Movementyralive

Movementyralive is an educational planning service based in Brisbane, Australia. Content is general information only — not medical, psychological, or wellness advice. See our Terms of Use and Privacy Policy.

  • Home
  • Privacy Policy
Last Updated:

Privacy Policy

This Privacy Policy describes how Movementyralive collects, uses, stores, and protects personal information when you visit movementyralive.world or use our services.

1. Data Controller Information

The data controller responsible for your personal information is Movementyralive, located at Queen Street, Brisbane QLD 4000, Australia. You may contact our privacy team by email at assist@movementyralive.world or by telephone at +61 7 3006 6200 during business hours (Monday to Friday, 9:00 AM to 5:00 PM AEST).

As the data controller, we determine the purposes and means of processing personal data collected through our website, contact forms, consulting services, and educational product purchases. We are committed to handling your information transparently and in accordance with the General Data Protection Regulation (GDPR), the Australian Privacy Act 1988, and other applicable international privacy legislation.

2. Scope of This Policy

This Privacy Policy applies to all personal data processed by Movementyralive in connection with:

  • Visits to our website at movementyralive.world
  • Submissions through our contact form or email correspondence
  • Purchases of educational products, evening plans, or program enrolments
  • Consulting sessions related to evening planning guidance
  • Newsletter subscriptions or marketing communications where consent has been provided
  • Cookie and analytics data collected during website browsing

This policy does not apply to third-party websites linked from our pages. We encourage you to review the privacy policies of any external sites you visit.

3. Categories of Personal Data We Collect

3.1 Information You Provide Directly

When you interact with our website or services, you may voluntarily provide the following categories of personal data:

  • Identity data: full name, title, and preferred name
  • Contact data: email address, telephone number, and postal address
  • Communication data: messages submitted through contact forms, email content, and consultation notes
  • Transaction data: purchase history, payment confirmation details, and refund requests
  • Preference data: evening schedule information shared during consulting sessions, routine preferences, and product interests
  • Consent records: timestamps and details of GDPR consents, cookie preferences, and marketing opt-ins

3.2 Information Collected Automatically

When you browse our website, we may automatically collect certain technical data including:

  • Device information: browser type, operating system, device model, and screen resolution
  • Usage data: pages visited, time spent on pages, click patterns, and referral sources
  • Network data: IP address, approximate geographic location derived from IP, and internet service provider
  • Cookie data: identifiers stored through cookies and similar technologies as described in our Cookie Policy

3.3 Information from Third Parties

In limited circumstances, we may receive personal data from third-party payment processors to confirm transaction completion. We do not purchase personal data from data brokers or marketing lists.

4. Purposes of Data Processing

We process your personal data for the following specific purposes, each supported by an appropriate legal basis under GDPR:

  • Responding to enquiries: To read, process, and reply to messages submitted through our contact form or email. Legal basis: legitimate interest in providing customer support and, where applicable, pre-contractual measures.
  • Delivering services: To prepare personalized evening plans, conduct consulting sessions, and fulfil educational product orders. Legal basis: performance of a contract.
  • Processing payments: To manage billing, invoicing, and refund processing. Legal basis: performance of a contract and legal obligation.
  • Website improvement: To analyse usage patterns and improve website functionality, content relevance, and user experience. Legal basis: legitimate interest, subject to cookie consent for non-essential analytics.
  • Marketing communications: To send informational updates about new products, programs, or resources where you have opted in. Legal basis: consent.
  • Legal compliance: To comply with applicable laws, respond to lawful requests from authorities, and protect our legal rights. Legal basis: legal obligation and legitimate interest.
  • Security: To detect, prevent, and address fraud, abuse, and security incidents. Legal basis: legitimate interest.

5. Legal Bases for Processing Under GDPR

For individuals located in the European Economic Area (EEA), United Kingdom, or other jurisdictions where GDPR applies, we rely on the following legal bases:

  • Consent (Article 6(1)(a)): Where you have given clear consent for specific processing activities, such as marketing emails or non-essential cookies.
  • Contract (Article 6(1)(b)): Where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.
  • Legal obligation (Article 6(1)(c)): Where processing is required to comply with a legal obligation to which we are subject.
  • Legitimate interests (Article 6(1)(f)): Where processing is necessary for our legitimate interests, provided those interests are not overridden by your rights. Examples include website security, fraud prevention, and internal analytics with appropriate safeguards.

6. Data Retention Periods

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, unless a longer retention period is required by law. Our standard retention periods are:

  • Contact form submissions: 24 months from the date of last correspondence, unless an ongoing service relationship exists
  • Consulting session records and personalized plans: 36 months from the date of service delivery
  • Transaction and payment records: 7 years from the date of transaction, in accordance with Australian tax and accounting requirements
  • Marketing consent records: until consent is withdrawn, plus 12 months for audit purposes
  • Cookie consent preferences: 12 months from the date of consent, after which we will request renewed consent
  • Website analytics data: 26 months in aggregated form; raw IP addresses are anonymized within 30 days
  • Security logs: 90 days, unless required for an ongoing investigation

When retention periods expire, personal data is securely deleted or anonymized so that it can no longer be associated with you.

7. Data Sharing and Third-Party Processors

We do not sell, rent, or trade your personal data to third parties. We may share your information with the following categories of recipients under strict data processing agreements:

  • Payment processors for secure transaction handling
  • Email service providers for delivering communications you have requested
  • Cloud hosting providers that store website data on secure servers
  • Analytics providers, only when you have consented to analytics cookies
  • Professional advisers such as accountants or legal counsel, bound by confidentiality obligations
  • Law enforcement or regulatory authorities when required by applicable law

All third-party processors are required to implement appropriate technical and organizational measures to protect your data and process it only according to our documented instructions.

8. International Data Transfers

Your personal data may be transferred to and processed in countries outside your country of residence, including Australia and countries where our service providers operate. When transferring data outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, adequacy decisions, or other lawful transfer mechanisms under GDPR Chapter V.

9. Security Measures

We implement comprehensive technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • HTTPS encryption for all data transmitted between your browser and our servers
  • Access controls limiting personal data access to authorized personnel on a need-to-know basis
  • Regular security assessments and vulnerability monitoring of our website infrastructure
  • Secure password policies and multi-factor authentication for administrative systems
  • Encrypted storage of sensitive data at rest where technically feasible
  • Employee training on data protection principles and incident response procedures
  • Documented incident response plan for detecting, reporting, and addressing data breaches within 72 hours as required by GDPR

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to notifying affected individuals and relevant authorities of any breach that poses a risk to your rights and freedoms.

10. Your Rights Under GDPR and Australian Privacy Law

Depending on your location, you may have the following rights regarding your personal data:

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete personal data.
  • Right to erasure: Request deletion of your personal data where there is no compelling reason for continued processing.
  • Right to restrict processing: Request limitation of processing in certain circumstances.
  • Right to data portability: Receive your personal data in a structured, commonly used, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing.
  • Right to lodge a complaint: File a complaint with the Office of the Australian Information Commissioner (OAIC) or your local supervisory authority in the EEA.

To exercise any of these rights, contact us at assist@movementyralive.world with sufficient information to verify your identity. We will respond within 30 days of receiving a valid request. In complex cases, we may extend this period by an additional 60 days with prior notification.

11. Children's Privacy

Our website and services are intended for adults aged 18 and over. We do not knowingly collect personal data from individuals under 18 years of age. If we become aware that we have collected personal data from a minor without verified parental consent, we will take steps to delete that information promptly. Parents or guardians who believe their child has provided personal data to us should contact us immediately.

12. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significant effects on individuals. Any personalized evening plans are created by human consultants based on information you provide, not by automated algorithms.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will update the date at the top of this page and, where appropriate, notify you by email or through a prominent notice on our website. We encourage you to review this policy regularly to stay informed about how we protect your information.

14. Contact Information

For questions, concerns, or requests related to this Privacy Policy or our data processing practices, please contact:

Movementyralive
Queen Street, Brisbane QLD 4000, Australia
Email: assist@movementyralive.world
Phone: +61 7 3006 6200

If you are located in the EEA and believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection supervisory authority.