This Privacy Policy describes the policies and procedures of Healing for Good Ltd (“Healing for Good,” “we,” “our,” or “us”) on the collection, use, and disclosure of your information on www.healing-for-good.com (the “Site”) and the services, features, content, or applications we offer (together with the Site, the “Services”).
Effective Date: 19th December 2023 · Last Updated: 19th September 2025
We receive information about you from various sources, including when you create an account or purchase through our Services, when you use the Services generally, and when information about you is provided to us by third parties such as our business partners and service providers. All capitalized terms not defined here have the meanings given in our Terms of Service.
This Privacy Policy covers Healing for Good’s processing of personal data that we gather when you access or use the Services. “Personal data” means any information that identifies or can reasonably be linked to an identifiable individual, and “processing” includes collection, use, storage, disclosure, and similar activities.
This Privacy Policy also covers our treatment of any personal data that our business partners share with us or that we share with them to operate the Services. It does not apply to the practices of third parties that we do not own or control, including their websites, services, or applications (“Third Parties”). While we aim to work with Third Parties who respect your privacy, we are not responsible for their policies or practices. We encourage you to review the privacy policies of any Third Parties you access.
If you are a resident of the European Union, United Kingdom, Liechtenstein, Norway, or Iceland, you may have additional rights under the GDPR with respect to your personal data, as outlined below. For GDPR purposes, Healing for Good may be the controller of your personal data processed in connection with the Services. If you have questions about this policy or whether any part applies to you, please contact us at info@healing-for-good.com.
Note that we may also process personal data of our customers’ end users or community participants when we provide Services to our customers (for example, when a creator or member interacts with our content hosted on a third-party platform such as Podia). In those situations we may act as a processor on behalf of that customer. If we are the processor of your personal data, please contact the relevant controller (the creator, instructor, or organization you interacted with) to exercise your rights.
We collect personal data in three general ways: information you provide directly, information we obtain from Third Parties, and information collected automatically through your use of the Services.
When you provide information directly to us—such as your name, email address, billing address, country of residence, or other contact details—we use it to create and manage your account, deliver purchases, provide support, and communicate with you about the Services. If you choose to submit content in community areas, surveys, forms, or coaching interactions, you may provide additional information about yourself, including sensitive reflections you voluntarily share. By submitting content that includes information about others, you confirm you have the authority to do so.
To accept payments and provide refunds, we use third-party payment processors (for example, Stripe) who collect and process payment data such as card details. Payment information is used solely to complete transactions and is stored by the relevant processor in accordance with their terms and privacy policies. We recommend reviewing Stripe’s terms and privacy policy for more details.
We also receive information about you from Third Parties that integrate with our Services. For example, analytics providers may help us understand how visitors interact with the Site; email service providers help us send communications and manage preferences; course hosting or commerce platforms, such as Podia, share limited information necessary to operate our storefront, content delivery, and customer support. If you choose to interact with social media platforms or single-sign-on services in connection with our Services, those platforms may send us information consistent with your settings on those services.
Some information is collected automatically when you use the Services. This can include IP address, device identifiers, browser type, pages viewed, dates and times of access, referring URLs, general location derived from IP, and other usage information, including clickstream data and transaction timestamps. We also use cookies and similar technologies, described below, to recognise your browser, learn how you use the Services, and improve performance.
We use cookies, pixel tags, web beacons, and JavaScript (“Cookies”) so our servers can recognise your browser and tell us how and when you visit and use the Services. Cookies may be session-based (deleted when you close your browser) or persistent (stored after you leave the Site). Cookies help us keep you signed in, remember preferences, measure traffic and performance, and assess the effectiveness of our content and marketing. Some Cookies are placed by Third Parties to provide analytics, advertising measurement, support, and security. Your browser may allow you to refuse or delete Cookies; if you do, some features of the Services may not work properly. At this time, our Services do not respond to “Do Not Track” signals.
We may work with advertising and analytics partners who use Cookies to help us understand audience engagement and, where permitted, to show interest-based content. You can learn more about cookies and how to manage them at resources like allaboutcookies.org or youronlinechoices.eu (EU). Where required by law, we obtain consent before setting non-essential Cookies.
We process personal data to operate, improve, understand, and personalise the Services. This includes creating and managing accounts; providing content, courses, and community access; processing transactions and delivering purchases; communicating with you about updates, announcements, and offers; providing support; protecting the Services and our users from fraud, abuse, or security threats; analyzing usage and improving performance; discovering audiences that may be interested in our offerings; complying with legal obligations; resolving disputes; and enforcing our Terms of Service.
We will only process personal data when we have a lawful basis. Depending on the context, our legal bases may include consent (for example, for certain marketing communications or non-essential Cookies), contractual necessity (to perform the Services you request), compliance with legal obligations, protection of vital interests, tasks carried out in the public interest, and legitimate interests pursued by us or a third party (such as improving and securing the Services). Where we rely on legitimate interests, we do so only when those interests are not overridden by your rights and interests.
We share personal data with vendors, service providers, and agents who work on our behalf and provide services related to the purposes described in this policy or in our Terms. These include payment processors, fraud prevention and security partners, analytics providers, hosting and infrastructure providers, email and communications services, course or commerce platforms (such as Podia), customer support tools, and professional advisors. These parties may only process personal data in accordance with our instructions and applicable law.
We also share information when it is necessary to complete transactions or provide a product or service you request. This can include sharing with other users if you post in public areas; with social media or other platforms if you choose to interact through them; with third-party tools or business partners you access through the Services; or with other parties when you authorise us to do so.
We may disclose information if required by law, regulation, legal process, or governmental request; to enforce our Terms, prevent spam or abuse, investigate or protect against fraud and security threats; or to protect the rights, property, or safety of Healing for Good, our users, or the public. In connection with a merger, acquisition, financing, reorganisation, insolvency, or sale of assets, personal data may be transferred to the relevant participants as part of that transaction, subject to the terms of this policy.
By using the Services, you consent to receiving emails and other communications related to your use of the Services, including transactional messages and, where permitted, marketing communications. You can adjust your preferences or unsubscribe from marketing messages at any time; transactional communications necessary to provide the Services may still be sent.
We retain personal data for as long as your account is active or as needed to provide the Services. We may retain data longer if necessary to comply with legal obligations, resolve disputes, enforce agreements, or protect our interests. Where data is no longer required, we will delete or anonymise it. Aggregated or de-identified information that does not identify you may be retained for analytics and service improvement.
We implement appropriate technical and organisational measures designed to protect personal data, taking into account the nature of the data and the risks of processing. No method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials and for signing out when finished.
Our Services are not directed to children under 16, and we do not knowingly collect personal data from children under 16. If we learn that we have collected personal data from a child under 16, we will delete it as quickly as possible. If you believe a child has provided us with personal data, please contact us at info@healing-for-good.com.
Depending on your location, you may have rights regarding your personal data, including the right to access, correct, update, or delete it; to object to or restrict certain processing; to withdraw consent where processing is based on consent; and to request portability of your data. EU/UK residents may also lodge a complaint with their supervisory authority. New Zealand residents may contact the Office of the Privacy Commissioner. To exercise your rights, please email info@healing-for-good.com. We may need to verify your identity before responding. Some requests may be limited by applicable law or our legitimate interests.
We are based in New Zealand and may process your personal data in New Zealand and in other countries where we or our service providers operate, including the United States and the European Union. These locations may have privacy laws that differ from those in your jurisdiction. Where required, we implement appropriate safeguards for international transfers, such as contractual protections (for example, standard contractual clauses) or reliance on adequacy decisions. You can contact us for more information about these safeguards.
If you have any questions about this Privacy Policy or our data practices, or if you wish to exercise your rights, please contact:
Healing for Good Ltd
Email: info@healing-for-good.com
Postal: 3/1 Wiggins Street, Christchurch, 8081, New Zealand
We may amend this Privacy Policy from time to time. The version posted on the Site with the “Last Updated” date reflects the current policy. If we make material changes, we will take appropriate steps to notify you, which may include posting a notice on the Site or sending you an email. Your continued use of the Services after the updated policy becomes effective constitutes your acceptance of the changes.