Aiden ("we", "our", "us") operates aiden.nz and related services. This Privacy Policy explains what information we collect, how we use it, and your rights in relation to it. We've written it in plain English — because that's how we do everything.
When you create an account or make a purchase, we collect your email address and a hashed password (we cannot see your actual password — it is encrypted before storage). This is handled by Memberstack, our membership platform.
Payments are processed by Stripe. We do not store your card number, expiry date, or CVV — ever. Stripe handles all payment data and is PCI-DSS compliant. We receive only a confirmation that a payment was made and which product was purchased.
We store a record of which courses or plans you have purchased, so that we can grant you access to the content you've paid for.
Memberstack sets a session cookie in your browser to keep you logged in. This cookie does not track you across other websites. It is used only to maintain your authenticated session on aiden.nz.
When you complete the free diagnostic, your answers are used to calculate and display your prescription. We do not store your individual diagnostic responses on our servers — the calculation happens in your browser and the result is shown to you only.
We do not use your data for advertising, profiling, or marketing to third parties. We do not sell your data. We do not share your data with third parties except as described in this policy.
We use Memberstack to manage accounts, authentication, and course access. Memberstack stores your email address, hashed password, and plan membership data. Their privacy policy is available at memberstack.com/privacy.
We use Stripe to process payments. Stripe stores your payment information securely. Their privacy policy is available at stripe.com/privacy.
Our website is hosted by Netlify. Netlify may collect standard server logs (IP address, browser type, pages visited) for security and performance purposes. Their privacy policy is available at netlify.com/privacy.
We load fonts from Google Fonts, which may result in a request being made to Google's servers. This does not involve us sharing any personal data with Google.
We use one cookie: a session cookie set by Memberstack to keep you logged in. This is a strictly necessary cookie — it is required for the service to function. It is not used for tracking or advertising purposes.
We do not use analytics cookies, advertising cookies, or any third-party tracking cookies.
We retain your account data for as long as your account is active. If you request deletion of your account, we will delete your personal data from our systems within 30 days. Payment records may be retained for longer where required by applicable law or for legitimate business purposes (such as dispute resolution).
You have the right to:
To exercise any of these rights, contact us at hello@aiden.nz. We will respond within 30 days.
We take reasonable technical and organisational measures to protect your data. Passwords are hashed and never stored in plain text. Payment data is handled entirely by Stripe and never touches our servers. Our site is served over HTTPS.
No method of transmission over the internet is completely secure. While we take reasonable precautions, we cannot guarantee the absolute security of your data.
Aiden is not directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. Continued use of Aiden after changes are posted constitutes your acceptance of the revised policy.
If you have any questions about this Privacy Policy or how we handle your data, please contact us at hello@aiden.nz.