1. About This Policy

Align Intu-it is a holistic wellness and energy-based healing practice operated by Elle Maree. We offer

services including ThetaHealing® sessions and training, Kinesiology, Sound Therapy, Tuning Fork

Therapy, Transpersonal Crystal Therapy, Soul Realignment®, Iridology, frequency medicine programs, and associated digital and in-person offerings.

This Privacy Policy explains how Align Intu-it collects, uses, stores, discloses, and manages your personal information, including sensitive health-related information, in accordance with:

  • The Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) — including obligations introduced by the Privacy and Other Legislation Amendment Act 2024 (POLA)

  • The Health Records and Information Privacy Act 2002 (NSW) and the Information Privacy Act 2009 (Qld), to the extent applicable

  • The EU General Data Protection Regulation (GDPR) — where applicable to clients accessing services from the European Economic Area

  • The UK General Data Protection Regulation (UK GDPR) — where applicable to clients based in the United Kingdom

As a provider of complementary health and wellness services, Align Intu-it is classified as a health service provider under the Privacy Act. This means the Australian Privacy Principles apply to our handling of your personal information regardless of our annual turnover.

By using our website, booking a service, enrolling in a program, or otherwise engaging with Align Intu

it, you acknowledge that you have read and understood this Policy.

2. What Personal Information We Collect

We collect only the personal information that is reasonably necessary to provide our services and fulfil our legal obligations. The types of personal information we may collect include:

2.1 General Personal Information

  • Full name and preferred name

  • Email address and phone number

  • Billing and/or delivery address

  • Date of birth and place of birth (where required for specific modalities such as Soul Realignment®)

  • Payment transaction records (note: we do not store full credit card or banking details)

  • Communication history — including enquiries, session notes, and correspondence

2.2 Sensitive Information (Health & Wellbeing)

Because our services involve complementary health and energy-based modalities, we may collect sensitive information including:

  • Health information relevant to your session goals and wellbeing history

  • Information about emotional, psychological, or spiritual experiences shared during sessions

  • Subconscious patterns, energetic profiles, and frequency-related assessment data

  • Information relevant to specific modalities (e.g. natal details for Soul Realignment®, iris photographs for Iridology)

Sensitive information is subject to stricter handling requirements under the Privacy Act. We will only collect sensitive information with your explicit, informed consent, and only to the extent necessary to deliver the services you have requested.

2.3 Website and Digital Information

  • IP address, browser type, and device information

  • Pages visited, session duration, and referring URL (via cookies and analytics tools)

  • Information submitted through contact forms, booking systems, or digital programs

  • Email engagement data (open rates, click-throughs) where consent has been provided

3. How We Collect Personal Information

We collect personal information through the following means:

  • Directly from you when you book a session, enquire about services, enrol in a program, make a

    purchase, or contact us

  • Through our website (alignintu-it.com.au) via forms, live chat, or analytics tools

  • Through third-party booking, payment, or course platforms used to deliver our services (see

    Section 6)

  • During sessions or intake processes, where you voluntarily share personal or health information

  • Via email, phone, or social media interactions

Where practicable, we will collect personal information directly from you. If we receive unsolicited personal information that we could not have collected under APP 3, we will destroy or de-identify that information if it is lawful and reasonable to do so.

4. Why We Collect and Use Your Information

Your personal information is used for the following purposes:

  • To provide, manage, and personalise our services to you

  • To process bookings, payments, and enrolments

  • To communicate with you about appointments, programs, and service updates

  • To deliver digital products, course materials, audio programs, and frequency downloads

  • To send you marketing communications, newsletters, or program information — where you have consented, and in accordance with the Spam Act 2003 (Cth)

  • To respond to enquiries, complaints, and feedback

  • To meet legal, regulatory, tax, and record-keeping obligations

  • To improve our offerings and understand how our services are being used

We will not use your personal information for any purpose that is incompatible with the purpose for which it was collected, unless you provide additional consent or an exception under the Privacy Act applies.

5. Legal Bases for Processing (GDPR / UK GDPR)

Where the GDPR or UK GDPR applies to our processing of your personal data (for example, if you

are located in the European Economic Area or the United Kingdom), we process your personal data on the following legal bases:

  • Consent: For the collection of sensitive/health information, and for direct marketing

    communications

  • Contract: To fulfil bookings, deliver purchased programs, and manage our client relationship

    with you

  • Legal Obligation: To comply with applicable laws, tax requirements, and regulatory obligations

  • Legitimate Interests: For website analytics, service improvement, and fraud prevention, where

    those interests are not overridden by your rights

You may withdraw consent at any time. Withdrawal of consent does not affect the lawfulness of

processing that occurred prior to withdrawal.

6. Sharing Your Information

Your personal information will not be sold, rented, or traded. We share your information only as set

out below:

6.1 Trusted Service Providers

We engage third-party service providers to assist in operating our business. These providers access personal information only to the extent necessary to perform their function and are bound by confidentiality obligations. They include:

  • Payment processors (e.g. Stripe, PayPal, or equivalent)

  • Website hosting and platform providers

  • Booking and scheduling systems

  • Email marketing and communication platforms

  • Course hosting and membership platforms

  • Courier or fulfillment services for physical products

  • Cloud storage and document management tools

6.2 Overseas Disclosure

Some of our third-party service providers store or process data outside Australia, including in the

United States, European Union, or other jurisdictions. Where this occurs, we take reasonable steps to ensure those providers comply with standards comparable to the Australian Privacy Principles. By

providing your personal information to us, you cknowledge and consent to this potential cross-border

disclosure.

Where required under APP 8, we will only disclose personal information to overseas recipients where we have taken steps to ensure the recipient does not breach the APPs in relation to your information, or where an exception applies.

6.3 Legal and Regulatory Disclosure

We may disclose your personal information to regulators, law enforcement, or other authorities where required or permitted by law — for example, to comply with a court order, subpoena, or regulatory investigation.

6.4 Professional Referral

With your consent, we may share relevant session information with other health or allied health

practitioners when a referral or coordinated care approach is in your best interests.

7. Data Security

We take the security of your personal information seriously and implement reasonable technical and organisational safeguards to protect it from unauthorised access, disclosure, alteration, or destruction. These measures include

  • Secure, encrypted storage of electronic records

  • Password-protected systems with access controls

  • Secure payment processing through third-party providers (we do not store full credit card details)

  • Confidential handling of session notes and sensitive client information

  • Regular review of our security practices

While we take all reasonable precautions, no data transmission or storage system can be guaranteed as completely secure. If you suspect a breach of your privacy, please contact us immediately at [email protected].

7.1 Notifiable Data Breaches

Align Intu-it complies with the Notifiable Data Breaches (NDB) scheme under Part IIIC of the Privacy Act. If a data breach is likely to result in serious harm to individuals whose personal information is involved, we will:

  • Assess the breach promptly

  • Notify the Office of the Australian Information Commissioner (OAIC) as soon as practicable

  • Notify affected individuals where required

8. Data Retention

We retain personal information for as long as it is necessary to fulfil the purpose for which it was

collected, or as required by applicable law. In particular:

  • Client health and session records are retained for a minimum of 7 years following the last service interaction, or longer if required under applicable state or federal law

  • Financial and transaction records are retained for a minimum of 7 years in accordance with Australian taxation requirements

  • Marketing consent records are retained until consent is withdrawn and for a reasonable period thereafter

When personal information is no longer required, we take reasonable steps to destroy or permanently de-identify it.

9. Your Rights

You have the following rights in relation to your personal information:

9.1 Access and Correction (All Clients — APP 12 & 13)

You have the right to request access to the personal information we hold about you, and to request that inaccurate, out-of-date, or incomplete information be corrected. To make such a request, please contact us using the details in Section 13. We will respond within a reasonable timeframe (generally within 30 days). We may decline access in limited circumstances permitted by the Privacy Act, and if we do so, we will explain why in writing.

9.2 Additional Rights for EEA and UK Clients (GDPR / UK GDPR)

If you are located in the European Economic Area or the United Kingdom, you also have the right to:

  • Erasure (‘Right to be Forgotten’): Request deletion of your personal data where it is no

    longer necessary, or where you withdraw consent and no other legal basis applies

  • Restriction of Processing: Request that we restrict how we use your personal data in certain

    circumstances

  • Data Portability: Receive your personal data in a structured, commonly used, machine

    readable format

  • Object to Processing: Object to processing based on legitimate interests or for direct

    marketing purposes

  • Automated Decision-Making: Not be subject to decisions made solely by automated

    processing where they produce significant effects on you

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days (or as required by applicable law). If you believe your privacy rights have not been respected, you may also lodge a complaint with the relevant supervisory authority in your jurisdiction.

10. Cookies and Website Tracking

Our website (alignintu-it.com.au) may use cookies and similar tracking technologies to enhance your browsing experience, analyse traffic, and support the functionality of our booking and payment systems.

The types of cookies we may use include:

  • Essential Cookies: Required for the website to function (e.g. session management, security)

  • Analytics Cookies: Used to understand how visitors use our site (e.g. Google Analytics or

    similar)

  • Marketing Cookies: Used to deliver relevant communications where you have consented

You can control or disable cookies through your browser settings. Please note that disabling certain

cookies may affect the functionality of our website. Where required by applicable law (including for EEA or UK visitors), we will seek your consent before placing non-essential cookies.

11. Direct Marketing

We may use your contact details to send you information about our services, programs, retreats,

frequency downloads, and other offerings — where you have consented to receive such communications, or where we have a legitimate interest in doing so and you have not opted out.

All marketing communications will include a clear option to unsubscribe or opt out. You may withdraw

your consent at any time by:

  • Clicking the unsubscribe link in any marketing email

  • Contacting us directly at [email protected]

We comply with the Spam Act 2003 (Cth) in relation to all electronic marketing communications.

12. Service Disclaimer

All services provided by Align Intu-it — including but not limited to ThetaHealing®, Kinesiology, Soul Realignment®, Sound Therapy, Tuning Fork Therapy, Transpersonal Crystal Therapy, Iridology, frequency medicine programs (including the 21-Day Frequency Reset), and all digital and in-person offerings — are complementary and holistic in nature. They are provided for personal wellbeing, selfexploration, and frequency alignment purposes only.

These services are not medical treatment, psychological therapy, or professional advice of any kind,

and are not intended to diagnose, treat, cure, or prevent any edical condition. They do not replace

professional legal, financial, psychological, medical, or mental health advice or treatment.

By engaging with Align Intu-it, you acknowledge and accept full responsibility for your own decisions, choices, and wellbeing.

13. Contact Us / Complaints

If you have any questions, concerns, or complaints about this Privacy Policy or the way we handle your personal information, please contact:

Elle Maree (Ellena Spence)

Align Intu-it

Email: [email protected]

Phone: 0431 335 215

Website: alignintu-it.com.au

We will acknowledge your complaint within 5 business days and aim to resolve it within 30 days. If you are not satisfied with our response, you may escalate your complaint to:

  • Office of the Australian Information Commissioner (OAIC): www.oaic.gov.au | 1300 363 992

  • Office of the Information Commissioner Queensland (OIC Qld): www.oic.qld.gov.au (if relevant)

  • Information and Privacy Commission NSW (IPC NSW): www.ipc.nsw.gov.au (if relevant)

  • EU/UK supervisory authority: Your national or regional data protection authority (for EEA or UK clients)

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. The updated Policy will be published on our website at alignintu-it.com.au with a revised “Last Reviewed” date. Where changes are material, we will take reasonable steps to notify you directly (e.g. by email).

Continued use of our website or services following an update constitutes acceptance of the revised Policy.

SUBSCRIBE