Privacy Policy

Last Updated: June 6, 2025

Welcome to Rooted Executive Retreats ("us", "we", or "our"). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about this privacy notice, or our practices with regards to your personal information, please contact us at privacy@rootedexecutiveretreats.com.

This privacy notice describes how we might use your information if you:

  • Visit our website at https://www.therootedway.co
  • Sign up for our newsletter (e.g., via MailerLite)
  • Choose to connect third-party services, such as the Garmin Health API, to your Rooted Executive Retreats account or experience.
  • Engage with us in other related ways ― including any sales, marketing, or events

In this privacy notice, if we refer to:

  • "Website", we are referring to any website of ours that references or links to this policy
  • "Services", we are referring to our Website, our retreats, and other related services, including any sales, marketing, or events, and interactions with connected third-party services.

The purpose of this privacy notice is to explain to you in the clearest way possible what information we collect, how we use it, and what rights you have in relation to it. If there are any terms in this privacy notice that you do not agree with, please discontinue use of our Services immediately.

1. What Information Do We Collect?

Personal information you disclose to us: We collect personal information that you voluntarily provide to us when you express an interest in obtaining information about us or our products and Services, when you participate in activities on the Website (such as signing up for newsletters or interacting with blog posts) or otherwise when you contact us.

The personal information that we collect depends on the context of your interactions with us and the Website, the choices you make and the products and features you use. The personal information we collect may include the following: email address, name, and other similar information.

Information automatically collected: We automatically collect certain information when you visit, use or navigate the Website. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Website and other technical information. This information is primarily needed to maintain the security and operation of our Website, and for our internal analytics and reporting purposes (e.g., via Google Analytics).

Information from Connected Health Services (e.g., Garmin): If you choose to connect a third-party health service like Garmin to our Services, we will collect health-related data with your explicit consent provided through the Garmin authorization process. This data may include, but is not limited to, heart rate, sleep patterns, activity levels, stress scores, HRV (Heart Rate Variability), Body Battery™, and other physiological metrics provided by Garmin. We only collect the data types you specifically authorize us to access.

2. How Do We Use Your Information?

We use personal information collected via our Website and connected services for a variety of business purposes described below. We process your personal information for these purposes in reliance on our legitimate business interests, in order to enter into or perform a contract with you, with your consent, and/or for compliance with our legal obligations.

  • To send you marketing and promotional communications (e.g., our newsletter via MailerLite), if this is in accordance with your marketing preferences. You can opt-out of our marketing emails at any time.
  • To respond to user inquiries/offer support to users.
  • To analyze usage trends and improve our Website and Services.
  • For data backup and operational stability (e.g., through Supabase).
  • To provide personalized insights and track progress (using Garmin Data): If you have connected your Garmin account, we use this data to tailor your retreat experience, offer personalized feedback on your wellbeing metrics (such as stress patterns, sleep quality, and recovery levels), guide you in achieving your wellness goals, and demonstrate the tangible benefits of our programs. This data is integral to our science-driven approach and is used solely for the purpose of enhancing your experience and outcomes with Rooted Executive Retreats.
  • For other business purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Website, products, marketing and your experience.

3. Will Your Information Be Shared With Anyone?

We may process or share your data that we hold based on the following legal basis:

  • Consent: We may process your data if you have given us specific consent to use your personal information for a specific purpose. This is particularly relevant for data from connected health services like Garmin.
  • Legitimate Interests: We may process your data when it is reasonably necessary to achieve our legitimate business interests.
  • Performance of a Contract: Where we have entered into a contract with you, we may process your personal information to fulfill the terms of our contract.
  • Legal Obligations: We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process.

More specifically, we may need to process your data or share your personal information in the following situations:

  • Service Providers: We may share your data with third-party vendors, service providers, contractors or agents who perform services for us or on our behalf and require access to such information to do that work. Examples include: data analytics (Google Analytics), email delivery (MailerLite), and website hosting and backend services (Supabase for secure data storage). We make reasonable efforts to ensure these third parties have appropriate data protection and confidentiality measures, especially for sensitive health data. Your Garmin data is only shared with such providers to the extent necessary to provide and improve our services to you, and under strict confidentiality obligations. We ensure that any third-party handling your Garmin data adheres to data protection standards at least as stringent as our own and those required by Garmin and applicable law (e.g., GDPR).
  • Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

We do not sell your personal information, including any health data obtained from Garmin.

4. Do We Use Cookies and Other Tracking Technologies?

We may use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Specifically, our third-party services like Google Analytics and MailerLite may use cookies to help analyze how users use the site and to deliver targeted content or advertisements. You can usually set your browser to remove or reject cookies.

5. How Do We Keep Your Information Safe?

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process, with particular attention to sensitive health data obtained through services like Garmin. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security, and improperly collect, access, steal, or modify your information.

6. What Are Your Privacy Rights?

In some regions (like the EEA, UK, and Canada), you have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your personal information, (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; and (iv) if applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your personal information.

Specifically for data collected from connected health services like Garmin, you can manage your connected services and revoke our access to your Garmin data typically through your Garmin Connect account settings or any interface we provide for managing such connections. Upon revocation, we will no longer collect new data from that service. You may also request the deletion of your historical Garmin data we have stored by contacting us.

To make such a request, please use the contact details provided below. We will consider and act upon any request in accordance with applicable data protection laws.

7. Links to Other Websites

Our Website may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

8. Children's Privacy

Our Services are not directed to individuals under the age of 13 (or a higher age as required by applicable law in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will take steps to delete such information.

9. Compliance with Third-Party Terms

Our use of data obtained from third-party services, including the Garmin Health API, is in strict compliance with all applicable terms of service, developer agreements, and privacy policies of those third parties, including Garmin. This includes, but is not limited to, requirements concerning user consent, data security, data use limitations, and user data rights. We are committed to being a good steward of your data when interacting with these platforms.

10. Changes to This Privacy Policy

We may update this privacy notice from time to time. The updated version will be indicated by an updated "Last Updated" date and the updated version will be effective as soon as it is accessible. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.

11. How Can You Contact Us About This Notice?

If you have questions or comments about this notice, you may email us at privacy@rootedexecutiveretreats.com or by post to:

Rooted Executive Retreats
privacy@rootedexecutiveretreats.com