Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your personal information when you use Mindlifting.

Effective Date: June 05, 2025

This Privacy Policy (“Policy”) sets forth the terms under which mindlifting.co Instant Growth Consulting Ltd (“Company,” “we,” “us,” or “our”) collects, uses, discloses, and protects your personal data when you access or use our website, online services, or any affiliated mobile applications (collectively, the “Services”). This Policy is incorporated into and governed by our Terms of Use.

By accessing or using our Services, you acknowledge that you have read, understood, and agreed to this Policy. If you do not agree with any terms of this Policy, you must discontinue use of the Services.

1. Controller of Personal Data

The Company is the data controller for purposes of applicable data protection laws and is responsible for the collection, use, and processing of your personal information.

Contact Information:

Instant Growth Consulting Ltd.

250 University Ave, Toronto, ON M5H 3E5, Canada

Email: [email protected]

2. Information We Collect

We may collect and process the following categories of personal data:

a. Information Provided by You

- Full name, email address, phone number, physical address

- Account credentials (username, password)

- Payment and billing information

- Any personal data you voluntarily provide via forms, emails, account registration, purchases, or communications

b. Automatically Collected Information

- IP address, browser type, operating system, device information

- Usage data including access times, visited pages, clickstream data

- Location data (if location services are enabled)

- Data collected through cookies, web beacons, and similar technologies

We do not knowingly collect or solicit personal data from individuals under 18 years of age. If you are under 18, do not submit any personal information.

3. Legal Basis for Processing (Jurisdiction-Specific Frameworks)

If you are located in the European Economic Area (EEA), we will only process your personal data when one or more of the following lawful bases applies, as outlined in the General Data Protection Regulation (GDPR):

- Consent: You have provided clear, informed, and explicit consent for us to process your personal data for a specific purpose. You may withdraw this consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

- Performance of a Contract: Processing is necessary to enter into or perform a contract with you, such as to provide you access to a product or service you have requested, including billing, user support, and other related functionalities.

- Compliance with a Legal Obligation: Processing is required for us to comply with a legal or regulatory obligation under EU, member state, or other applicable laws (e.g., tax reporting, anti-money laundering, or consumer protection obligations).

- Legitimate Interests: Processing is necessary for our legitimate business interests or those of a third party, such as fraud prevention, maintaining the security of our systems, improving user experience, or conducting marketing activities. This basis only applies where such interests are not overridden by your rights, freedoms, or interests.

In certain cases, we may also process your personal data to protect your vital interests or those of another person, or when processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.

You have the right to request more details on the specific legal basis that applies to your data. Please contact us using the information provided in the "Contact Us" section for further clarification.

b. Canada (PIPEDA)

For individuals located in Canada, we process your personal data in accordance with the Personal Information Protection and Electronic Documents Act (PIPEDA). Your personal information will only be collected, used, or disclosed with your knowledge and consent, except where otherwise permitted or required by law. You have the right to access and correct your personal data, and to challenge our compliance with PIPEDA principles by contacting us.

c. United States / California (CCPA/CPRA)

If you are a resident of California, you may have specific rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), including the right to:

- Request access to the categories and specific pieces of personal information we have collected about you.

- Request deletion of your personal information, subject to certain exceptions.

- Opt out of the sale or sharing of your personal information, if applicable.

- Correct inaccurate personal data we hold about you.

- Limit the use and disclosure of sensitive personal information.

We do not sell personal data as defined under the CCPA. To exercise any of these rights, you may contact us at [email protected].

d. Other Jurisdictions

If you are located outside of the jurisdictions specifically mentioned above, we process your data in accordance with applicable local data protection laws to the extent they apply. We strive to apply universal privacy principles across all users, including transparency, consent, security, and user control over personal data.

Consent Management We only process your personal data when you have clearly given your consent — for example, by submitting your information through our forms, subscribing to receive content, or completing a purchase.

Our systems, including those provided by GoHighLevel, automatically log your consent when you opt in or complete a transaction. This includes the date, time, and method of submission, which allows us to maintain an auditable record of your permission in accordance with applicable data protection laws.

You may withdraw your consent at any time using the unsubscribe links provided or by contacting us directly.

4. Use of Information

We use the personal and technical data we collect for a variety of legitimate business purposes, including but not limited to:

- Service Provision and Account Management: To enable and administer your access to our Services, maintain your user account, remember your preferences, provide customer support, and fulfill your service requests.

- Payment Processing and Order Fulfillment: To process transactions, verify payment information, deliver digital products or services, issue confirmations and receipts, manage billing disputes, and prevent fraudulent activities.

- Customer Support and Communication: To respond to inquiries, troubleshoot technical issues, resolve complaints, and provide information about your account or our Services.

- Security and Technical Integrity: To detect, prevent, and respond to actual or potential fraud, abuse, security threats, and technical issues that could harm users, the platform, or others.

- Marketing and Promotional Communications: Where legally permitted or based on your explicit consent, we may send you emails or messages about new features, promotional offers, newsletters, surveys, and other marketing content. You can opt out at any time by using the unsubscribe link or contacting us directly.

- Analytics and Service Improvements: To evaluate usage trends, measure performance, gather demographic data, conduct research, and improve the design, content, and functionality of our Services and user interfaces.

- Legal Compliance and Protection: To comply with applicable legal obligations, respond to lawful requests, court orders, or subpoenas, and protect our rights, property, or the safety of our users and the public.

- Internal Business Purposes: Including auditing, data analysis, statistical research, and operational management to ensure the sustainability and performance of our organization.

5. Disclosure of Personal Data

We may share your personal data in limited circumstances and only when necessary for the operation of our Services or as required by law. Specifically, disclosures may occur under the following categories:

- Third-party service providers: We may share your data with trusted third parties who provide essential services such as website hosting, email delivery, payment processing, customer relationship management (CRM), analytics, marketing, or cloud storage. All such providers are bound by strict confidentiality and data processing agreements and are only permitted to use your data to the extent necessary to perform their services.

- Affiliates and subsidiaries: We may share data internally across our affiliated companies and subsidiaries when necessary for legitimate business purposes, including shared infrastructure, account servicing, or customer support. All entities operate under the same high standards of data protection outlined in this Policy.

- Professional advisors: This includes legal counsel, accountants, auditors, or insurance providers where disclosure is necessary to obtain advice, comply with legal requirements, or manage business risk.

- Legal and regulatory obligations: We may disclose your data to law enforcement, courts, governmental authorities, or other regulatory bodies when required by law, subpoena, legal process, or to protect our legal rights, enforce our policies, prevent fraud, or ensure security and safety.

- Business transfers: In the event of a corporate transaction (e.g., merger, acquisition, asset sale, restructuring), personal data may be transferred to the relevant third party as part of the business assets. We will take reasonable steps to ensure that any receiving party agrees to handle the data in a manner consistent with this Policy.

We do not sell, lease, or rent your personal data to advertisers, data brokers, or third-party marketers. Any marketing communications you receive will come directly from us or from service providers acting solely on our behalf and under our instruction.

6. Data Security

We implement commercially reasonable physical, technical, and organizational safeguards to protect your data from unauthorized access, disclosure, alteration, or destruction. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security. You acknowledge and accept this risk by continuing to use our Services.

We disclaim liability for unauthorized access, disclosure, or loss of personal data that occurs due to causes beyond our control, including but not limited to cyberattacks, data breaches affecting our vendors, or force majeure events.

7. Your Rights and Choices

Depending on your jurisdiction, you may have rights including:

- Right to access and receive a copy of your personal data

- Right to rectify or delete inaccurate or outdated data

- Right to restrict or object to processing

- Right to data portability

- Right to withdraw consent at any time

- Right to report concerns to a data protection authority where required by law. However, we encourage you to contact us directly first so that we may resolve your concerns efficiently and to your satisfaction. We are committed to protecting your privacy and addressing any issues transparently and promptly.

To exercise your rights, please contact us at [email protected]. We aim to respond to verified personal data requests in a timely manner, in accordance with applicable data protection laws. The exact timeframe may depend on the complexity of the request and our ability to confirm your identity. While we make every reasonable effort to respond without undue delay, we reserve flexibility where legally permissible. We may require identity verification prior to fulfilling your request. We reserve the right to deny requests that are manifestly unfounded or excessive.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies (including beacons, tags, scripts, pixels, and device fingerprinting) to collect information about your browsing behavior, preferences, and interactions with our Services. These technologies help us enhance user experience, personalize content, remember your preferences, secure your account, monitor traffic, and perform analytics and marketing activities.

a. Types of Cookies We Use:

- Essential Cookies: Required for basic website functionality, such as secure login and navigation.

- Performance/Analytics Cookies: Help us understand how visitors interact with our website, which pages are most popular, and how users navigate through our content (e.g., Google Analytics).

- Functionality Cookies: Enable us to remember your preferences and settings.

- Advertising/Targeting Cookies: Used to deliver advertisements more relevant to your interests and to limit how many times you see an ad. These may be set by third-party advertising networks.

b. Duration of Cookies:

- Session Cookies: Temporary and deleted when you close your browser.

- Persistent Cookies: Remain on your device for a set period or until deleted manually.

c. Third-Party Technologies:

We allow certain third parties to set and access cookies and similar technologies through our Services. These third parties may collect information over time and across websites to deliver personalized ads, analyze performance, and monitor user engagement. We do not control the operation of third-party cookies. Notable examples include:

- Google Analytics (https://policies.google.com/technologies/partner-sites)

- Facebook Pixel / API

- LinkedIn Insight Tag

You can manage your cookie preferences by adjusting your browser settings to accept or reject cookies, or by using cookie consent tools we provide. If you disable or reject cookies, certain features of the Services may not function properly.

d. Do Not Track (DNT) Signals:

Some browsers offer a "Do Not Track" (DNT) option. Our Services do not currently respond to DNT signals due to the lack of a consistent industry standard for compliance.

For more information about cookies and how to manage or delete them, visit:

- www.allaboutcookies.org

- www.youronlinechoices.com (EU-based users)

- www.aboutads.info/choices (U.S.-based users)

9. Retention of Data

We retain personal data for as long as necessary to fulfill the purposes described in this Privacy Policy, including providing our Services, processing transactions, responding to user inquiries, improving user experience, complying with legal obligations, and protecting our legitimate business interests, unless a longer retention period is required or permitted by law.

The exact retention period depends on the nature of the data, the context in which it was provided, and applicable legal requirements. Once the data is no longer necessary for the purpose for which it was collected, we will securely delete, anonymize, or aggregate it, unless we are legally obligated to retain it for a longer period.

For example, we may retain:

- Transactional records for accounting and tax purposes as required by law;

- Contact records to maintain communication history and enforce agreements;

- Aggregated, non-identifiable data for analytics or reporting indefinitely.

If you request deletion of your personal data and there is no overriding legal obligation or legitimate interest requiring its retention, we will proceed with the deletion in accordance with our internal procedures and applicable data protection laws.

For more information about data retention or to request deletion of your data, you may contact us at [email protected]. for which it was collected, as outlined in this Policy, including but not limited to: providing and maintaining our Services, processing transactions, communicating with users, complying with legal obligations, resolving disputes, enforcing our agreements, and protecting our legitimate business interests.

The retention period depends on the nature of the data and the purposes for which it is processed. When personal data is no longer necessary for these purposes, or when a user exercises their right to request deletion (subject to legal or contractual restrictions), we will either delete it or render it permanently anonymized.

We may retain personal data for longer periods where necessary to:

- Comply with applicable laws, regulations, or legal obligations (e.g., tax, accounting, fraud prevention);

- Enforce our rights or respond to legal claims;

- Maintain accurate business and financial records;

- Prevent re-registration by individuals subject to account suspension or termination.

In cases where data is aggregated or anonymized in a way that it can no longer be associated with an identified or identifiable individual, we reserve the right to retain such data indefinitely for statistical, analytical, or research purposes without further notice to you.

Specific data retention timelines may vary depending on contractual commitments, user consent, and jurisdictional data protection laws (e.g., GDPR, CCPA). For further details regarding our data retention practices or to request deletion, you may contact us at [email protected].

10. Cross-Border Data Transfers

Our Services are hosted on infrastructure provided by Go High Level, which primarily uses Amazon Web Services (AWS) data centers located in the United States. Your personal data may be transferred to, stored in, or processed in jurisdictions other than your own, including countries where data protection laws may offer a lower level of protection than that of your home jurisdiction. These transfers are necessary for us to provide the Services and fulfill our contractual obligations to you.

By accessing or using the Services, you acknowledge and explicitly consent to the transfer of your personal information to jurisdictions outside of your country of residence. These transfers may occur through our servers, service providers, subcontractors, or third-party vendors located abroad.

Where applicable and required under law, we implement appropriate safeguards to ensure an adequate level of protection for cross-border data transfers. This may include:

- Standard Contractual Clauses (SCCs) approved by the European Commission;

- Binding Corporate Rules (BCRs) where applicable;

- Data transfer agreements in line with applicable laws;

- Reliance on adequacy decisions by relevant authorities.

If you are a resident of the European Economic Area (EEA), United Kingdom, or Switzerland, you have the right to request further information about the mechanisms and safeguards we use for international data transfers. To do so, please contact us at [email protected]., stored in, or processed in jurisdictions other than your own, including countries where data protection laws may offer a lower level of protection than that of your home jurisdiction. These transfers are necessary for us to provide the Services and fulfill our contractual obligations to you.

Where applicable and required under law, we implement appropriate safeguards to ensure an adequate level of protection for cross-border data transfers. This may include:

- Standard Contractual Clauses (SCCs) approved by the European Commission;

- Binding Corporate Rules (BCRs) where applicable;

- Data transfer agreements in line with applicable laws;

- Reliance on adequacy decisions by relevant authorities.

11. Third-Party Links

Our Services may contain hyperlinks or embedded references to third-party websites, applications, platforms, or online services that are not operated or controlled by us (collectively, "Third-Party Sites"). These links are provided solely for your convenience and do not imply any endorsement, affiliation, or recommendation by us.

You acknowledge and agree that we are not responsible for the availability, content, privacy practices, data collection, advertising, products, or any other materials or services made available through any Third-Party Sites. Such sites operate independently from us and have their own privacy policies, terms of use, and user agreements, which we strongly recommend that you read and understand before engaging with such Third-Party Sites.

By accessing or using any Third-Party Sites, you do so at your own risk. We expressly disclaim any and all liability arising from your interaction with such sites, including but not limited to any damages or losses incurred as a result of sharing personal information or entering into transactions through such platforms. Furthermore, we are not responsible for any data breaches, unauthorized use, or misuse of your information by third-party service providers.

We do not control, and are not responsible for, any aspect of the relationship between you and any Third-Party Site, including but not limited to customer service, refunds, delivery, accuracy of information, or fulfillment of contractual obligations. All complaints or inquiries regarding third-party interactions must be directed to the relevant third-party operator.

12. Public Platforms and Social Media

Our Services may include links to or integrations with third-party platforms such as Facebook, Instagram, YouTube, LinkedIn, TikTok, or other public forums where users may engage with us or each other. Please note that these platforms are governed by their own respective terms of use and privacy policies, which we do not control. Your activity on such external platforms is subject solely to the terms and privacy practices of those providers.

We do not endorse and are not responsible for the actions, statements, or behavior of any third-party users on these platforms. This includes, but is not limited to, user-generated content such as comments, reviews, endorsements, or opinions expressed on any post, story, or shared content linked to or from our Services.

You acknowledge that information shared on social media or public platforms is inherently public and can be copied, re-shared, or permanently archived by third parties beyond our control. We assume no liability for any harm, loss, or misuse of data resulting from your interactions on those platforms. We strongly advise you to avoid disclosing personal, sensitive, or confidential information on public threads.

We reserve the right—but are not obligated—to monitor, moderate, remove, or block any user-generated content linked to our Services that we, in our sole discretion, consider offensive, illegal, defamatory, infringing, harassing, or otherwise inconsistent with our policies or values.

If you observe inappropriate or harmful conduct involving our brand or community on a public platform, please report it directly to the platform provider as well as to our support team so we may take appropriate action within our scope.

13. Limitation of Liability

To the maximum extent permitted by applicable law, [Your Website Name], its affiliates, officers, directors, employees, agents, licensors, or service providers shall not be held liable for any damages of any kind, including but not limited to direct, indirect, incidental, special, consequential, or exemplary damages, whether foreseeable or unforeseeable, arising out of or in connection with your access or use of the Services, your reliance on any data, information, or content available through the Services, or the loss, misuse, unauthorized access, disclosure, alteration, or destruction of your personal data.

This limitation of liability applies regardless of the legal theory under which such damages are sought (whether contract, tort, negligence, strict liability, or otherwise) and even if we have been advised of the possibility of such damages. Without limiting the generality of the foregoing, we shall not be liable for:

- Any loss of profits, business interruption, loss of business opportunity, goodwill, or data;

- Any unauthorized access to or use of our servers and/or any personal data stored therein;

- Any bugs, viruses, trojan horses, or the like which may be transmitted to or through our Services by any third party;

- Any defamatory, offensive, or illegal conduct of any third party;

- Errors or omissions in any content or for any loss or damage of any kind incurred as a result of the use of any content transmitted or otherwise made available via the Services.

Notwithstanding the foregoing, in jurisdictions that do not allow the exclusion or limitation of certain damages, our liability shall be limited to the fullest extent permitted by applicable law. In no event shall our aggregate liability exceed the amount paid by you to us, if any, for the Services in the six (6) months preceding the claim.

14. Commercial Disclaimers

The Services may contain references to business opportunities, earnings, income potential, or performance results. All such references are provided strictly for educational and illustrative purposes. We do not guarantee, represent, or warrant that you will achieve any specific level of income or success. Your results will depend on numerous variables including, but not limited to, your background, experience, skill, dedication, financial resources, industry conditions, and timing.

All testimonials and examples cited on the Services represent exceptional outcomes that are not typical and should not be viewed as a promise or guarantee of results for all users. No assurances are made that past performance is indicative of future performance. You should perform your own due diligence and consult with your own legal, financial, or business advisors before relying on any information provided by the Services.

Some content may reference or link to third-party products or services. We may receive compensation or commissions through affiliate relationships with third-party vendors, advertising networks, or programs. However, such compensation does not influence the integrity of our recommendations. All reviews and recommendations reflect our genuine opinions and are provided in good faith.

You are under no obligation to use our affiliate links and may access the same products or services through non-affiliate channels. We advise you to independently verify all claims, product information, and offers directly with the provider before making a purchase decision. You assume full responsibility for your use of any products, services, or information obtained through our Services.

15. Changes to This Policy

We reserve the right to amend, revise, update, or otherwise modify this Privacy Policy at our sole discretion, at any time and without prior notice, except where notice is legally required. All changes will be posted on this page and the "Effective Date" at the top will be updated to reflect the most recent revision.

Material changes may include, but are not limited to, significant modifications in the categories of personal information collected, how such information is used, the conditions under which it may be disclosed, or changes affecting your rights under applicable laws. Where required by applicable law, we will notify you of such changes through a clearly visible notice on the homepage of our website, through email, or through other reasonable means.

You are encouraged to review this Privacy Policy periodically to ensure that you understand our current practices regarding personal data. Your continued use of our Services after the effective date of any update constitutes your agreement to be bound by the terms of the revised Policy.

17. Payment Information

We do not directly collect or store your payment instrument details (such as credit card numbers or CVV codes). All payment processing is securely handled by third-party providers integrated through our platform, such as Stripe, PayPal, and others authorized to process transactions on our behalf.

These third-party processors handle your payment data in accordance with their own privacy policies, which we recommend you review. For convenience, we have listed some of them below:

- Stripe: https://stripe.com/privacy

- PayPal: https://www.paypal.com/us/webapps/mpp/ua/privacy-full

- GoHighLevel: https://www.gohighlevel.com/privacy-policy

When you make a payment through our Services, your payment data is transmitted directly to the relevant processor over a secure, encrypted connection. We do not retain or access full payment details on our own systems.

18. Contact Us

If you have any questions about this Privacy Policy, or if you would like to exercise your rights, please contact us at: