💸 💤  Bundle & Save $820 → $250

logo drgolly
0
Login
Menu
Close
Home
Course Login

Privacy Policy

This Privacy Policy describes how drgolly.com (the “Site” or “we”) collects, uses, and discloses your Personal Information when you visit or make a purchase from the Site.

SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION?

We have your security and privacy in mind, every step of the way. When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address, and email address. Your personal information will never be forwarded to third parties without a lawful basis.

When you browse our store, we automatically receive your device’s internet protocol (IP) address in order to learn about your browser, device, and browsing behavior.

Email and SMS marketing (if applicable): With your explicit permission, we may send you emails and/or text messages about our store, new products, and updates.

SECTION 2 – CONSENT

How do you get my consent?

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery, or return a purchase, you consent to our collecting and using it for that specific reason only, under applicable laws.

If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your explicit consent or provide you with a clear opportunity to opt out.

We may use personal information for retargeting or personalized advertising via platforms such as Meta (Facebook/Instagram), provided you have given appropriate consent via our cookie banner or consent manager (in jurisdictions like the EEA or California).

How do I withdraw my consent?

If after opting in you change your mind, you may withdraw your consent at any time by contacting us at [email protected] or writing to us at:

Dr Golly Sleep Program Pty Ltd
181/183 Wattletree Rd,
MALVERN, VIC Australia 3144

You can also withdraw cookie-related consent by adjusting your browser settings or through the cookie banner (if applicable).

SECTION 3 – LEGAL BASES FOR PROCESSING (GDPR)

If you are located in the EEA or UK, we rely on the following legal bases to process your personal data:

  • Consent – when you provide it explicitly, e.g., for marketing or tracking.
  • Contract – to fulfill a purchase or agreement with you.
  • Legal obligation – where we are required by law to retain or disclose information.
  • Legitimate interests – for analytics, fraud prevention, or service improvement (provided they are not overridden by your rights).

SECTION 4 – DISCLOSURE

We may disclose your personal information if required to do so by law or if you violate our Terms of Service.

SECTION 5 – WORDPRESS & WOOCOMMERCE

Our store is hosted on WordPress.com and WooCommerce. They provide us with the online e-commerce platform that allows us to sell our products and services to you.

Your data is stored through WooCommerce’s data storage, databases, and applications on secure servers behind a firewall.

Payment: If you use a direct payment gateway, WooCommerce and Stripe may store your credit card data. This information is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). We retain your payment data only as long as necessary to complete your transaction, after which it is deleted.

SECTION 6 – THIRD-PARTY SERVICES

Third-party providers (e.g. Stripe, PayPal, Meta, Afterpay) collect, use, and disclose your information only as necessary to perform the services they provide.

Each provider has its own privacy policy. If the provider is based in a different jurisdiction, your personal data may be transferred internationally and become subject to different legal requirements.

We recommend reviewing their privacy policies.

SECTION 7 – INTERNATIONAL DATA TRANSFERS (GDPR)

If you are located in the EEA or UK, your data may be transferred outside of your region, including to countries like the United States or Australia. When we do so, we rely on legal mechanisms such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions (where applicable)
  • Your explicit consent

SECTION 8 – SECURITY

We follow industry best practices to protect your personal information. Credit card information is encrypted using SSL and stored with AES-256 encryption.

No transmission method over the Internet or storage is 100% secure, but we follow all PCI-DSS and GDPR security obligations.

SECTION 9 – DATA RETENTION

We retain personal data only as long as necessary to:

  • Complete your transactions
  • Provide our services
  • Comply with legal obligations
  • Resolve disputes or enforce agreements

Once no longer required, data is securely deleted or anonymized.

SECTION 10 – COOKIES

We use cookies to enhance your experience and support core functionality, analytics, and advertising. Some cookies are essential; others require your consent.

See our Cookie Policy for full details and options to manage or withdraw cookie preferences.

SECTION 11 – DATA SUBJECT RIGHTS (GDPR + US STATES)

Depending on your jurisdiction, you may have rights including:

  • Access to your personal data
  • Correction of inaccuracies
  • Deletion of your data (“Right to be Forgotten”)
  • Data portability
  • Restriction or objection to processing
  • Opt-out of targeted advertising or profiling
  • Withdrawal of consent (where applicable)

To exercise any of these rights, email [email protected]. We will respond within the legally required timeframe.

If you are in the EU or UK and are dissatisfied, you may lodge a complaint with your local data protection authority.

SECTION 12 – CALIFORNIA PRIVACY RIGHTS (CCPA / CPRA)

If you are a California resident, you have the right to:

  • Know what personal data we collect, use, share, or sell
  • Request deletion of your personal data
  • Correct inaccurate personal data
  • Opt out of the sale or sharing of personal data
  • Limit the use of sensitive personal information
  • Not be discriminated against for exercising your rights

We do not sell personal data, but we may share it for targeted advertising purposes.

Submit requests by contacting [email protected].

SECTION 13 – YOUR U.S. STATE PRIVACY RIGHTS

Residents of Virginia, Colorado, Utah, and Connecticut may also have the right to:

  • Access and delete personal data
  • Correct inaccuracies
  • Opt out of profiling and targeted ads
  • Request data portability

Please email [email protected] to make a request.

SECTION 14 – DO NOT SELL OR SHARE MY PERSONAL INFORMATION

We may use your personal information for targeted advertising via platforms like Meta (Facebook/Instagram). This may be considered a “share” under California law.

You have the right to opt out. To do so:

  • Adjust your cookie preferences via the [Cookie Settings] link or banner.
  • Use a browser that supports the Global Privacy Control (GPC).
  • Contact us at [email protected] with the subject line “Do Not Sell or Share My Personal Information.”
Dr Golly
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.