Privacy Policy

Last updated: 21 November 2025

Introduction and Applicable Regulations
Data Controller and Contact Information
Categories of Personal Data We Collect
Sources of Personal Data
Purpose and Legal Basis for Processing
Automated Decision-Making and Profiling
Data Sharing and International Transfers
Data Retention
Data Security
Your Rights
Children’s Privacy
CCPA Rights and “Do Not Sell My Info”
How to Make a Complaint
Changes to This Privacy Policy
Contact Information

1. Introduction and Applicable Regulations

This Privacy Policy explains how Krok Zen Group SL (“we,” “us,” or “our”) collects, uses, and protects your personal information when you access our website https://www.themacramelaboratory.com and any related course platforms or digital products (“Platform”).

We comply with applicable international privacy laws, including:

GDPR (European Union & EEA)
CCPA / CPRA (California, USA)
PIPEDA (Canada)
Australian Privacy Act 1988 & APPs

Depending on your location, you may have specific privacy rights. In this Policy, all such laws are collectively referred to as Applicable Data Protection Regulations.

By using our Platform, you consent to the practices described in this Privacy Policy.

2. Data Controller and Contact Information

The data controller responsible for your personal data is:

Krok Zen Group SL
Country: Spain
Email: contact@themacramelaboratory.com
Website: https://www.themacramelaboratory.com

If you have questions or wish to exercise your privacy rights, contact us.

3. Categories of Personal Data We Collect

The personal data we collect depends on your interaction with our Platform.

A. Identification & Contact Information

Full name
Email address
Billing address (if applicable)

B. Payment & Transaction Information

Processed securely through third-party payment processors (e.g., Stripe, PayPal):

Payment method details (not stored by us)
Purchase history
Subscription details

C. Technical and Usage Data

Collected automatically through cookies, analytics tools, and server logs:

IP address
Device information
Browser type and version
Pages viewed and usage patterns

D. Marketing & Communication Preferences

Email newsletter preferences
Responses to promotions or surveys

We do not intentionally collect sensitive personal data.

4. Sources of Personal Data

We collect data from:

A. Direct interactions

Account registration
Course purchase
Contacting us by email or forms

B. Automated technologies

Cookies
Analytics tools (Google Analytics, Meta Pixel)
Session tracking

C. Third-party service providers

Payment processors
Email marketing services
Course platforms or membership tools

5. Purpose and Legal Basis for Processing

We process your data only when we have a lawful basis.

A. Contractual Necessity

To:

process your purchases
provide access to purchased online courses
manage your account or subscription

B. Consent

For:

marketing emails
optional cookies
remarketing and tracking pixels

You may withdraw consent at any time.

C. Legitimate Interests

To:

improve our Platform and user experience
prevent fraud or unauthorized access
analyze trends and engagement
personalize the content you see

D. Legal Obligations

For:

accounting and tax requirements
compliance with regulatory authorities

6. Automated Decision-Making and Profiling

We may analyze your behavior on the Platform to:

recommend relevant courses
offer personalized promotions
tailor email content

These processes do not produce significant or legal effects for users.
You may opt out by emailing us at contact@themacramelaboratory.com.

7. Data Sharing and International Transfers

We do not sell personal data.

We may share data with trusted service providers, including:

Payment processors (Stripe, PayPal)
Email marketing platforms
Analytics tools (Google Analytics, Meta Pixel)
Website hosting providers

Some data may be transferred outside the EU.
We ensure adequate safeguards, such as Standard Contractual Clauses (SCCs).

8. Data Retention

We keep personal data only as long as necessary for:

providing services
fulfilling legal obligations
handling disputes

When data is no longer needed, we securely delete or anonymize it.

9. Data Security

We use appropriate technical and organizational measures, including:

SSL encryption
Restricted internal access
Secure storage of payment data via third parties
Regular monitoring for vulnerabilities

No online system is 100% secure. Users must keep their passwords confidential.

10. Your Rights

Depending on your jurisdiction, you may have the right to:

Access your personal data
Request correction
Request deletion (“right to be forgotten”)
Restrict or object to processing
Request data portability
Withdraw consent
File a complaint with a data protection authority

To exercise your rights, email us at contact@themacramelaboratory.com.

11. Children’s Privacy

Our Platform is intended for adults capable of making online purchases.
We do not knowingly collect data from children under 16 years old.
If such data is discovered, we delete it immediately.

12. CCPA Rights and “Do Not Sell My Info”

For California residents:

You may request access to your personal information
You may request deletion
You may opt out of data-sharing that may be considered a “sale”

While we do not sell data in the usual sense, California law may consider tracking technologies a form of “sale.”
To opt out, contact: contact@themacramelaboratory.com

13. How to Make a Complaint

If you believe your privacy rights were violated, you may:

Contact us at contact@themacramelaboratory.com
File a complaint with your local Data Protection Authority (e.g., AEPD in Spain, EU DPA, etc.)

14. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in regulations or business practices.
The updated version will be posted here with a new “Last updated” date.
Significant changes may be communicated via our Platform or email.

15. Contact Information

Krok Zen Group SL
Email: contact@themacramelaboratory.com
Website: https://www.themacramelaboratory.com