Privacy Policy

1.1 Scope & Definitions

This Privacy Policy applies to all users of WeHealMind.com (“Platform”), owned by Alphahold L.L.C-FZ.
 “Personal Data” means any information relating to an identified or identifiable natural person.
 “Processing” means any operation performed on Personal Data (collection, storage, use, etc.).
 “Controller” determines purposes and means of processing; “Processor” processes on behalf of the Controller.

1.2 Categories of Data Collected

       Identity & Contact Data: name, email, billing address.

       Transaction Data: purchases, timestamps, amounts.

       Technical Data: IP, browser type/version, time zone, OS.

       Usage Data: pages viewed, referral sources, session metrics.

       Communications Data: support tickets, chat transcripts.

       Preference Data: language, marketing preferences.

       Optional Wellness Inputs: self-reported goals or assessments (processed only with consent).

1.3 Lawful Basis for Processing

Purpose

Data Categories

Lawful Basis

Account creation & access

Identity, Contact, Credentials

Contractual necessity

Payment processing

Identity, Transaction

Contract; Legal obligation

Course delivery

Usage, Preferences

Contract; Consent (optional data)

Customer support

Identity, Communications

Legitimate interests; Contract

Analytics & improvement

Technical, Usage

Legitimate interests

Marketing

Identity, Preference

Consent; Legitimate interests

Fraud prevention

Technical, Identity

Legitimate interests; Legal obligation

1.4 Purposes of Processing

Operate the Platform, verify identity, deliver products, provide support, comply with law, improve services, personalize content, send communications.

1.5 Third Parties & Processors

We share with:

       Payment processors (e.g., Stripe)

       Hosting providers

       Analytics tools (Google Analytics, Meta, TikTok)

       Professional advisors

       Authorities when required

1.6 International Transfers

Data may be stored or processed in the UAE, EU, UK, USA. Safeguards include Standard Contractual Clauses and adequacy decisions.

1.7 Data Retention & Deletion

Retain data as needed for purposes or legal requirements. Delete or anonymize upon request unless retention is required.

1.8 Children’s Data

Not directed to under-18s; parental consent required if applicable.

1.9 Data Subject Rights

Rights: access, correction, deletion, restriction, objection, portability, withdraw consent.
 Requests: email info@alphahold.ae.

1.10 Security Measures

SSL encryption, firewalls, restricted access, credential hashing.

1.11 Cookies

Used for site functionality, analytics, ads.

1.12 Data Breach Response

Notify users and authorities without undue delay if breach likely to result in risk.

1.13 Contact Details

Alphahold L.L.C-FZ, Meydan Grandstand, Dubai, UAE. Email: info@alphahold.ae.