Privacy Policy

Your privacy and personal information protection

Effective Date: July 4, 2025

Last Updated: July 4, 2025

Version: 1.0

Our Commitment to Your Privacy

Buwan Tarot ("the Company," "we," "us," "our") is committed to protecting your privacy. This Privacy Policy outlines our practices concerning the collection, use, disclosure, processing, and protection of your personal information. Our goal is to be transparent and to manage your data in accordance with the laws of the Republic of the Philippines, primarily Republic Act No. 10173, also known as the Data Privacy Act of 2012 (DPA).

✨ This policy is designed to build and maintain trust, a core objective of the regulatory framework for e-commerce in the Philippines, including Republic Act No. 11967, the Internet Transactions Act of 2023 (ITA).

Scope and Application

This Privacy Policy applies to all personal information processed by Buwan Tarot through our website (buwantarot.com), mobile applications, and all related tarot consultation services, platforms, and tools (collectively, "the Services"). It governs the data processing activities for all users of our Services, including casual visitors, registered members, and clients seeking tarot readings (collectively, "you," "your," or "Data Subject").

This policy applies to any natural or juridical person involved in the processing of personal information, including those personal information controllers and processors who, although not established in the Philippines, use equipment located in the Philippines or have a link to the country, such as by availing of our tarot consultation services.

Acceptance and Agreement

This Privacy Policy forms a legally binding contract between you and Buwan Tarot. Under Philippine law, a contract is perfected by the meeting of minds between the parties. By accessing or using our Services, creating an account, booking a tarot reading, or by taking an affirmative action such as clicking an "I Agree" or similar button or link, you signify that you have read, understood, and agree to the collection, storage, use, disclosure, and other forms of processing of your personal information as described in this Privacy Policy and our Terms of Service.

🔒 Under the DPA, consent must be a "freely given, specific, informed indication of will," which must be evidenced by written, electronic, or recorded means. Therefore, your explicit and affirmative consent will be required before you can use features of our Services that involve the processing of your personal information.

Key Definitions

Data Subject

Refers to an individual whose personal information is processed. In the context of this policy, this refers to you, the user/client.

Personal Information

Refers to any information, whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual.

Personal Information Controller (PIC)

Refers to a person or organization who controls the collection, holding, processing, or use of personal information. For the purposes of this policy, Buwan Tarot is the Personal Information Controller.

Processing

Refers to any operation or set of operations performed upon personal information, including, but not limited to, the collection, recording, organization, storage, updating or modification, retrieval, consultation, use, consolidation, blocking, erasure, or destruction of data.

Sensitive Personal Information

Refers to personal information about an individual's race, ethnic origin, marital status, age, color, religious, philosophical, or political affiliations; health information; or any other information specifically established by law to be kept classified.

The Personal Information We Collect

We collect personal information to provide our tarot consultation services and improve our Services. The types of information we collect are categorized as follows:

🌟 Information You Provide Directly to Us

  • Identity Data: Your first name, last name, username, date of birth (for astrological purposes if requested), and preferred name for readings.
  • Contact Data: Your email address, phone number (if provided), and general location (city/province) for appointment scheduling.
  • Consultation Data: Questions you ask during readings, specific life areas you want guidance on, previous reading history, and feedback on our services.
  • Financial Data: Payment information for consultation fees. We use secure third-party payment processors and do not store your complete payment card details on our servers.
  • Communication Data: Records of our correspondence including emails, chat logs, and consultation session notes (with your consent).

📱 Information We Collect Automatically

  • Technical Data: IP address, browser type and version, device information, operating system, and platform.
  • Usage Data: How you navigate our website, pages visited, time spent on site, and booking patterns.
  • Cookies: We use cookies to manage your session and remember your preferences. See our Cookie Policy for more details.

🔗 Information from Third-Party Sources

  • Payment Confirmation: Transaction data from payment processors to confirm successful payments for consultations.
  • Social Media: If you connect through social media platforms, we may receive basic profile information (with your permission).

How and Why We Use Your Personal Information

Our Lawful Bases for Processing

  • Performance of a Contract: To provide tarot consultation services, process bookings, and manage your account.
  • Legitimate Interest: To improve our services, prevent fraud, and maintain security.
  • Consent: For marketing communications and storing consultation records beyond basic service delivery.
  • Legal Compliance: To comply with tax laws and respond to legal requests.

Processing Activities

Purpose Data Types Lawful Basis
Provide tarot consultation services Identity, Contact, Consultation Data Performance of contract
Process payments and bookings Identity, Contact, Financial Performance of contract
Customer support and communication Identity, Contact, Communication Data Performance of contract
Service improvement and security Technical, Usage Data Legitimate interest
Marketing communications Identity, Contact Consent (withdrawable)
Legal compliance Identity, Contact, Financial Legal obligation

📧 Marketing Communications

We will only send you marketing materials if you explicitly opt in. You can unsubscribe at any time using the link in our emails or by contacting us directly.

Disclosure and Transfer of Your Personal Information

🤝 With Service Providers

We share information with trusted third parties who help us provide our services:

  • • Payment processors (such as GCash, PayMaya, PayPal, or bank transfer services)
  • • Cloud hosting providers (for website and data storage)
  • • Email service providers (for communications)
  • • Appointment scheduling software providers

⚖️ Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights and safety.

🌐 International Transfers

If we transfer data internationally, we ensure appropriate safeguards are in place to protect your information.

Data Security, Integrity, and Retention

🔐 Security Measures

We implement organizational, physical, and technical safeguards including:

  • • Encryption for data transmission and storage
  • • Access controls and authentication
  • • Regular security assessments
  • • Staff training on data privacy

📅 Data Retention

We retain your personal information only as long as necessary to:

  • • Provide our services
  • • Comply with legal obligations (typically 5-10 years for financial records)
  • • Resolve disputes
  • • Improve our services

Consultation records are typically retained for 2 years unless you request earlier deletion.

Account information is retained while your account is active plus 1 year after closure.

Marketing data is deleted immediately upon unsubscribe request.

Your Rights as a Data Subject

You have the following rights under Philippine law:

📋 Right to be Informed

Know what data we process about you

👁️ Right to Access

Request copies of your personal data

🚫 Right to Object

Object to processing, including marketing

🗑️ Right to Erasure

Request deletion of your data

✏️ Right to Rectification

Correct inaccurate information

📦 Right to Data Portability

Receive your data in a portable format

💰 Right to Damages

Compensation for privacy violations

📝 Right to File Complaints

Contact the National Privacy Commission

Special Provisions

👶 Children's Privacy

Our services are not intended for individuals under 18. We do not knowingly collect information from minors.

🔮 Consultation Confidentiality

We treat all tarot consultation sessions as confidential. We will not share the content of your readings unless required by law or with your explicit consent.

🔗 Third-Party Websites

Our website may link to other sites. We are not responsible for their privacy practices.

Contact Information and Updates

📝 Changes to This Policy

We may update this policy and will notify you of material changes via email or website notice.

⚖️ Governing Law

This policy is governed by Philippine law. Disputes will be resolved through:

  1. 1. Internal complaint process
  2. 2. Mediation (if needed)
  3. 3. Arbitration in Las Pinas City, Philippines

📞 Contact Us / Data Protection Officer

For privacy questions or to exercise your rights, contact us:

Email: [email protected]

Website: buwantarot.com

Back to Home