Thank you!
We will contact you shortly
Privacy Policy
# Privacy Policy — KindVitals
**Effective date:** October 30, 2025**Published at:** [https://kindvitals.com/privacy](https://kindvitals.com/privacy)
## Who We Are
**Website/Brand:** KindVitals (the “Website”)**Domain:** [https://kindvitals.com](https://kindvitals.com)**Owner/Operator:** Editor: Grace Miller**Privacy Contact Email:** [moc.slativdnik%40ycavirp](mailto:moc.slativdnik%40ycavirp)
We operate an informational website. We do not sell products or paid services.
## Scope & Audience
This Policy explains how we collect and use information when you visit [https://kindvitals.com](https://kindvitals.com), subscribe to our emails, or contact us. It applies to visitors from the EU/EEA (GDPR), the United Kingdom (UK GDPR), and the United States (including California CCPA/CPRA, where applicable).
---
## What We Collect
### A. Information You Provide
* **Email address** if you subscribe to our newsletter.* **Message content** and **contact details** you submit via a feedback or contact form.
### B. Information Collected Automatically
* **IP address** (shortened/masked where possible).* **Device and browser data** (e.g., OS, browser type/version).* **Approximate geolocation** derived from IP (city/region level).* **Cookies and similar technologies** (see the Cookies section).* **Analytics events** (page views, scrolls, outbound clicks) that do **not** directly identify you.
We do not intentionally collect sensitive categories of personal data.
---
## Purposes & Legal Bases (GDPR/UK GDPR)
| Purpose | Description | Legal Basis || ----------------------------------- | ----------------------------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------- || **Analytics & content improvement** | Measure traffic and understand how content is used to improve the site. | **Legitimate Interests** (Art. 6(1)(f)) where only essential/aggregated data is processed; **Consent** (Art. 6(1)(a)) where non‑essential cookies are used. || **Email newsletter** | Send updates you opted in to receive; manage subscriptions. | **Consent** (Art. 6(1)(a)); you can withdraw at any time. || **Security & abuse prevention** | Protect the site from spam, attacks, and misuse. | **Legitimate Interests** (Art. 6(1)(f)). || **Respond to inquiries** | Reply to messages you send us. | **Legitimate Interests** (Art. 6(1)(f)) or **Consent** if applicable. |
We do not conduct targeted advertising based on profiling, and we do **not** sell personal data.
---
## Cookies & Similar Technologies
We use cookies and local storage to run the site and perform analytics.
**Types of cookies**
* **Strictly necessary** – required for core functionality (security, load balancing, consent storage).* **Analytics** – help us understand site usage (e.g., Google Analytics 4).* **Functional** – remember preferences (e.g., cookie consent choices).
**Consent management**We use a Consent Management Platform (CMP) (such as **CookieYes** or **Complianz**). You can manage or withdraw your consent at any time via the **“Cookie settings”** link (see **One‑Click Consent Withdrawal** below).
### Cookie Table (illustrative)
> Names may vary by region/version. Your CMP banner always shows the current list.
| Category | Name | Provider | Duration | Purpose || -------------------- | ----------------------------------------------------- | ------------------- | ------------------------- | -------------------------------------------------------------- || Strictly necessary | `__cf_bm`, `cf_clearance` | Cloudflare | 30 minutes / up to 1 year | Bot management and protection; maintain challenge/allow state. || Strictly necessary | `__vercel_no_cache` (or header-based) | Vercel | Session | Caching control for reliable delivery. || Functional (consent) | `cookieyes-consent` **or** `cmplz_consented_services` | CookieYes/Complianz | Up to 1 year | Stores your consent choices so we honor them. || Analytics | `_ga` | Google Analytics 4 | 2 years | Distinguishes sessions/visits in aggregate analytics. || Analytics | `_ga_*` | Google Analytics 4 | 2 years | Persists session state for GA4 properties. || Analytics | `_gid` | Google Analytics 4 | 24 hours | Measures how users navigate between pages. |
---
## Analytics (Google Analytics 4)
We use GA4 to understand traffic and improve content. GA4 does **not** log or store full IP addresses; IP is used for geolocation and then discarded by Google. We:
* Enable **IP anonymization/geo only** and minimize data collection.* Disable **Google Signals/Ads Personalization** and **remarketing** features.* Limit data sharing in GA4 settings and avoid linking to Google Ads for targeted ads.* Retain analytics events for **14 months** (see Retention).
**Opt‑out options**
* Use our **Cookie settings** link to disable analytics cookies.* Use Google’s **Analytics Opt‑out** browser add‑on (where available).* Use your browser’s built‑in tracking prevention.
---
## Email Newsletter (MailGun & Gmail)
* We store your **email address**, **subscription date/time**, and **consent source**.* We use **double opt‑in** where available.* Every email includes a **one‑click Unsubscribe** link.* If you unsubscribe, we stop sending emails and keep a minimal suppression record to honor your request.
**Provider(s):** MailGun (transactional/marketing mail) and Gmail (manual correspondence).
---
## Affiliate Links / Disclosure
We do **not** currently participate in affiliate programs. If this changes, we will update this Policy and clearly disclose that we may receive a commission at no extra cost to you, without influencing our editorial decisions.
---
## Sharing & Processing by Third Parties
We share data only with service providers who help us run the Website. Access is limited to what is necessary and governed by contracts (including Data Processing Agreements, where applicable).
**Categories of recipients**
* **Hosting/CDN & infrastructure:** Cloudflare (security/CDN), Vercel (hosting), AWS (infrastructure/backups).* **Analytics:** Google Analytics 4.* **Email & communications:** MailGun and Gmail.* **Consent management:** CookieYes or Complianz.
We do not sell personal data. We do not permit providers to use data for their own marketing without your consent.
---
## International Data Transfers
Where data is transferred outside your country (e.g., to the United States):
* For EU/EEA and UK visitors, transfers rely on **Standard Contractual Clauses (SCCs)** and additional safeguards where needed.* We assess provider locations and apply appropriate security measures.* Key processing locations may include the **United States** and **EU** regions, depending on the provider’s infrastructure.
---
## Retention
* **Analytics events:** retained for **14 months**.* **Email subscriptions:** retained until you **unsubscribe** or request deletion; minimal suppression records kept to honor opt‑outs.* **Security logs:** retained only as long as necessary for detection and investigation of incidents.
---
## Your Rights (GDPR/UK GDPR)
If you are in the EU/EEA or UK, you have the right to **access**, **rectify**, **erase**, **restrict**, **object** to processing (including analytics based on legitimate interests), and **data portability**. You also have the right to withdraw consent at any time.
**How to exercise:** email **[moc.slativdnik%40ycavirp](mailto:moc.slativdnik%40ycavirp)** with “Privacy Request” in the subject. We may need to verify your identity and will respond within applicable timeframes.
**Supervisory authority:** You may also lodge a complaint with your local supervisory authority.
---
## California Residents (CCPA/CPRA)
If you are a California resident, you may have the right to **know/access**, **correct**, **delete**, and **limit** the use of certain personal information. You may also have the right to **opt‑out of sale or sharing** for cross‑context behavioral advertising.
**Our practices:**
* We **do not sell** personal information.* We **do not share** personal information for **cross‑context behavioral advertising**.* You can still manage cookies via **Cookie settings** or email **[moc.slativdnik%40ycavirp](mailto:moc.slativdnik%40ycavirp)** for requests.
We will not discriminate against you for exercising your rights.
---
## Children’s Privacy
The Website is intended for individuals **16+** in the EU/UK and **13+** elsewhere. We do not knowingly collect personal data from children below these ages. If you believe a child provided personal data, contact **[moc.slativdnik%40ycavirp](mailto:moc.slativdnik%40ycavirp)** and we will delete it.
---
## Security
We use technical and organizational measures appropriate to the risk, including:
* **HTTPS** encryption in transit.* **CDN/DDoS protection** and bot mitigation.* **Access controls** and least‑privilege practices.* **Backups and logging** with restricted access.
No method is 100% secure, but we work to protect your information.
---
## External Links
Our articles may link to external sites. We are not responsible for the privacy practices of those third‑party sites. Please review their policies.
---
## One‑Click Consent Withdrawal
You can withdraw or change consent for cookies at any time:
* Click the **“Cookie settings”** link in the site footer or re‑open the CMP banner.* Turn off **Analytics** (and other non‑essential categories) and **Save**. Your preference takes effect immediately and will be remembered on your device.
---
## Changes to This Policy
We may update this Policy from time to time. We will post the updated version at **[https://kindvitals.com/privacy](https://kindvitals.com/privacy)** and revise the **Effective date** above. For material changes, we may provide additional notice (e.g., banner or email, if applicable).
---
## Contact Us
For privacy questions or requests, email **[moc.slativdnik%40ycavirp](mailto:moc.slativdnik%40ycavirp)**. If required under applicable law, we will designate an EU/UK representative and update this section.
---
## TL;DR
* We collect minimal data: what you submit to us and aggregated analytics.* Non‑essential cookies/analytics run **only with your consent**.* No sales of personal data; no targeted ads based on profiling.* You can **unsubscribe** anytime via the link in our emails.* Manage cookies via **Cookie settings**; GA4 retention **14 months**.* We use trusted providers (Cloudflare, Vercel, AWS, Google, MailGun/Gmail, CookieYes/Complianz) under contracts and safeguards (SCCs).* Contact **[moc.slativdnik%40ycavirp](mailto:moc.slativdnik%40ycavirp)** for any request.