top of page

Privacy Policy

A legal disclaimer

Last updated: October 2025

1. Introduction

Welcome to All the Above. Your privacy is important to us. This Privacy Policy explains what information we collect, how we use it, who we share it with, how we protect it, and your rights regarding that information when you visit our website or use our services.

By using our website, you consent to the practices described in this policy.

2. What Information We Collect

We may collect the following types of information:

  • Personal Information: details you provide voluntarily, such as your name, email address, phone number, or billing details when booking a session, subscribing to newsletters, or contacting us.

  • Payment Information: processed securely via third-party payment providers. We do not store complete payment card details on our servers.

  • Usage Data / Analytics: IP addresses, browser type/version, pages viewed, time spent, and referring/exit pages.

  • Cookies and Tracking Technologies: we may use cookies, pixels, or similar tools to improve user experience, track analytics, and support marketing efforts.

3. How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve our services.

  • Communicate with you, including responding to inquiries, sending updates, and delivering newsletters (if you’ve opted in).

  • Process bookings or payments.

  • Monitor and analyze usage trends to improve website functionality and content.

  • Send promotional messages (only with your consent, where required by law).

  • Comply with legal obligations or protect our rights.

4. Sharing Your Information

We do not sell your personal information. We may share it only with:

  • Service Providers / Vendors: such as payment processors, email services, and analytics providers.

  • Legal Authorities: when required to comply with law or legal proceedings.

  • Business Transfers: if part of our business is sold or merged, your data may transfer under confidentiality protections.

5. Cookies and Tracking Technologies

We may use cookies to improve site performance, analyze traffic, and personalize content.

  • You can adjust cookie preferences in your browser settings.

  • For EU/EEA visitors, we will seek consent before placing non-essential cookies (GDPR requirement).

  • For California visitors, you may opt out of “sale” or “sharing” of data under CCPA (see Section 8).

6. Data Retention

We keep your personal information only as long as necessary to fulfill the purposes outlined here, or as required by law. Once no longer needed, data will be securely deleted or anonymized.

7. Your Rights

Under GDPR (EU/EEA/UK):

If you are located in the EU/EEA/UK, you have the following rights:

  • Access to the personal data we hold about you.

  • Correction of inaccurate or incomplete data.

  • Deletion of your data (“right to be forgotten”).

  • Restriction of or objection to processing.

  • Data portability (receive a copy of your data in a machine-readable format).

  • Withdraw consent at any time, where processing is based on consent.

  • Lodge a complaint with your local Data Protection Authority.

Under CCPA/CalOPPA (California):

If you are a California resident, you have the right to:

  • Know what personal information we collect, use, and disclose.

  • Request access to the categories and specific pieces of personal information we hold about you.

  • Request deletion of your personal information (with certain exceptions).

  • Opt out of the sale or sharing of your personal information (we do not sell your information).

  • Not be discriminated against for exercising your privacy rights.

To exercise any of these rights, please contact us (see Section 12).

8. Children’s Privacy

Our website is not directed toward children under 13 (or under 16 in the EU/EEA). We do not knowingly collect personal data from children without parental consent. If we discover we have collected such data, we will delete it promptly.

9. Security

We take reasonable measures to protect your information, including administrative, technical, and physical safeguards. However, no method of transmission or storage online is completely secure.

10. International Data Transfers

If you are located outside the United States your information may be transferred to and processed in countries with different data protection laws. Where required, we implement safeguards such as Standard Contractual Clauses (SCCs) under GDPR.

11. Third-Party Links

Our website may contain links to external websites. We are not responsible for their privacy practices and encourage you to review their policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last updated” date. If changes are significant, we may provide additional notice (e.g., email).

13. Contact Us

If you have any questions or wish to exercise your rights, please contact us:

All the Above
Email: meredith@alltheabovereiki.com

bottom of page