Privacy Policy

Introduction

Welcome to Didi Being ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our website and services at didibeing.social.

All data is securely stored on Google servers based in the United States, with appropriate security measures and safeguards in place.

Information We Collect

1. Information You Provide Directly

When you sign up for our services, we collect:

• First name (optional)
• Email address
• Journal responses to our daily healing exercises
• Video viewing preferences (which videos you accessed)

2. Information Collected Automatically

When you visit our website, we automatically collect:

• IP address
• Location data (country and city)
• Device information (operating system, platform)
• Browser information (user agent)
• Page visit data (which pages you view and when)
• Cookies for legitimate visitor verification

3. Information from Third-Party Services

We integrate with:

• YouTube API to retrieve video titles
• IPInfo for geographic location data
• MailerLite for email marketing management

How We Use Your Information

We use your information to:

• Provide you with our 4-step healing course
• Track your progress through the journey
• Send course materials and reminders via email
• Improve our services and user experience
• Prevent fraud and ensure security
• Communicate important updates

Data Sharing and Third Parties

We share your data with:

• MailerLite: For email delivery and subscriber management
• Telegram: For internal notifications about user progress (not personally identifiable to others)
• Google: For secure data storage on US-based servers

We do not sell, rent, or trade your personal information to third parties.

Data Storage and Security

• All data is stored on secure Google servers based in the United States
• We use SQLite databases with appropriate security measures
• HTTPS encryption protects data in transit
• We implement bot protection and CSRF prevention
• Access to user data is password-protected and limited to authorized personnel
• Google maintains industry-standard security certifications and data protection measures

Your Rights

Under GDPR and other privacy laws, you have the right to:

• Access your personal data
• Correct inaccurate information
• Delete your data ("right to be forgotten")
• Export your data in a portable format
• Object to certain data processing
• Withdraw consent at any time

To exercise these rights, contact us at hey at didibeing dot social.

Journal Data

Your journal responses contain sensitive personal reflections. We:

• Store them securely and encrypted
• Never share them publicly or with third parties
• Use them only to track your course progress
• Allow you to request deletion at any time

Cookies

We use essential cookies to:

• Verify legitimate visitors
• Track your journey progress
• Maintain your session
• Remember your preferences

You can control cookies through your browser settings.

Children's Privacy

Our services are not intended for children under 18. We do not knowingly collect data from minors.

International Data Transfers

Your data is stored on Google servers located in the United States. If you are located outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States. Google maintains appropriate safeguards and security measures to protect your data, including compliance with international data protection frameworks. By using our services, you consent to the transfer of your information to the United States.

Data Retention

We retain your data for as long as necessary to provide our services and comply with legal obligations. You may request deletion at any time.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email.

Contact Us

For privacy-related questions or concerns, please contact:

• Email: hey at didibeing dot social.
• Website: https://didibeing.social

Legal Basis for Processing

We process your data based on:

• Consent: For marketing emails and sensitive journal data
• Contract: To provide our course services
• Legitimate interests: For security and fraud prevention

By using our services, you acknowledge that you have read and understood this Privacy Policy.

---

This Privacy Policy is governed by the laws of the European Union. For EU residents, this policy complies with the General Data Protection Regulation (GDPR).