Privacy Policy

1. Introduction and Scope

Welcome to Actirest ("we," "us," or "our"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, store, and protect information about you when you visit our website at grizelonghik.world (the "Website"), use our services, or communicate with us.

This Policy applies to all personal data we process, whether collected online through our Website, via email, telephone, or in person. We are the data controller for the personal information we collect and process.

By using our Website, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree, please discontinue your use of the Website immediately.

This Privacy Policy is designed to comply with applicable privacy laws including but not limited to:

• The General Data Protection Regulation (EU) 2016/679 ("GDPR")
• The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA)
• The New York SHIELD Act
• Other applicable US federal and state privacy laws

2. Who We Are

Company Name: Actirest LLC

Registered Address: 1115 Broadway 10 Floor, New York, NY 10010, United States

Phone: +1 (646) 943-9160

Email: info@grizelonghik.world

Website: grizelonghik.world

As data controller, Actirest LLC is responsible for deciding how your personal information is used and ensuring it is handled lawfully, fairly, and transparently.

3. Information We Collect

We collect different categories of personal data depending on how you interact with us:

3.1 Information You Provide Directly

• Contact Information: When you complete our contact form, you provide your full name, email address, and a written message. This information is used exclusively to respond to your inquiry.
• Account Registration Data: If you create a member account, we collect your name, email address, password (stored in encrypted form), and membership plan selection.
• Payment Information: If you purchase a membership, payment information (such as credit card details) is processed by our secure third-party payment processor. We do not store full payment card numbers on our systems.
• Communications: Records of any correspondence you send us, including email exchanges, support tickets, or feedback forms.
• Survey Responses: Any information you provide when responding to optional surveys or questionnaires.

3.2 Information Collected Automatically

When you visit our Website, certain technical information is collected automatically:

• Device and Technical Data: IP address, browser type and version, operating system, device type, screen resolution, and hardware identifiers.
• Usage Data: Pages visited, time spent on pages, links clicked, referral URLs, exit pages, and navigation paths.
• Cookie Data: Data collected via cookies and similar tracking technologies. For full details, see our Cookie Policy.
• Log Data: Server log files that record interactions with the Website, including access times and error logs.

3.3 Information from Third Parties

• Analytics Providers: We may receive aggregated, anonymized usage data from analytics services such as Google Analytics.
• Social Media Platforms: If you interact with our social media content and consent to data sharing, we may receive certain profile information as permitted by those platforms' privacy settings.

4. Legal Bases for Processing (GDPR)

For individuals in the European Economic Area (EEA) and the United Kingdom, we process your personal data under the following legal bases as set out in Article 6 of the GDPR:

5. How We Use Your Information

We use the personal information we collect for the following specific purposes:

• To Provide and Improve Our Services: Delivering the content, features, and membership services you have requested; improving and personalizing the Website experience; developing new features and offerings.
• To Communicate With You: Responding to inquiries submitted through our contact form; sending transactional communications related to your membership (receipts, renewal notices, account updates); providing support and addressing issues you raise.
• To Send Marketing Communications (with consent): If you have expressly opted in, we may send you newsletters, updates about Actirest programs, and information about relevant lifestyle topics. You may withdraw consent at any time.
• For Analytics and Research: Understanding how visitors use our Website, identifying popular content, analyzing traffic patterns, and making data-driven improvements to user experience.
• For Legal and Security Purposes: Complying with applicable laws and regulations; detecting, preventing, and addressing fraud, security breaches, and technical issues; protecting the rights, property, and safety of Actirest, our members, and the public.
• For Business Administration: Maintaining accurate business records; managing supplier and partner relationships; internal reporting and financial management.

6. Cookies and Tracking Technologies

We use cookies and similar technologies on our Website. Cookies are small text files placed on your device that help us provide a better experience. We use the following categories of cookies:

• Strictly Necessary Cookies: Essential for the Website to operate. These cannot be disabled.
• Analytics Cookies: Help us understand visitor behavior. Only placed with your consent.
• Marketing Cookies: Used to deliver relevant content. Only placed with your explicit consent.

You can manage your cookie preferences at any time using our cookie consent banner or by reviewing our Cookie Policy. You can also control cookies through your browser settings; however, disabling certain cookies may affect Website functionality.

7. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We share your data only in the following limited circumstances:

7.1 Service Providers

We engage trusted third-party companies and individuals to perform services on our behalf. These service providers have access to personal information only to the extent necessary to perform their functions and are contractually required to maintain appropriate data protection standards. Categories of service providers include:

• Web hosting and cloud infrastructure providers
• Payment processing services (which handle payment data under their own PCI-DSS compliant practices)
• Email delivery and communication platforms
• Analytics and website performance tools
• Customer relationship management (CRM) platforms

7.2 Legal Requirements

We may disclose personal information when required to do so by law or in response to valid legal process, including subpoenas, court orders, or government agency requests, provided we have a good-faith belief that such disclosure is necessary.

7.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or part of our assets, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our Website of any change in ownership or uses of your personal information.

7.4 Protection of Rights

We may disclose information when we believe it is necessary to investigate, prevent, or address illegal activity, fraud, or situations involving potential threats to the safety of any person or our systems.

8. International Data Transfers

Actirest is based in the United States. If you are accessing our Website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction.

For transfers of personal data from the EEA or UK to the United States, we rely on appropriate safeguards including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data processing agreements with all service providers that incorporate adequate protection measures
• Your explicit consent, where applicable

9. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements. Our general retention schedules are:

After the applicable retention period, your data will be securely deleted or anonymized so it can no longer be associated with you.

10. Your Rights

Depending on your location, you have certain rights regarding your personal information. We respect all applicable rights and will respond to verified requests in accordance with applicable law.

10.1 Rights Under GDPR (EEA/UK Residents)

• Right of Access (Article 15): You have the right to request a copy of the personal data we hold about you and information about how we process it.
• Right to Rectification (Article 16): You have the right to request correction of inaccurate or incomplete personal data.
• Right to Erasure / "Right to Be Forgotten" (Article 17): You have the right to request deletion of your personal data where there is no compelling reason for us to continue processing it.
• Right to Restrict Processing (Article 18): You have the right to request that we restrict the processing of your data in certain circumstances.
• Right to Data Portability (Article 20): You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.
• Right to Object (Article 21): You have the right to object to processing based on legitimate interests or for direct marketing purposes.
• Rights Related to Automated Decision-Making (Article 22): We do not engage in solely automated decision-making that produces legal or significant effects. If this changes, you will have the right to human review.
• Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of processing carried out prior to withdrawal.

10.2 Rights Under CCPA/CPRA (California Residents)

• Right to Know: The right to know what personal information we collect, use, disclose, and sell about you.
• Right to Delete: The right to request deletion of personal information we have collected from you, subject to certain exceptions.
• Right to Correct: The right to request correction of inaccurate personal information.
• Right to Opt-Out of Sale/Sharing: We do not sell personal information. If this changes, we will provide an explicit opt-out mechanism.
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
• Right to Limit Use of Sensitive Personal Information: We do not collect sensitive personal information beyond what is necessary for our services.

10.3 How to Exercise Your Rights

To exercise any of your rights, please contact us using the details in Section 2 or by using our contact form on the homepage. We will respond within:

• 30 days for GDPR requests (extendable by a further two months for complex requests)
• 45 days for CCPA/CPRA requests (extendable by a further 45 days)

We may require you to verify your identity before processing your request. We will not charge a fee for reasonable requests, but may charge for excessive or unfounded requests.

11. Children's Privacy

Our Website and services are intended for individuals aged 18 and over. We do not knowingly collect personal information from children under the age of 13. If we become aware that we have inadvertently collected personal information from a child under 13 without verifiable parental consent, we will take steps to delete that information as soon as possible.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at the details provided in Section 2.

12. Data Security

We implement and maintain appropriate technical and organizational security measures to protect your personal information against unauthorized access, disclosure, alteration, or destruction. These measures include:

• Transmission of all data via HTTPS (TLS encryption)
• Password hashing using industry-standard algorithms
• Access controls and role-based permissions for staff
• Regular security assessments and vulnerability testing
• Data minimization practices — we collect only what we need
• Secure disposal of data when retention periods expire
• Staff training on data protection and privacy practices

While we employ robust security practices, no method of data transmission or storage is 100% secure. In the event of a data breach that poses a high risk to your rights and freedoms, we will notify you and relevant supervisory authorities as required by applicable law (within 72 hours under GDPR).

13. Third-Party Links

Our Website may contain links to external websites, including social media platforms. This Privacy Policy applies only to our Website. We are not responsible for the privacy practices of external sites and encourage you to review the privacy policies of any third-party website you visit.

14. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this page
• Notify registered members via email, where required by law
• Display a prominent notice on the Website homepage for a reasonable period

Your continued use of the Website after any changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this page periodically.

15. Complaints and Supervisory Authorities

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. In the United States, you may contact your state attorney general's office. For EEA residents, you may contact your local Data Protection Authority (DPA). A list of EEA DPAs is available at edpb.europa.eu.

We encourage you to contact us first so we can attempt to resolve your concern directly.

16. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: