Privacy policy

1. Information We Collect

Personal Information You Provide

When you register for an account, place an order, or contact us, we may collect:

• Full name, email address, phone number
• Shipping and billing addresses
• Account login credentials (password is stored securely hashed, never in plain text)
• Order history and product preferences
• Newsletter subscription preferences
• Communications you send us (support inquiries, feedback)

Information Collected Automatically

When you browse our website, we automatically collect certain technical information:

• IP address, browser type, operating system
• Pages visited, time spent on pages, referring URL
• Device type and screen resolution
• Search queries entered into our Herbal Support Finder, Essential Oil Finder, and Remedy Finder tools

2. How We Use Your Information

We use the information we collect to:

• Process orders — fulfill purchases, process payments, arrange shipping, and send order confirmations and updates
• Provide account services — manage your account, saved herbs, saved finder results, and health profile
• Deliver personalized results — use your health profile data (if provided) to tailor finder results with relevant safety warnings and recommendations
• Improve our services — analyze finder queries and usage patterns to expand our herb, essential oil, and remedy databases and improve matching accuracy
• Communicate with you — respond to inquiries, send newsletters you have subscribed to, and provide order-related notifications
• Ensure safety — operate our triage system to detect potentially dangerous queries and provide appropriate safety messaging
• Prevent fraud — detect and prevent fraudulent transactions and unauthorized account access

3. Health & Wellness Data

If you choose to create a Health Profile, you may voluntarily provide information such as your age, sex, current medications, supplements, medical conditions, and allergies. This information is used exclusively to:

• Cross-reference finder results against your medications, conditions, and allergies for safety warnings
• Flag potential drug-herb or drug-remedy interactions
• Provide age-appropriate and condition-appropriate safety notes

Health profile data is stored securely in our database, linked to your account, and is accessible only to you and our administrative team. You may delete your health profile at any time through your account settings.

Finder queries (the symptoms, conditions, or topics you search for) are logged for quality improvement and safety auditing purposes. These logs may be reviewed by our team to improve our synonym mappings, triage rules, and educational content. Logs associated with guest users are not linked to any personal identity.

4. Cookies & Tracking

We use a minimal set of cookies strictly necessary for our website to function:

We do not use third-party advertising cookies, tracking pixels, or behavioral advertising technology. We do not participate in ad networks or sell browsing data.

5. Information Sharing

We do not sell your personal information. We may share limited information with:

• Payment processors — to securely process your transactions (we never store credit card numbers on our servers)
• Shipping carriers — name and address only, to deliver your orders
• Legal authorities — if required by law, court order, or to protect our rights and the safety of our users

We do not share your health profile data, finder queries, or wellness-related information with any third party for any reason other than a valid legal obligation.

6. Data Security

We implement industry-standard security measures to protect your data:

• All data transmitted between your browser and our servers is encrypted via TLS/SSL (HTTPS)
• Passwords are securely hashed using bcrypt — we cannot view or recover your password
• Our servers are hosted on private infrastructure with restricted access
• Administrative access is limited to authorized personnel with role-based access controls
• Regular security reviews and software updates are performed

While we strive to use commercially acceptable means of protecting your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

7. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes described in this policy:

• Account data — retained until you delete your account
• Order records — retained for 7 years for tax and legal compliance
• Health profiles — retained until you delete them or close your account
• Finder query logs — retained for up to 2 years for service improvement
• Newsletter subscriptions — retained until you unsubscribe

Upon account deletion, your personal data is removed from our active systems. Some data may persist in encrypted backups for up to 90 days before being permanently deleted.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you
• Correction — request correction of inaccurate or incomplete data
• Deletion — request deletion of your personal data (subject to legal retention requirements)
• Opt-out — unsubscribe from marketing communications at any time via the link in any email or by contacting us
• Data portability — request your data in a machine-readable format
• Withdraw consent — where processing is based on consent, withdraw at any time

To exercise any of these rights, please contact us at admin@healixnaturalsolutions.com. We will respond within 30 days.

California Residents (CCPA)

If you are a California resident, you have the right to know what personal information we collect, request deletion, and opt out of the sale of your information. As noted above, we do not sell personal information. To submit a CCPA request, contact us using the information below.

Georgia Residents

Healix Natural Solutions is based in Hiawassee, Georgia. Georgia residents may contact us for any questions regarding how their data is handled under applicable state law.

9. Children's Privacy

Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal data, we will take steps to delete that information. If you believe a child has provided us with personal data, please contact us immediately.

Users between 13 and 18 should use our services only with parental or guardian consent and supervision. The health-related information on our site is intended for adult educational use.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us: