Effective Date: December 16, 2025
1. The Preamble: Your Sovereignty
At Manifesting Desires LLC, we view privacy not merely as a compliance requirement, but as a spiritual and structural necessity. The work we do requires total vulnerability; therefore, it demands total protection. This document outlines how we hermetically seal your identity, your biometrics, and your story.
2. Information We Collect ("The Intake")
To facilitate our High-Performance Consulting and Shamanic services, we may collect the following categories of data:
- Identity Data: Name, date of birth (for Astrology), and contact details.
- Biometric & Health Data (Special Category Data): Data regarding sleep patterns, heart rate variability (HRV), and nutrition (e.g., Oura/Whoop exports), solely provided by you for forensic analysis.
- Astrological Data: Birth time, date, and location.
- Session Data: Notes, audio recordings, and transcripts generated during our work.
3. The "Walled Garden" AI Protocol
We utilize Enterprise-Grade Augmented Intelligence to assist in pattern recognition and data synthesis.
- No Training on Client Data: Our workspace is configured as a "Zero-Training" environment. Your data is processed within an encrypted silo and is never used to train public algorithms, large language models (LLMs), or third-party neural networks.
- Isolation: Client insights generated by AI are isolated to your specific case file and are not accessible to other clients.
4. The "Air Gap" Protocol: Biometric & Health Data
We apply a heightened security standard to your biological data (Oura, Whoop, Medical History):
- Ephemeral Processing: Raw health files sent to us are used solely for the creation of your Vitality Calibration or Restoration Protocol.
- The 10-Day Destruction Rule: Once the relevant report is generated and delivered to you, the raw source files are permanently destroyed/deleted from our active workspace within 10 days.
- Cold Storage: While active, sensitive health data is stored primarily on local, offline hard drives (Cold Storage) rather than public cloud servers, minimizing exposure to web-based threats.
5. International Data Transfers (GDPR & CCPA Compliance)
Manifesting Desires LLC operates out of the United States. If you are accessing our services from the European Economic Area (EEA) or California:
- Lawful Basis (GDPR): We process your data based on Contractual Necessity (to deliver the service you bought) and Explicit Consent (for sensitive health/spiritual data).
- International Transfer: By engaging with us, you acknowledge that your data is transferred to the United States. We rely on the specific derogations in Article 49 of the GDPR for specific situations (performance of a contract).
- California Residents (CCPA/CPRA): We do not sell your personal data. We do not "share" your sensitive personal data for cross-context behavioral advertising. You have the right to limit the use of your sensitive personal information to that which is necessary to perform the services.
6. Communications & Encryption
- Signal / WhatsApp: We utilize end-to-end encrypted (E2EE) platforms (Signal, WhatsApp) for rapid communication ("The Red Phone"). While these platforms are industry standards for security, we advise against sending highly sensitive medical documents via text.
- Hospitality Interfaces: When coordinating with resorts for The Sovereign Immersion, we practice Data Minimization. We communicate your environmental needs (e.g., "Client requires blackout curtains," "Client requires vegan menu") but do not transfer your medical files or diagnostic history to hotel staff.
7. The Visual Vault (Secure Telepresence)
We hold our virtual sessions to the same privacy standards as a medical consultation.
- HIPAA-Aligned Platforms: We utilize enterprise-tier configurations of Zoom and Google Meet that operate under strict Business Associate Agreements (BAA).
- Zero-Training Guarantee: These agreements legally prohibit the service providers from accessing your audio, video, or screen-sharing data to train their AI models. Your image and voice remain your sovereign property.
- Encryption: All sessions are protected by end-to-end encryption to prevent unauthorized interception.
8. Data Retention & The "Right to be Forgotten"
- The 3-Year Cycle: Unless you request otherwise, general client records (Session notes, Astrology charts, Strategy Briefs) are retained for 3 years following the conclusion of your last contract to facilitate future work. After this period, files are permanently archived or destroyed.
- Your Rights: regardless of your location, you hold the right to:
- Access: Request a copy of the objective personal data you have provided to us. (Note: This right applies to your personal information and delivered reports. It does not extend to our internal proprietary notes, working papers, or intuitive "shorthand" generated during our analysis, which remain the intellectual property of Manifesting Desires LLC.)
- Rectification: Correct wrong information.
- Erasure ("Right to be Forgotten"): Request the permanent deletion of your file (subject to our legal tax/record-keeping obligations).
9. Digital Footprints (Cookies & Analytics)
While our focus is on human connection, our website utilizes standard digital tools to function correctly.
- Cookies & Pixels: We use "cookies" (small text files) and "pixels" to ensure the site recognizes you and provides a seamless experience. We do not use these to harvest personal identities of anonymous visitors. You may disable cookies in your browser settings, though some site features may lose functionality.
- Analytics: We utilize tools like Google Analytics to understand broad traffic patterns (e.g., "How many visitors from London?"). This data is aggregated and anonymized. We do not allow third-party trackers to build behavioral profiles of our private clients for the purpose of selling that data to advertisers.
- "Do Not Track" Signals: Currently, internet browser standards for "Do Not Track" signals are not uniform. As such, our systems do not alter behavior based on these headers.
10. The Verification Protocol (Security Check)
To protect your sovereignty, we do not release data simply because it was requested. We acknowledge that bad actors may attempt to impersonate UHNW individuals to gain access to private files.
- Strict Verification: If you (or an authorized agent) request access to, or deletion of, your file under CCPA/GDPR, we will require at least two distinct forms of verification matching the data we hold on file.
- Denial of Access: If we cannot confirm your identity with absolute certainty, we will deny the request. We prioritize the safety of your data over the speed of the administrative process.
11. External Ecosystems (Third-Party Links)
Our website or materials may contain links to external sites (e.g., recommended reading, partners, or resources). Please be aware that Manifesting Desires LLC is not responsible for the privacy practices or content of these external ecosystems. We encourage you to read the privacy statements of any third party you interact with.
12. Our services are designed for adults.
We do not knowingly collect Personal Identifiable Information (PII) from children under the age of 13.
- COPPA Compliance: In accordance with the Children's Online Privacy Protection Act (COPPA), if we discover that a child under 13 has provided us with PII without parental consent, we will delete such information from our servers immediately.
13. Succession & Assignment
In the unlikely event of a sale, merger, or reorganization of Manifesting Desires LLC, your information may be transferred as part of the business assets. However, any such transfer will be subject to the condition that the acquiring entity honors the commitments made in this Data Sovereignty Policy regarding the protection and handling of your sensitive data.
14. Contact & Data Protection Officer
To exercise any of your rights or to query a privacy matter, please initiate contact via our public gateway: Email: manifestingdesires@yahoo.com
- Security Protocol: Please do not include sensitive personal information, medical data, or attachments in this initial correspondence. This public address functions as a protective firewall to maintain the integrity of our internal servers. Upon receipt of your inquiry, we will reply from our encrypted domain to verify your identity and establish a secure channel for your request.