Skip to content
Quietude Collective

Legal

Privacy Policy.

Effective April 30, 2026

Draft — replace before launch

This document is a placeholder. Have it reviewed by qualified counsel and replace the copy before the site goes live.

1. Who we are

Quietude Collective (“we”, “us”, “our”) is the data controller responsible for the personal information collected through quietudecollective.coand related services (the “Services”). This Privacy Policy explains what we collect, why we collect it, and the choices you have.

2. What we collect

We collect only the information needed to operate the Services:

  • Account information. Your name, email address, time zone, and password (stored as a hash, never in plain text).
  • Session & retreat history. Records of the sessions you register for, retreat applications and answers, and any dietary preferences you share.
  • Payment information. Stripe processes all card details. We retain a Stripe customer reference, the dollar amount, and the status (paid, refunded, failed). We do not see or store full card numbers.
  • Email engagement. Resend records when transactional emails are delivered, opened, or bounce. We use this to confirm deliverability — not for marketing analytics.
  • Server logs. Standard request logs (IP, timestamp, user-agent) retained for a short window for security and debugging.

3. How we use your information

We use your information to:

  • Run your account, send confirmations, and deliver sessions.
  • Process payments, refunds, and the deposit-and-autopay flow for retreats.
  • Send transactional emails (registrations, reminders, gifts, retreat updates).
  • Review retreat applications and communicate decisions to you.
  • Keep the Services secure and prevent abuse.
  • Comply with our legal obligations.

We do not sell your personal information, and we do not use it to train any third-party machine-learning models.

4. How we share your information

We share information only with the service providers needed to operate the Services:

  • Neon— managed PostgreSQL hosting for the member database.
  • Stripe— payment processing.
  • Resend— transactional email delivery.
  • Vercel— web hosting and edge logs.
  • Zoom— the platform on which Sunday sessions are held. We do not collect your Zoom usage data; Zoom’s own policy applies during the session itself.

Each provider is contractually bound to handle your data only for the purposes we specify. We may also share information when required by law or to protect rights, safety, or property.

5. Cookies & similar technologies

We use a small number of cookies that are strictly necessary for the site to function — for example, your sign-in session token. We do not run third-party advertising or behavioural-analytics cookies.

6. Retention

We retain account data for as long as your account is active and for a reasonable period afterwards to handle legal, tax, and refund obligations. Application answers and session-history are kept while useful for community context. You may request deletion at any time by writing to privacy@quietudecollective.co.

7. Your rights

Depending on where you live, you may have the right to:

  • Access the personal information we hold about you.
  • Correct information that’s inaccurate.
  • Delete your account and personal information.
  • Receive a portable copy of your information.
  • Object to or restrict certain uses of your information, where applicable law allows.

To exercise any of these rights, write to privacy@quietudecollective.co. We will respond within 30 days.

8. Children

The Services are not directed at children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with information, contact us and we will remove it.

9. International transfers

Our service providers may process data outside your home country. We rely on appropriate safeguards (such as standard contractual clauses) to protect transfers as required by law.

10. Security

We use industry-standard practices — TLS for data in transit, hashed passwords, server-side input validation, scoped database credentials, and least-privilege access — to protect the information you give us. No system is perfectly secure; please use a strong, unique password and notify us promptly of any concern.

11. Changes to this policy

We may update this Privacy Policy from time to time. If the changes are material we will notify members by email and update the effective date above.

12. Contact

Privacy questions: privacy@quietudecollective.co. General contact: hello@quietudecollective.co.