PLEASE READ THIS DOCUMENT CAREFULLY
We respect your privacy and are committed to maintaining and using any information we collect through your use of our Services responsibly.
The Information We May Collect
Our primary purpose in collecting information from or about you is to provide you with a safe, smooth, efficient, and customized experience of our memberships. Depending on the manner in which you use our Services, we collect information about you that we deem necessary for providing Services and features that optimize, secure, and ease your user experience.
Personal Information or Personal Data ("PII"): Summit Within may collect and process information that could be directly or indirectly associated with you; information such as your full name, user name and password, phone number, email address, billing or mailing address, credit/debit card information and other information that you share with Summit Within. You can choose not to provide us with certain information, but that may result in you being unable to use certain features of our Services because such information may be required in order for you to register for an account; purchase products or Services; participate in a contest, promotion, survey, or sweepstakes; ask a question; or initiate other transactions on our website.
Payment Information: For the purposes of billing, Summit Within membership fees are processed through Summit Within’s payment gateways, and credit card information is not stored internally. The payment information is necessary in order for you to use our Services and failure to provide such information may result in you not being able to use our Services.
Non-Personal Information: Web Beacons, also known as pixel tags and clear GIFs, ("Web Beacons"), are electronic images that allow a website to access cookies and help track marketing campaigns and general usage patterns of visitors to those websites. Web Beacons can recognize certain types of information, such as cookie numbers, time and date of a page view, and a description of the page where the Web Beacons are placed. No PII about you is shared with third parties through the use of Web Beacons on our website. However, through Web Beacons, we may collect general information that will not personally identify you, such as: Internet browser, operating system, date of visit, time of visit and path taken through the website. Summit Within may also collect other Non-Personal Information as visitors browse our website, such as the web traffic, what pages are visited, and from where visitors come. We may compile this Non-Personal Information to enable statistical analysis of our Services that would be used internally or with external assistance to make improvements to our website and Services.
How We Use the Information We Collect
Purpose of the processing
Legal basis for the processing
To provide you access to our Services, to administrate your Summit Within account and communicate with you regarding your account and use of our Services.
To market and advertise our products and Services, including making recommendations about memberships, trips, courses and other Services you may be interested in, conducting market research, surveys or competitions.
Balancing of interests where Summit Within has pursued the legitimate interest of conducting marketing activities.
To prevent, detect, investigate and take measures against criminal activity, fraud and misuse of or damage to our Services or network and to take measures against other threats against Summit Within's or a third party's rights.
Balancing of interests where Summit Within has pursued the following legitimate interests: (a) Summit Within's interest of investigating suspicion of and taking measures against misuse of or damage to our Services or network; (b) Summit Within's and/or third party's interest of investigating and producing evidence regarding criminal activity, fraud and other threats against its interest; and (c) Competent authority's interest of conducting law enforcement activities and collecting evidence for such purposes.
To comply with applicable laws, regulations, court orders, government and law enforcement agencies’ requests.
Compliance with a legal obligation to which Summit Within is subject.
Disclosure of your PII
Summit Within may also disclose any of your information, which in some cases includes PII, in the following situations:
With your consent.
Summit Within may transmit your PII to a third party when you give us express permission to do so. For example, this may occur when we complete a transaction on your behalf or at your request.
With our authorized service providers.
Summit Within may share your PII with our authorized service providers that perform certain services and process PII on our behalf. These services may include providing customer service and marketing assistance, performing business and sales analysis, supporting our website functionality, and supporting contests, sweepstakes, surveys and other features offered through our website. These service providers may have access to PII needed to perform their functions but are not permitted to share or use such information for any other purposes.
Payment providers and your bank.
For the purpose of administering payments within our Services, we may disclose your PII to third party payment providers and your bank.
With our business partners. When you make purchases or engage in promotions offered through our website, we may share PII with the businesses with which we partner to offer you those products, services, promotions, contests and/or sweepstakes. When you elect to engage in a particular merchant’s offer or program, you authorize us to provide your email address and other information to that merchant.
In connection with a substantial corporate transaction, such as the sale of our business; a divestiture, merger, consolidation, or asset sale; or in the event of bankruptcy. If another company acquires Summit Within, that company will take on all responsibility for the information we collect, including PII, and it will assume all rights and obligations with respect to that information. Should this happen, the acquiring company may implement its own policies with respect to your information.
If we are required to disclose information by law.
Summit Within may also use and share Non-Personal Information we collect with third parties to develop and deliver targeted advertising on our website or applications of third parties, and to analyze and report on advertising you see. We may combine Non-Personal Information we collect with additional Non-Personal Information collected from other sources. We also may share aggregated, non-personal information with third parties, including advisors, advertisers and investors. For example, we may engage a third party acting on our behalf to collect web log data from you (including IP address and information about your browser or operating system) when you use our website and other websites you may access during your Internet browsing session, or place or recognize a unique cookie on your browser to enable you to receive customized advertisements or content. For more information regarding your choices about how third parties collect information about you on our website see the section titled Do-Not-Track Procedures below.
Please keep in mind that all of the information that you disclose or content that you post in your user profile, forum posts, comments, or other public portions of our website becomes public information. Because this information is publicly available, we cannot control how others treat it so we ask all Users to exercise care in deciding what information they chose to share.
We will save your PII until you erase or delete your account or otherwise exercise your right to erase your PII.
Access to Your Information and other rights
You are, at any time and free of charge, entitled to receive a copy of the PII that we hold about you and information about the processing thereof. Please note that Summit Within needs to be able to determine your identity in order to be able to respond to your request.
If you believe that any PII we are holding is incorrect or incomplete please send an email with your specific request to firstname.lastname@example.org. We will work with you to make any corrections deemed necessary. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.
You have the right to request that Summit Within restricts the processing of your PII under certain conditions. For example, if you contest the accuracy of the PII, the processing may be restricted for a period enabling Summit Within to verify the accuracy of the PII or if Summit Within no longer needs the PII for the purposes of the processing but you require the PII for the establishment, exercise, or defense of legal claims.
You have the right to have your PII deleted without undue delay and Summit Within is obliged to delete your PII without undue delay if, for example, the PII is no longer necessary in relation to the purpose for which it was collected or otherwise processed. Please note that Summit Within is not obliged to delete the PII if Summit Within can show that the processing is necessary, for example, for the establishment, exercise, or defense of a legal claim.
If you provide your email address to Summit Within, you will always have the opportunity to opt out of receiving email newsletters and promotions through the unsubscribe link in the email communications. We may send you other types of transactional and relationship e-mail communications, such as service announcements, administrative notices, and surveys, without offering you the opportunity to opt out of receiving them. Please note that changing information in your account, or otherwise opting out of receipt of promotional email communications will only affect future activities or communications from us. If we have already provided your information to a third party (such as a credit card processing partner) before you changed your preferences or updated your information, you may have to change your preferences directly with that third party.
You have the right to object, on grounds relating to your particular situation, at any time to Summit Within's processing of your PII if the processing is based on, for example, legitimate interests. If you object to such processing, Summit Within will no longer be entitled to process your PII based on such legal basis, unless Summit Within can demonstrate compelling legitimate grounds for the processing which overrides your interests, rights, and freedom or if it is conducted for the establishment, exercise, or defense of a legal claim.
You have, under certain conditions, the right to receive the PII concerning you and which you have provided to Summit Within, in a structured, commonly used and machine-readable format and have the right to transmit such PII to another data controller without Summit Within trying to prevent this, where Summit Within's processing of your PII is based on a contract or consent and the processing is carried out by automated means. In such case you have the right to request that the PII shall be transmitted from Summit Within directly to another data controller, where technically feasible.
You also have the right to withdraw your consent, if applicable. If you withdraw your consent, please note that this does not affect the lawfulness of the processing based on your consent before its withdrawal and that Summit Within may, under certain circumstances, have another legal ground for the processing and therefore may be entitled to continue the processing.
If you are unhappy with our processing of your PII or of an alleged infringement of the General Data Protection Regulation or other applicable data privacy laws, you may lodge a complaint with a competent supervisory authority, for example in the country of your habitual residence or place of work.
Our Policy Concerning Children
Securing Your Information
Summit Within takes a range of security measures designed to protect your PII and keep it confidential (unless it is non-confidential by nature) and free from any unauthorized alteration. For example, only authorized employees are permitted to access personal information, and they may do so only for permitted business functions. In addition, we use encryption in the transmission of financial information between your system and ours, and have systems in place to prevent unauthorized persons from gaining access to your personal information.
Where we have given you (or where you have chosen) a password for access to certain parts of our website, you are responsible for keeping this password confidential. As the safety and security of your information also depends on the precautions you take, we ask you not to share your password with anyone.
Third Parties and Other Information Collectors
Note that any Do-Not-Track instructions from your browser or similar mechanism will not affect our collection of the data that you voluntarily provide to Summit Within through such means as browsing our website, signing up for any of the Services or memberships, entering PII into information fields on our website, or posting on any of our forums or blogs. Be advised that third parties are free to collect any information that you volunteer to Summit Within that is visible to the public. Therefore, please do not provide Summit Within with any information that you do not want collected.
Transfer of personal information to countries outside the EU/EES
Summit Within is owned and operated by Women Who Explore and The Lady Alliance Adventures and based in Canada. Your PII is therefore transferred outside the European Union ("EU") and European Economic Area ("EEA"). Such transfer is necessary for the performance of the contract between you and Summit Within (article 49.1 (b) of the GDPR).
Such transfers are necessary for the performance of the membership between you and Summit Within (article 49.1 (b) of the GDPR).
Your PII is also transferred to and processed by third party payment providers (such as Stripe and Paypal) and your bank. Such transfers are necessary for your membership on Summit Within (article 49.1 (b) of the GDPR).
Some of the third parties identified above may also be located outside the EU/EEA, in which case we will take all necessary steps required under applicable law in order for such transfer of information across borders to be compliant with applicable law. For example, in cases where there is no adequacy decision by the Commission, this may include the use of EU model clauses (under Article 46.2 of the GDPR).
No Rights of Third Parties
1120 Avenue G Nort