Privacy Policy – TruthWish

Effective Date: February 16, 2026

TruthWish is an online platform and webshop focused on spiritual awakening, self-inquiry, ethical AI insights, nature, compassionate actions, oneness, Truth Realization / Enlightenment, and reducing suffering. We offer products for sale in our webshop, a community forum for discussions, newsletter subscriptions, and user accounts for personalized access.

We are committed to protecting your privacy and comply with applicable data protection laws, including the General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, disclose, and protect your personal data.

1. Who we are
Our website address is: https://truthwish.com.
TruthWish is based in The Netherlands.
For privacy questions, contact us at: info@truthwish.com.
For general support, order inquiries, forum help, or technical issues, contact us at: support@truthwish.com.

2. Information we collect
We collect personal data in these ways:
Account registration & login: When you create an account, we collect your email address, username, password (hashed), and optional details like name or profile info. This enables login, password recovery, and access to forum/posts.
Webshop purchases: During checkout, we collect billing/shipping name, address, email, phone (optional), payment details (processed securely by third-party gateways, we do not store full card info), and order history.
Forum participation: When you post, reply, or interact in the forum, we collect your username, posts/comments, timestamps, and any attached media (if allowed).
Newsletter subscription: When you sign up, we collect your email address (and optional name) to send updates, promotions, or spiritual insights.
Automatically collected: IP address, browser type/user agent, device info, pages visited, time/date, referral sources (via server logs and analytics tools).
Cookies & similar tech: We use cookies for essential functions (login sessions, cart persistence), preferences, analytics, and marketing (with consent where required).

3. How we use your data
We process your data to:
Provide and manage your account, login, and password recovery.
Process orders, fulfill shipments, handle payments/refunds.
Enable forum participation and community interactions.
Send newsletters (based on consent).
Improve the Site, prevent fraud/abuse, analyze usage.
Comply with legal obligations (e.g., tax records).

Legal basis (GDPR Art. 6):
Contract performance (account, purchases, forum access).
Consent (newsletter, non-essential cookies).
Legitimate interests (security, analytics, Site improvement).
Legal obligations (accounting, dispute resolution).

4. Cookies
We use necessary cookies for Site functionality (e.g., login persistence for 2 weeks if “Remember Me” selected). Analytics/marketing cookies require consent. You can manage preferences via our cookie banner. Third-party cookies (e.g., payment gateways, analytics) follow their policies.

5. Embedded content & third-party services
Forum posts or shop pages may include embeds (videos, images). These act as if you visited the source site, which may collect data/use cookies. We use third-party processors: payment gateways (e.g., Stripe/PayPal), newsletter services (e.g., Mailchimp), hosting, analytics (e.g., Google Analytics, anonymized where possible).

6. Who we share your data with
We share data only as needed:
Payment processors for transactions (they handle card data securely).
Newsletter providers for sending emails.
Hosting/backup services.
Forum software providers (if applicable).
Authorities if legally required. We do not sell your data.

7. International data transfers
Data may be transferred outside the EU (e.g., to US-based providers). We use safeguards like Standard Contractual Clauses or adequacy decisions.

8. How long we retain your data
Account data: Until you delete your account (or longer if required for legal reasons).
Order data: 7–10 years for tax/accounting compliance.
Forum posts: Indefinitely (or until deleted by you/admin).
Newsletter subscriptions: Until you unsubscribe.
Logs: Typically 6–24 months for security.

9. Your rights (GDPR)
You have the right to:
Access, correct, or delete your data.
Restrict processing or object.
Data portability.
Withdraw consent (e.g., unsubscribe from newsletter).
Lodge a complaint with a supervisory authority (e.g., Dutch DPA: Autoriteit Persoonsgegevens).

To exercise rights, email info@truthwish.com. We respond within one month.
(For non-privacy support requests, such as account issues or purchases, use support@truthwish.com.)

10. Security
We use reasonable measures (encryption, access controls) to protect your data, but no system is 100% secure.

11. Children’s privacy
Our Site is not directed at children under 16. We do not knowingly collect data from them.

12. Changes
We may update this policy. Changes will be posted here with a new effective date.

Contact
Questions? Reach us at info@truthwish.com (privacy & data rights) or support@truthwish.com (general support).