Privacy Policy
THIS OSKA WELLNESS PRIVACY NOTICE IS EFFECTIVE AS OF APRIL 30, 2026 AND REPLACES THE PRIOR OSKA WELLNESS PRIVACY NOTICE.
This Privacy Policy of OSKA, Inc. applies to the OSKA, Inc. (“Oska Wellness,” “we,” “us” or “our”) owned Internet website (“Site”) located at www.oskawellness.com. and the webpages and other web addresses accessible from such site, including without limitation, the Oska Wellness Store (collectively, the "Website").
We refer to each user of our Products and Services, and any parent or guardian acting on behalf of such user, as "you" or as "User." We also refer to any company on whose behalf a User is using Oska Wellness Products or Services as "you" or a "User." The Oska Wellness Product used by the User, or outside the United States who is legally authorized to use the Oska Wellness Product, is referred to as the "User Device." This Privacy Policy is subject to the applicable Oska Wellness Terms of Use located at www.oskawellness.com/pages/terms-of-use, and if there is a conflict between this Privacy Policy and the Oska Wellness Terms of Use, the terms of this Privacy Policy will control. In jurisdictions where applicable, by using any Oska Wellness Product or Service, you agree with the terms of this Privacy Policy.
This Privacy Notice describes how Oska Wellness collects, uses, and shares the information that you provide to us through your use of the Oska Wellness Products and Services.
By using our Website or providing information through it, you agree to the practices described in this Policy. If you do not agree, please do not use the Website.
Information we collect
Personal Information
Personal information is information about an identifiable individual. This, however, does not include information which is anonymous, i.e., where the identifying data fields are removed. Generally, you can visit our Website without revealing your personal information. However, we can collect identifying data, such as name, surname, email address, residence and any other information that you voluntarily provide by communicating with us, such as by registering a device, creating an account, sending an email, submitting an online information request form or purchasing something from our store.
Additionally, we can collect any other personal information that you choose to provide to us through our Products and Services. This includes information you provide to us (or our service provider) to apply for a job. Other information provided through a job application may include, for example, your educational and employment background, your contact information, and immigration status. All personal information that you may provide to us is voluntary; however, certain information may be required to complete specific transactions or use certain features of our Products and Services.
In some cases, Oska Wellness may collect information about you that is not personally identifiable. Examples of this type of information include, but are not limited to the frequency of your use of this website and the route by which you choose to access it, and your use of hyperlinks available on this website. We and our service providers or agents may process and use this data for purposes including, but not limited to planning website development, assessing patterns of use, planning, and assessing marketing initiatives by Oska Wellness. This information is gathered by certain tools and methods such as the collection of your IP address or the use of cookies. We use your IP address to help diagnose problems with our server, to administer our websites, and for other purposes discussed in this privacy policy. We do not link IP addresses to personally identifiable information except for fraud prevention.
Oska Wellness uses cookies to help provide site stability, security, and a user experience free of interruption. These cookies are essential to the proper functioning of Oska Wellness Products and Services. To learn more about cookies, similar technologies and the choices offered to control these types of activities, see our Cookies section below.
Shopify
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products. Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
Payment:
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).
General
Your personal information may be collected, used, processed, transferred, and retained in multiple countries including Canada, the United States, and the European Economic Area which may be outside the region in which you are situated and may have different privacy or data protection legislation, and may therefore be subject to the laws of these countries. If you are a resident of the European Economic Area or a country which restricts data transfers outside of that jurisdiction or region without your consent, by using our Software, you consent to your personal information being transferred outside of the European Economic Area or your country for processing or storage by or on behalf of us.
How we use your information
Provide and operate our Website and online portals
Communicate with you about your account, requests, or questions
Improve our website, services, and user experience
Respond to customer service issues and feedback
Maintain security and prevent fraud
Comply with legal and regulatory requirements
Notify you about updates to our Site or this Policy
Send surveys or request feedback
Carry out purposes explained at the time information is collected
We do not sell your personal information. We also do not share mobile phone numbers or text message consent with third parties for their own marketing purposes.
How We May Share Information
We may share personal information only as permitted by law and as needed to operate our business, including with:
Affiliated companies that help us provide the Website or related services
Service providers who perform services on our behalf, such as IT support, website hosting, analytics, or customer service
Government authorities or law enforcement, when required by law
Professional advisors, such as attorneys or accountants
Business associates who may help with order processing and business operations.
Business successors in the event of a merger, acquisition, or similar transaction
Wherever we provide your personal information to third-party suppliers, they are required to comply with the conditions set forth in this document and keep your personal information confidential and secure and to use your personal information to the minimum extent necessary.
We may also share information if we explain it to you at the time you provide it or if you give permission.
How We Protect Your Information
We use reasonable administrative, technical, and physical safeguards to protect your personal information. However, no internet transmission or storage system can be guaranteed to be 100% secure. Please use caution when sharing information online.
Your Choices and Rights
You have choices about how your information is collected and used:
Cookies
You can control cookies through your browser or device settings.
Choosing Not to Share Information
You may choose not to provide certain information, but this may limit your ability to use some Website features.
Marketing Communications
You can opt out of marketing emails by clicking “unsubscribe” in the message.
You can opt out of text messages by replying STOP. See our SMS Terms of Service.
You may also contact us directly to update your preferences.
Children’s Privacy
Our Site is intended for a general audience and is not designed for children under 16. We do not knowingly collect personal information from children under 16 without parental consent.
Links to Other Websites
Our Website may link to other websites that are not operated by Oska Wellness. We are not responsible for the privacy practices or content of those sites. We encourage you to review their privacy policies.
Changes to This Policy
We may update this Policy from time to time. When we do, we will post the updated version on our Website and change the “Last Updated” date. For material changes, we will provide additional notice, such as via email to registered users or a prominent notice on our Website, prior to the change becoming effective. Your continued use of the Website after any update constitutes acceptance of the updated Policy.
California Privacy Rights
This Section applies to natural persons who are California residents, as defined in Cal. Civ. Code 1798.140(g). We adopt these provisions to comply with the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 ("CCPA" or "CPRA”) and other California privacy laws. Any terms defined in the CCPA have the same meaning when used in this notice.
We collect Personal Information as described in this Privacy Policy. For clarity regarding compliance with the CCPA, we have collected the following CCPA categories of Personal Information from consumers within the preceding twelve (12) months:
|
Category |
Examples |
Collected |
|
Identifiers. |
A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver's license number, passport number, California identification card number, or other similar identifiers. |
YES |
|
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). |
A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories. |
YES |
|
Protected classification characteristics under California or federal law. |
Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information). |
YES (limited to job applicant data collected through employment applications) |
|
Commercial information. |
Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. |
YES |
|
Biometric information. |
Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. |
NO |
|
Internet or other similar network activity. |
Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement. |
YES |
|
Geolocation data. |
Physical location or movements. |
NO |
|
Sensory data. |
Audio, electronic, visual, thermal, olfactory, or similar information. |
NO |
|
Professional or employment-related information. |
Current or past job history or performance evaluations. |
YES |
|
Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). |
Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. |
NO |
|
Inferences drawn from other Personal Data. |
Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. |
YES |
Under the CCPA, personal information does not include:
• Publicly available information from government records.
• De-identified or aggregated consumer information.
• Information excluded from the CCPA's scope, such as:
o Health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clinical trial data;
o Personal Information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver's Privacy Protection Act of 1994.
We may use or disclose Personal Information as specified above. We will not collect additional categories of Personal Information or use the Personal Information we collected for materially different, unrelated, or incompatible purposes without providing you with notice and, where required by law, obtaining your consent.
As stated earlier, we may disclose your Personal Information to a third party for a business purpose. In the preceding twelve (12) months, we have disclosed the following categories of Personal Information for a business purpose:
Category: Identifiers and California Customer Records Personal Information categories.
Category: Commercial Information
Category: Professional or employment-related information
We may disclose your Personal Information for a business purpose to the following categories of third parties:
* Service providers
* Contractors and vendors
* Third parties to whom you or your agents authorize us to disclose your Personal Information in connection with services we provide to you
* Social media platforms (when you choose to share content)
* Business partners
* Affiliates and subsidiaries
In the preceding twelve (12) months, we have not sold or shared any Personal Information as defined under the CCPA.
Your Rights and Choices. The CCPA provides California residents with specific rights regarding their Personal Information, including but not limited to: (1) the right to know what personal information is collected, used, shared or sold; (2) the right to delete personal information held by businesses; (3) the right to opt-out of sale or sharing of personal information; (4) the right to correct inaccurate personal information; (5) the right to limit use and disclosure of sensitive personal information; and (6) the right to non-discrimination for exercising CCPA rights. To exercise your CCPA rights, you may submit a verifiable consumer request to us by: emailing privacy@oskawellness.com, calling toll-free at [phone number], or visiting [designated portal URL]. Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. We will respond to verifiable consumer requests within 45 days of receipt, or notify you if we require additional time (up to 90 days total).
Deletion Request Rights. You have the right to request that we delete any of your Personal Information that we collected from you and retained, subject to certain exceptions. Please be advised that under California privacy laws, only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your Personal Information. We will respond to your verifiable consumer request within 45 days of receipt. If we require more time, we will inform you of the reason and extension period in writing. We will deliver our written response electronically. Any disclosures we provide will only cover the 12-month period preceding receipt of your verifiable consumer request.
Exercising Access, Data Portability, and Deletion Rights. To exercise your rights to access, data portability, and deletion of Personal Information, you may submit a verifiable consumer request to us by emailing privacy@oskawellness.com, calling toll-free at [phone number], or visiting [designated portal URL]. You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative, and describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it. We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm the Personal Information relates to you.
Non-Discrimination. We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not: (a) deny you goods or services; (b) charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties; (c) provide you a different level or quality of goods or services; or (d) suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services. However, we may offer you certain financial incentives permitted by the CCPA that can result in different prices, rates, or quality levels. Any CCPA-permitted financial incentive we offer will reasonably relate to your Personal Information's value and contain written terms that describe the program's material aspects. Participation in a financial incentive program requires your prior opt-in consent, which you may revoke at any time.
California Online Privacy Protection Act
Age Restriction. We understand the importance of protecting children’s privacy in the interactive online world. Our Services are not designed for, or intentionally targeted at, children under 16 years of age. We do not knowingly collect or maintain Personal Information relating to children under 16 years of age. If we learn that we have collected Personal Information from a child under 16 without verification of parental consent, we will delete that information as quickly as possible. Our Terms of Use expressly limits registration on our Services to those 18 and older. If you believe that we might have any information from or about a child under 16, please contact us using the contact information provided in this Privacy Policy.
In compliance with the California Online Privacy Protection Act (CalOPPA), while we strive to offer you choice when using our Services, we do not currently respond to web browser "Do Not Track" signals or other mechanisms that provide consumers the ability to exercise choice regarding the collection of Personal Information about an individual consumer's online activities over time and across third-party websites or online services.
Deidentification. We may process Personal Information for the purpose of creating a deidentified data set in accordance with California law. We will maintain and use such deidentified information in deidentified form and will not attempt to reidentify the information, except as permitted by California law for testing our deidentification procedures. We may then process that deidentified data set for business purposes, including improving our products and services, without further notice to you.
Algorithmic Profiling. We use algorithm-based technologies to personalize dynamic web content based on your explicit and/or implicit interests. We carry out general profiling such as segmentation, non-automated and automated decision-making based on profiling for the purpose of providing you with a more relevant experience and for the purposes of our legitimate interests as a commercial organization. Solely automated decision making is never used in any way that produces a legal or similarly significant effect. Depending on the laws of the country where you live, you may have rights related to our decision. For example, if you live in the European Union, you may have the right not to be subject to our decision, or you may have the right to insist on human intervention in the process, express your point of view or contest the decision. To exercise any such right, contact us via one of the methods set out above. In some cases, we may have the right to continue with our decision, in accordance with applicable laws. This will be explained if it is the case. Otherwise, we will respond to your request as promptly as reasonably possible.
If you have any questions regarding this Privacy Notice, please contact us via email at privacy@oskawellness.com.