Privacy Policy

Last Updated: March 23, 2026

Summary: We collect your name and email when you subscribe. We use it only to send you information related to Mitolyn and wellness topics. We do not sell your personal data. You may request deletion at any time. This policy complies with GDPR and CCPA requirements.

1. Who We Are

This Privacy Policy applies to yourdomain.com ("we," "us," or "our"), an independent affiliate website promoting Mitolyn dietary supplements through the ClickBank affiliate network. We are not affiliated with, nor do we represent, the manufacturer of Mitolyn products.

Data Controller Contact:
Email: privacy@yourdomain.com
Address: 1234 Wellness Ave, Suite 100, Your City, State 00000, USA

2. Information We Collect

We collect information you voluntarily provide and information collected automatically when you visit our website.

2.1 Information You Provide

  • Email address — collected when you subscribe via our lead capture forms
  • First name (optional) — collected via our email subscription forms

2.2 Information Collected Automatically

  • IP address — collected for security, fraud prevention, and rate-limiting purposes
  • User agent / browser information — collected for technical compatibility purposes
  • Submission timestamp — recorded when you complete a form

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To deliver the free wellness guide or content you requested when subscribing
  • To send you wellness, health, and supplement-related information via email
  • To send information about Mitolyn products, promotions, and affiliate offers
  • To protect our website against fraud, spam, and abuse (IP-based rate limiting)
  • To improve our website and understand user preferences

Legal Basis for Processing (GDPR — EU/EEA Users)

  • Consent (Art. 6(1)(a) GDPR): You provided your email voluntarily and consented to receive communications by submitting our form.
  • Legitimate Interest (Art. 6(1)(f) GDPR): Security and fraud prevention measures based on our legitimate interest in protecting our website and users.

4. Cookies & Tracking Technologies

We use the following tracking technologies on our website:

  • Session storage & localStorage: Used to remember whether you have seen our exit-intent popup and to power our countdown timer. No personal data is stored.
  • PHP Sessions: Used for the administrative portal only; not set for regular visitors.
  • Google reCAPTCHA: Used to protect our forms from spam. Google's Privacy Policy and Terms of Service apply to reCAPTCHA usage.
  • ClickBank tracking: ClickBank may place cookies when you click affiliate links on our site. We do not control ClickBank's data practices. See ClickBank's Privacy Policy at clickbank.com/privacy.

5. Data Storage & Security

Email leads collected through our forms are stored in a secured SQLite database on our server. We implement the following security measures:

  • Database files are protected from public web access via server-level restrictions
  • Input data is sanitised and validated before storage
  • Rate limiting is applied to prevent abuse
  • We recommend HTTPS for all connections (SSL/TLS encryption in transit)

Data Retention: We retain your email address for as long as you remain subscribed. You may request deletion at any time (see Section 8). IP addresses are retained for up to 90 days for security purposes and then purged.

6. Third-Party Data Sharing

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. We may share your data in the following limited circumstances:

  • Email Service Providers (ESPs): We may use a third-party ESP (e.g., Mailchimp, AWeber, or similar) to deliver email communications. Your email address will be transferred to such a provider, which acts as a data processor under our instructions.
  • ClickBank: When you click affiliate links and make a purchase, ClickBank processes your payment and order. ClickBank acts as an independent controller for transaction data.
  • Legal Requirements: We may disclose data if required by law, court order, or to protect against legal liability.

7. Your Rights Under GDPR (EU/EEA Residents)

If you are located in the European Union, European Economic Area, or United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of Access (Art. 15): Request a copy of the personal data we hold about you.
  • Right to Rectification (Art. 16): Request correction of inaccurate personal data.
  • Right to Erasure / "Right to Be Forgotten" (Art. 17): Request deletion of your personal data.
  • Right to Data Portability (Art. 20): Request your data in a structured, machine-readable format.
  • Right to Withdraw Consent (Art. 7(3)): Withdraw consent at any time by unsubscribing from emails or contacting us.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority (e.g., ICO in the UK, or your national DPA in the EU).

To exercise any of these rights, contact us at: privacy@yourdomain.com

8. Your Rights Under CCPA (California Residents)

If you are a California resident, the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) grant you specific rights regarding your personal information:

  • Right to Know: You have the right to know what personal information we collect, use, disclose, and sell (we do not sell your data).
  • Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions.
  • Right to Correct: You have the right to request correction of inaccurate personal information.
  • Right to Opt-Out of Sale or Sharing: We do not sell your personal information to third parties. We do not share your data for cross-context behavioral advertising.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
Do Not Sell My Personal Information: We do not sell your personal information. If you have questions about this, contact us at privacy@yourdomain.com.

To submit a CCPA request, contact us at privacy@yourdomain.com. We will respond within 45 days as required by law.

9. Unsubscribing & Opt-Out

You may unsubscribe from our email communications at any time by clicking the "unsubscribe" link included in every email we send, or by emailing us at privacy@yourdomain.com with "UNSUBSCRIBE" in the subject line. Upon request, we will remove your data from our lead database within 30 days.

10. Children's Privacy (COPPA)

Our website and products are not directed at individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you believe we have inadvertently collected such information, please contact us immediately at privacy@yourdomain.com and we will promptly delete it.

11. Changes to This Policy

We may update this Privacy Policy periodically. The "Last Updated" date at the top reflects the most recent revision. Continued use of our website after changes are posted constitutes your acceptance of the updated policy. For material changes, we will make reasonable efforts to notify subscribers.

12. Contact Us

For any privacy-related questions, requests, or concerns, please contact us:

Email: privacy@yourdomain.com

Website: yourdomain.com

Mailing Address: 1234 Wellness Ave, Suite 100, Your City, State 00000, USA