We may collect and process the following information about you:
The security of your personal information is important to us. We follow generally accepted standards to protect the personal information submitted to us, both during transmission and once it is received. If you have any questions about the security of your personal information, you can contact us at email@example.com. Except as described under the “Disclosure of Your Information” section below, we do not provide your personal information to any third party without your specific consent, as defined by applicable law.
If you sign up to receive promotional materials from us via email we will use the information you give us to provide the communications you have requested.
If you inform us that you wish to cancel email promotional materials by selecting “unsubscribe” at the bottom of such communication or by emailing us at firstname.lastname@example.org, we will remove you from our mailing list. If you no longer wish to receive push notifications, you may turn them off at the device level.
If you provide your phone number to us directly or through a third-party for the specific purpose of receiving an SMS message with a link to our Apps, you will receive such SMS message (the “SMS Service”). Standard text message rates will apply.
Headspace and our analytics partners use technologies such as cookies, beacons, tags, and scripts to enable a service to recognize your device so you don't have to provide the same information several times during one task, recognize that you may have already given a username and password so you don't need to do it for every web page requested, and to measure how people are using the Products.
We use local storage, such as HTML5, to store content information and preferences. Third parties with whom we partner to provide certain features on the Products also use HTML5 to collect and store information. Various browsers may offer their own management tools for removing HTML5.
We partner with third parties, such as Facebook and Google, to manage our advertising of the Products on other sites or platforms as well as across your other devices based on your past visits to our website. Our third party partners may use technologies such as cookies to gather information about your activities within the Products to deliver such advertising to you, such as retargeting ads. We will acquire consent from you in order to use such trackers for advertising purposes to the extent required by applicable law. We currently do not respond to do-not-track signals. For more information about interest-based ads, including how to opt-out of having your web-browsing information used for behavioral advertising purposes, please visit www.aboutads.info/choices. Please note that this does not opt you out of being served ads. You may continue to receive generic ads on these third party platforms. You may also opt out of receiving ads across devices by adjusting your ad preference in your Google account.
We use third party trackers to let us know when users have visited the Products by “clicking-through” our sponsored advertising or content hosted on third party platforms. The Products use Google Analytics code to gather statistical information. Google Analytics sets cookies to help us accurately estimate the number of visitors to the Products and the volumes of usage of the Products. This is done to ensure that the Products are available when you want them and are fast. For more information on how Google Analytics processes this information, visit www.google.com/analytics.
We use mobile analytics software to allow us to better understand the functionality of our mobile software on your phone. This software may record information such as how often you engage with the Products, the events that occur within the Products, aggregated usage and performance data, and where the Applications were downloaded from. We may link the information we store within the analytics software to any personal information you submit within the mobile application.
As true of most websites, we gather certain information and automatically and store it in log files. This information may include Internet Protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data.
If you receive the HTML-formatted version of our email newsletter, your opening of the newsletter is notified to us and saved. Your clicks on links in the newsletter are also saved. These and the open statistics are used in aggregate form to give us an indication of the popularity of the content and to help us make decisions about future content and formatting.
All information you provide to us through the Products is stored on our secure servers located in the US. Any payment transactions will be encrypted using SSL technology; all payment information is stored with our payment processor and is never stored on Headspace’s servers. Where we have given you (or where you have chosen) a password which enables you to access certain parts of the Products, you are responsible for keeping this password confidential. We ask you not to share a password with anyone, and suggest that your change your password frequently.
Unfortunately, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your personal information, we cannot guarantee the security of your information transmitted to the Products; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.
There is interest by large consumer communities (companies, universities, hospitals, etc.) (“Communities”) to introduce the Products to their employees and members. If you have registered to use the Products through a code or other registration credential furnished by a Community (a “Community Subscription”), the Community will have access to your name and the date you registered to use the Products and will have access to your usage information on an aggregated basis with all other members of the Community that are using the Products. Your Community may also have access to your usage information on an individual basis if you have provided appropriate consent under applicable law for such sharing. For example, many employers are offering incentive programs based on employee participation in health & wellness programs and desire to better understand how each of their individual employees is using the Products.
You can log into our Products using sign-in services such as Facebook Connect or an Open ID provider. These services will authenticate your identity, provide you the option to share certain personal information (such as your name and email address) with us, and to pre-populate our sign-up form. Services like Facebook Connect give you to the option to post information about your activities on our Products or to your profile page to share with others within your network.
Upon request, Headspace will provide you with information about whether we hold, or process on behalf of a third party, any of your personal information. To request this information, please email email@example.com.
You may access your personal information to modify or update at any time via an online account, or by emailing firstname.lastname@example.org.
To request the deletion of your personal data that we have on file please email us at email@example.com. Upon request, Headspace will permanently and irrevocably anonymize your data such that it can never be reconstructed to identify you as an individual.
We will respond to your request in a reasonable timeframe.
We use information held about you in the following ways:
We do not disclose information about identifiable individuals to companies that host advertisements on our behalf, but we may provide them with aggregate information about our users (for example, we may inform them that 500 men aged under 30 have clicked on their advertisement on any given day). We may also use such aggregate information to help advertisers reach the kind of audience they want to target.
We may disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries.
We may also disclose your personal information to third parties as follows:
To the extent that you have provided appropriate consent under applicable law to certain processing activities, such as use of trackers for the purpose of retargeting activities, such consent can be withdrawn at any time by emailing firstname.lastname@example.org.
The Products may, from time to time, contain links to and from the Products of our partner networks, advertisers and affiliates. If you follow a link to any of these external websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these websites or their policies. Please check these policies before you submit any personal information to these external websites.
Our Products include social media features, such as the Facebook Like button, and widgets, such as the “Share This” button, or interactive mini-programs. These features may collect your Internet protocol address, which page you are visiting on or Products, and may set a cookie to enable the feature to function properly. Social media features and widgets are hosted by a third party or hosted directly on our Products. Your interactions with these features are governed by the privacy statement of the company providing it.
Apple iOS users may opt-in to allow the Products to provide data regarding the amount of minutes meditated to the Apple iOS “Health” application for display. This data will not be shared with third parties or used for marketing purposes.
You must be 18 years of age, or the age of majority in your province, territory or country, to sign up as a registered user of the Products. Individuals under the age of 18, or the applicable age of majority, may utilize the Products only with the involvement and consent of a parent or legal guardian, under such person's account and otherwise subject to these Terms.
Headspace users may have the ability to post content to one or more Headspace forums. All such users may request and obtain removal of such posted content by contacting Headspace at email@example.com and specifically identifying the content to be removed. Please be advised that any such removal does not ensure complete or comprehensive removal of all traces of the content posted on the Headspace forum(s).
Our registered agent within the European Economic Area is Tricor, which can be contact at Tricor Suite, 4th Floor, 50 Mark Lane, London, EC3R 7QR.
We participate in and have certified our compliance with the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield Frameworks. Headspace is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List. https://www.privacyshield.gov/list
Headspace is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Headspace complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.
For personal data covered by Privacy Shield, you have the ability to opt-out of whether such personal information is disclosed to a third-party or is to be used for a purpose that is materially different for the purpose for which it was originally collected or subsequently authorized. You can contact Headspace at firstname.lastname@example.org in order to make such choices.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Headspace is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Headspace may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Under certain conditions, more fully described on the Privacy Shield website https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.