Privacy Policy

1. Overview

Belle Body (“we”, “our”, or “us”) respects your privacy and is committed to protecting your personal information.
This Privacy Policy describes how we collect, use, store, and disclose personal data in accordance with:

The Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs) (Australia)

The UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018 (United Kingdom)

The California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), and other applicable U.S. state privacy laws

Other data protection laws where applicable

By using our website or purchasing from Belle Body, you consent to the terms of this Privacy Policy.

2. Information We Collect

We collect personal information that is reasonably necessary for our business activities.

2.1 Personal Information

Full name

Email address

Phone number

Shipping address (for printed program delivery)

Billing information (handled by Stripe or GoHighLevel Payments — we do not store your credit card details)

2.2 Technical & Usage Data

IP address and geolocation (city, country)

Browser type, device model, operating system

Website usage patterns, pages visited, time on site (via Google Analytics, Meta Pixel, or similar tools)

2.3 Marketing & Communication Data

Preferences for email or SMS marketing

Social media interactions (e.g. Meta, Instagram, or TikTok ads)

Messages sent through our contact forms or automations

3. How We Collect Your Information

We collect information when you:

Purchase a digital or printed program

Join our newsletter, challenge, or waitlist

Fill out a form or chatbot on the website

Interact with our advertising campaigns

Communicate with us by email, SMS, or social media

Visit our website (cookies and analytics tools may automatically collect usage data)

4. How We Use Your Information

Your information is used for:

Fulfilling your order and delivering digital downloads or printed programs

Providing customer support and responding to enquiries

Managing your membership, subscriptions, or automations

Sending transactional, service, or promotional messages (email or SMS)

Analysing website usage and ad performance

Complying with accounting, taxation, and legal obligations

We process your data on lawful bases including consent, contractual necessity, legitimate interest, and legal compliance, depending on your jurisdiction.

5. International Data Transfers

Our website and CRM systems are hosted on international cloud infrastructure.
Your data may be transferred to and stored on servers in:

Australia

United States (e.g., GoHighLevel, Stripe, Google, Meta)

United Kingdom and European Union

Whenever personal data is transferred internationally, we take steps to ensure compliance with:

Australian Privacy Principle 8 (Cross-border disclosure)

UK GDPR Chapter V (International transfers)

Standard Contractual Clauses (SCCs) or equivalent safeguards under EU/UK law

By submitting your information, you consent to such transfers.

6. Legal Bases for Processing (UK & EU Residents)

Under UK GDPR, we process personal data only when one or more of the following applies:

You have given consent (e.g. subscribing to marketing updates)

Processing is necessary for the performance of a contract (e.g. program purchase)

Processing is necessary for legitimate interests (e.g. site analytics, fraud prevention)

Processing is required by legal obligation

You may withdraw your consent at any time by contacting us.

7. Your Rights

Depending on where you live, you may have the following rights:

Australia (Privacy Act 1988)

Request access to your personal information

Request correction of inaccurate or outdated information

United Kingdom (UK GDPR)

Access your personal data (“Data Subject Access Request”)

Rectify or erase personal data (“Right to be Forgotten”)

Restrict or object to processing

Data portability

Lodge a complaint with the Information Commissioner’s Office (ICO)

United States (CCPA/CPRA)

Know what personal information is collected

Request deletion of your data

Opt out of the sale or sharing of personal information

Non-discrimination for exercising privacy rights

Belle Body does not sell personal information.

To exercise these rights, contact [email protected].
We may need to verify your identity before processing a request.

8. Cookies & Tracking

We use cookies and similar technologies for:

Website functionality (session cookies)

Performance and analytics (Google Analytics, Meta Pixel)

Marketing attribution (Facebook Ads, Instagram Ads, Google Ads)

You can control cookies via your browser settings or opt out using Google’s Ad Settings and Meta’s Ad Preferences.

9. Email, SMS & Marketing Communications

Belle Body complies with:

Spam Act 2003 (Australia)

UK Privacy and Electronic Communications Regulations (PECR)

CAN-SPAM Act (U.S.)

Telephone Consumer Protection Act (TCPA)

We only send marketing messages with your consent.
You may unsubscribe or opt out at any time by:

Clicking the Unsubscribe link in an email, or

Replying STOP to an SMS message.

Transactional emails (e.g. order confirmations, program access) cannot be unsubscribed as they are service-related.

10. Data Storage & Security

We use secure third-party platforms with strong encryption and access control, including:

GoHighLevel CRM (data storage and automation)

Stripe (payment processing)

Google Cloud & Workspace (email and file storage)

We take reasonable steps to:

Keep personal data accurate and up to date

Protect it from misuse, loss, or unauthorised access

Destroy or anonymise it when no longer needed

11. Third-Party Service Providers

We may share data with:

Payment processors: Stripe, PayPal (if used)

CRM and automation tools: GoHighLevel

Analytics tools: Google Analytics, Meta Pixel

Shipping partners: For printed program deliveries

Email/SMS providers: Twilio, Mailgun, or equivalent

All providers are bound by confidentiality and data processing agreements.

12. Retention of Data

We keep personal data only as long as needed:

For orders and programs: up to 7 years (to meet accounting obligations)

For marketing subscribers: until you unsubscribe or request deletion

For website analytics: typically 26 months (per Google’s default policy)

13. Children’s Privacy

Our website and programs are not directed to children under 16.
We do not knowingly collect data from minors.
If you believe a minor has provided information, please contact us and we’ll delete it promptly.

14. Changes to This Policy

We may update this Privacy Policy from time to time.
All updates will be posted on this page with a revised effective date.
We encourage you to review it periodically to stay informed.

15. Contact Us

For privacy enquiries, corrections, or deletion requests, contact [email protected]

© 2025. Bellebody. All rights reserved.