your decision to exercise these rights will not result in denial of services or a reduction in the quality of services provided by DojoWell.

If you wish to exercise any of these rights or have questions about how we process your personal data, please contact our Data Protection Officer or use the contact information provided in the "Contact Us" section of this Privacy Policy. We will respond to your request promptly and in accordance with applicable legal requirements.

7. Children’s Privacy

At DojoWell, we recognize the importance of protecting the privacy and personal data of children. Our services are primarily designed for adult users, but in circumstances where minors may access our platform, we take special measures to ensure their data is handled in compliance with applicable laws and with appropriate parental or guardian oversight.

7.1. Age Requirements and Parental Consent

• Age Requirements: DojoWell’s services are generally intended for individuals who are 18 years old. In jurisdictions where different age limits apply, we adhere to the highest applicable standard to ensure that only users who meet the legal age requirements can create accounts and interact with our platform.
• Parental Consent: In cases where our services may be accessed by minors, we require verifiable parental or guardian consent before collecting any personal information from children. If you are under the required age, you must obtain the consent of a parent or legal guardian prior to using our services. If we discover that personal information from a child has been collected without the appropriate consent, we will take prompt steps to delete that data from our systems.

7.2. Special Provisions for Minors

• Enhanced Protection Measures: For minors who access DojoWell with parental or guardian consent, we implement additional security and privacy measures to safeguard their personal information. This includes stricter access controls, enhanced data encryption, and regular reviews of data handling practices to ensure compliance with relevant child privacy laws.
• Parental Rights: Parents and guardians have the right to review, modify, or request the deletion of their child’s personal information. We provide clear instructions on how to exercise these rights and encourage parents to contact us with any concerns regarding their child’s data.
• Limited Data Processing: We restrict the collection and processing of a minor’s personal data to what is strictly necessary for providing our services. Any data collected from minors is used only for purposes directly related to their interaction with our platform and is not used for targeted marketing or other non-essential activities.

8. Cookies and Tracking Technologies

DojoWell uses cookies and similar tracking technologies to enhance your experience, analyze usage, and deliver personalized content. This section explains the types of cookies we employ, how we use them, and your options for managing these technologies.

8.1. Types of Cookies and Similar Technologies

We utilize various cookies and tracking technologies on our platform, including:

• Essential Cookies: These cookies are critical for the operation of our website and mobile app. They enable core functionalities such as security, network management, and accessibility, ensuring that you can navigate and use our services efficiently.
• Performance and Analytics Cookies: These cookies collect aggregated data about how you interact with our platform, such as pages visited, links clicked, and session durations. This information helps us understand user behavior and improve the performance and usability of our services.
• Functionality Cookies: These cookies remember your preferences and choices (for example, language or region settings), allowing us to personalize your experience and provide enhanced features.
• Advertising and Targeting Cookies: With your consent, these cookies are used to deliver personalized advertisements that are relevant to your interests. They also help us measure the effectiveness of our marketing campaigns.
• Third-Party Cookies: In some instances, we use cookies set by trusted third-party service providers to add extra functionality to our platform (such as social media integration or additional analytics). These cookies are governed by the privacy policies of the respective third parties.

8.2. How We Use Cookies

Cookies and similar tracking technologies are used for a variety of purposes, including:

• Enhancing User Experience: Cookies help us remember your settings and preferences, enabling a seamless and customized experience on our platform.
• Monitoring Performance: By analyzing aggregated data on your interactions, we can identify trends, troubleshoot issues, and continuously improve the performance and reliability of our services.
• Ensuring Security: Essential cookies support secure authentication processes and protect against fraudulent activity, contributing to a safe browsing environment.
• Personalization and Marketing: With your consent, we use cookies to tailor content and advertisements to your interests. This includes both first-party advertising and coordinated efforts with third-party partners, all while respecting your privacy choices.
• Third-Party Services: Cookies provided by third parties may be used to enable additional features and integrations on our platform. Please note that these cookies are subject to the privacy policies of the respective providers.

8.3. Your Cookie Management Choices

We are committed to giving you control over your data. You can manage your cookie preferences as follows:

• Cookie Consent: Upon visiting our platform, you will be prompted with a cookie consent banner. This allows you to accept all cookies, customize your preferences, or opt to only enable essential cookies.
• Browser Settings: Most web browsers offer settings to manage or block cookies. You can configure your browser to delete existing cookies, refuse new cookies, or notify you when a cookie is being set. Be aware that adjusting these settings may affect your ability to use certain features of our platform.
• Opt-Out Options: For advertising and tracking cookies, we may provide additional opt-out mechanisms either within the platform or via our detailed Cookie Policy. These options allow you to prevent the use of your data for personalized marketing purposes.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices, regulatory requirements, or other operational updates. This section explains how such changes will be communicated and when the revised policy will take effect.

9.1. Notification of Changes

• Advance Notice: When significant changes are made to this Privacy Policy, we will provide notice to you through our platform, via email, or by other appropriate means before the changes take effect. This ensures that you have the opportunity to review and understand the modifications.
• Posting the Updated Policy: All updates to the Privacy Policy will be posted on our website and within our application. We encourage you to periodically review this policy to stay informed about how we are protecting your information.
• Material vs. Minor Changes:
  • Material Changes: For major updates—such as changes to how we collect, use, or share your personal information—we will offer clear and prominent notification methods.
  • Minor Changes: Routine or administrative updates that do not affect your rights or significantly alter our practices may be posted without a separate notification.

9.2. Effective Date of Revised Policy

• Effective Date: Each version of this Privacy Policy will include an "Effective Date" at the top of the document. The revised policy will apply to all personal information processed after its effective date.
• Transition Period: In cases where a transition is necessary (for example, to adjust to new regulatory requirements), we may provide a grace period during which both the old and new policies are applicable, ensuring that you are informed about your ongoing rights and our obligations.

10. Contact Us

We value your trust and are committed to addressing any questions, concerns, or requests you may have regarding your privacy or our data practices. If you need further clarification about this Privacy Policy, wish to exercise your privacy rights, or have any other inquiries related to your personal information, please reach out to us using the methods outlined below.

10.1. How to Reach Us for Privacy Inquiries

• Email: You can contact our Data Protection Officer or Privacy Team by emailing us at helpdesk@dojowell.com.
• Postal Mail:Write to our Privacy Department at: DojoWell Privacy Department
  24B
  Dammam, Eastern Province, 34263
  Saudi Arabia
• Phone: For direct inquiries, please call our dedicated privacy support line at +966138133900 (Available during 9am to 5pm GMT+3.)
• Website Contact Form: Visit our Contact Us page on our website to submit your inquiry directly through our online form.

10.2. How to Submit Privacy Requests

If you wish to exercise your privacy rights or submit a request regarding your personal data (such as access, correction, deletion, or data portability requests), please follow these steps:

• Submit a Request via Email: Send your request to helpdesk@dojowell.com. Please include sufficient details to help us verify your identity and understand your request (e.g., your account information and a description of your request).
• Online Request Portal: If available, use our online privacy request portal by visiting www.dojowell.com. This portal is designed to guide you through the process of submitting, tracking, and managing your privacy requests securely.
• Mail: You may also send your request via postal mail or fax to the address or fax number provided below. Please include a copy of a valid photo identification document to help us verify your identity:
  • Mail:
    DojoWell Privacy Department
    24B
    Dammam, Eastern Province, 34263
    Saudi Arabia

Once we receive your request, we will acknowledge it and respond as promptly as possible, in accordance with applicable data protection laws and our internal procedures. We aim to resolve all verifiable requests within the timeframes specified by law.

If you have any questions about the process or require additional assistance, please do not hesitate to contact our Privacy Team using the contact methods listed above.

11. Supplemental Notices and Regional Disclosures

To ensure full transparency and compliance with applicable data protection laws, DojoWell provides supplemental privacy notices tailored to the requirements of specific regions. These disclosures explain additional rights you may have under regional laws and detail how your personal information is processed and transferred.

11.1. Privacy Notice for EU and UK Residents

• Data Transfers and Legal Bases under GDPR: For residents of the European Union (EU) and the United Kingdom (UK), DojoWell processes personal data in accordance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act. We transfer personal data outside the EU/UK only when adequate safeguards are in place—such as Standard Contractual Clauses or other approved transfer mechanisms—to ensure that your information remains protected. Our processing activities are based on one or more legal bases including your consent, contractual necessity, legitimate interests, or legal obligations.
• Rights Under the GDPR and UK Data Protection Law: EU and UK residents are entitled to a range of rights under the GDPR and UK data protection laws. These rights include, but are not limited to, the right to:
  • Access your personal data and obtain a copy in a structured, commonly used format.
  • Rectify or update inaccurate or incomplete data.
  • Request deletion of your personal data under certain circumstances (right to be forgotten).
  • Restrict or object to the processing of your data.
  • Receive your data in a portable format (data portability).
  • Lodge a complaint with a supervisory authority if you believe your data protection rights have been violated.

11.2. Privacy Notice for California Residents

• Categories of Personal Information Collected: In compliance with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), we disclose that DojoWell collects, processes, and may share various categories of personal information. These categories include:
  • Identifiers such as your name, address, email, and IP address.
  • Personal information contained in customer records, including contact and demographic data.
  • Commercial information, including details of products or services you have purchased or considered.
  • Biometric and health-related information where applicable.
  • Internet or other similar network activity data such as browsing history and interaction metrics.
• Rights Under the CCPA/CPRA: California residents have specific rights regarding their personal information, which include:
  • The right to know what personal information is collected, used, disclosed, and sold.
  • The right to request deletion of your personal information, subject to certain exceptions.
  • The right to opt out of the sale or sharing of your personal information.
  • The right to non-discriminatory treatment for exercising your privacy rights.
  • The right to request that we provide your data in a portable format for direct transfer to another service.

11.3. Additional Disclosures for Other Jurisdictions

For residents of other jurisdictions, such as Virginia, Colorado, Connecticut, Utah, Nevada, or any other regions with specific privacy laws, DojoWell provides the following additional disclosures:

• State-Specific Rights and Notices: Depending on your state of residence, you may have additional rights beyond those described above. For example, certain states provide rights related to opting out of targeted advertising or automated decision-making that produces legal or similarly significant effects. We ensure that our practices comply with state-specific laws such as the Virginia Consumer Data Protection Act (VCDPA), the Connecticut Data Privacy Act (CTDPA), the Utah Consumer Privacy Act (UCPA), the Colorado Privacy Act (CPA), and the Nevada Privacy Law (NPL).
• Additional Information and Contact Options: Residents in these regions may receive further details about their rights and our data processing practices via our supplemental state-specific privacy notices, which are available upon request or through dedicated sections on our website. Should you require any state-specific information or have questions about how these laws affect your rights, please contact our Privacy Team using the methods provided in the “Contact Us” section of this Privacy Policy.