LEGAL

Privacy Policy

Effective January 1, 2025  ·  Last updated April 26, 2026

At White Mirror, your inner world is sacred. This Privacy Policy explains how we collect, use, and protect the personal information you share with us — and how you remain in control of it at all times.

01

Who We Are

White Mirror is a wellness brand dedicated to guided self-reflection and emotional wellbeing. We operate the White Mirror Journal and any associated digital products, platforms, or services (collectively, the "Services"). For questions about this policy, contact us at hello@whitemirrorjournal.com.

02

Information We Collect

Information you provide directly
  • Name, email address, and contact details when you create an account, place an order, or reach out to us
  • Billing and shipping information when you make a purchase
  • Reflections, journal entries, or responses if you use any digital journaling features
  • Communications you send us via email or support channels
  • Survey responses, feedback, and testimonials you choose to share
Information collected automatically
  • Device type, browser, operating system, and IP address
  • Pages visited, time spent, clicks, and navigation paths on our website
  • Referring URLs and search terms that led you to us
  • Cookie identifiers and similar tracking technologies
Information from third parties
  • Payment processors (e.g. Stripe) may share transaction confirmation data
  • Analytics providers may share aggregated behavioral insights
  • Social platforms may share limited profile data if you connect or log in via them
03

How We Use Your Information

  • To process and fulfill your orders and deliver our products to you
  • To operate, personalize, and improve our website and digital services
  • To send you order confirmations, shipping updates, and important account notices
  • To send you marketing communications or newsletters — only with your consent, and you may unsubscribe at any time
  • To respond to your questions, feedback, or support requests
  • To analyze how our Services are used and identify areas for improvement
  • To detect, investigate, and prevent fraudulent or unauthorized activity
  • To comply with applicable legal obligations

Important: We never sell your personal information. We never use your journal entries or personal reflections to train machine learning models or for advertising purposes.

04

Legal Basis for Processing

Where applicable under data protection laws such as the GDPR:

Contract performance To fulfill your order or provide a service you've requested
Consent For marketing emails and non-essential cookies, which you may withdraw at any time
Legitimate interests To improve our Services, prevent fraud, and maintain security
Legal obligation Where we are required to process data to comply with applicable law
05

Sharing Your Information

We do not sell, rent, or trade your personal information. We may share it only with:

Service providers Trusted third parties who help us operate (payment processors, shipping carriers, email platforms, hosting providers), bound by contract to use your data only on our behalf
Analytics partners Aggregated or anonymized data only
Legal authorities When required by law, court order, or to protect the rights and safety of others
Business transferees In the event of a merger or acquisition, with advance notice to you
06

Cookies & Tracking Technologies

We use cookies to enhance your experience and understand how our site is used.

Essential cookies Necessary for the site to function (shopping cart, sessions). Cannot be disabled.
Analytics cookies Help us understand traffic patterns. Used only with your consent.
Marketing cookies Used to deliver relevant content. Used only with your consent.

You can manage cookie preferences through our cookie banner or your browser settings at any time.

07

Data Retention

We retain your information only as long as necessary:

  • Order and transaction records: up to 7 years for legal and accounting purposes
  • Account information: for the duration of your account plus a reasonable period after closure
  • Marketing preferences: retained to honor your opt-out choices
  • Journal entries stored digitally: deleted upon your request or account deletion

When data is no longer needed, we securely delete or anonymize it.

08

Your Rights

Depending on your location, you may have the right to:

Access Request a copy of the personal data we hold about you
Correction Ask us to correct inaccurate or incomplete data
Deletion Request that we delete your personal data, subject to legal obligations
Portability Receive your data in a structured, machine-readable format
Objection Object to processing based on legitimate interests or for direct marketing
Restriction Ask us to limit how we use your data in certain circumstances
Withdraw consent Revoke consent for marketing or non-essential cookies at any time
Complaint Lodge a complaint with your local data protection authority

To exercise any of these rights, contact us at hello@whitemirrorjournal.com. We respond within 30 days.

09

Children's Privacy

Our Services are intended for individuals aged 16 and older. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with their data, please contact us immediately at hello@whitemirrorjournal.com and we will promptly delete it.

10

International Data Transfers

Your information may be processed in countries outside your own. Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by relevant authorities.

11

Security

We implement industry-standard technical and organizational measures to protect your data — including encrypted data transmission (SSL/TLS), access controls, regular security reviews, and carefully vetted third-party providers.

No method of transmission over the internet is completely secure. If you suspect unauthorized access to your account, please contact us immediately.

12

Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date at the top of this page and, where appropriate, notify you by email. Your continued use of our Services after changes constitutes acceptance of the updated policy.

13

Contact Us

If you have any questions, concerns, or requests related to this Privacy Policy or how we handle your data, we'd love to hear from you.

Email:  hello@whitemirrorjournal.com

We aim to respond to all privacy-related inquiries within 5 business days.

This Privacy Policy was written to be read — not just to comply.
If any part of it is unclear, please reach out. Your trust is the foundation of everything we build.