Resonance Protocol

Privacy Policy

Last updated: May 5, 2026

A Note Before You Read

We collect the minimum we need to run the membership and ship the paperback. We don't sell your data to anyone, ever. We don't run third-party advertising trackers across the Service. This policy explains the few pieces of data we do collect, why, and what your rights are.

If anything here is unclear, email support@resonanceprotocol.app and we'll explain in plain English.

1. Who We Are

  • "Resonance Protocol," "we," "us," "our" means Resonance Protocol LLC, a Wyoming limited liability company.
  • Contact: support@resonanceprotocol.app
  • Web: resonanceprotocol.app

2. What We Collect

We collect three categories of data:

2.1 Account & Billing Information

When you purchase a membership, you provide:

  • Name (used on your account and any shipping label)
  • Email address (login, receipts, member communication)
  • Shipping address (U.S. members only, used solely to ship the paperback on day 31)
  • Payment information — your card details go directly to Stripe. We never see or store your full card number. Stripe returns to us only a tokenized customer ID, the last 4 digits of the card, the brand (Visa, Mastercard, etc.), and the expiration date.

2.2 Membership Activity

Inside the member portal we record:

  • Which audio sessions you've started or completed
  • Which workbook downloads you've accessed
  • Account-level events (signup date, renewal dates, cancellation date, refund requests)

We use this only to operate the Service — for example, to know whether you've reached day 30 so we can ship the paperback, and to surface what's next in the protocol.

2.3 Website Analytics (Aggregate Only)

We use privacy-respecting, cookie-less analytics on our public website (resonanceprotocol.app) to understand which pages people visit and where traffic comes from. This is aggregate, anonymized, and does not identify individual visitors.

We do not use Google Analytics, Meta Pixel, TikTok Pixel, or any cross-site advertising trackers on the public website.

When and if we add advertising pixels for a specific marketing campaign, we will update this policy and surface a clear cookie banner before any tracker fires.

3. How We Use Your Data

We use your data only for:

  1. Operating the Service — granting member portal access, delivering audio and workbook content, tracking your protocol progress
  2. Processing payments and refunds — through Stripe
  3. Shipping the paperback on day 31 (U.S. members)
  4. Sending essential transactional email — receipts, renewal notices, cancellation confirmations, shipping updates, and policy updates that affect you
  5. Replying to support requests you send to support@resonanceprotocol.app
  6. Improving the Service based on aggregate usage patterns and member feedback
  7. Complying with the law — tax records, legal process, fraud prevention

We do not use your data for:

  • Targeted advertising (we don't run any)
  • Selling, renting, or sharing with data brokers
  • Training third-party AI models
  • Profiling beyond what's needed to operate the membership

4. Marketing Email — Opt-In Only

We send transactional email automatically (receipts, renewals, shipping, policy updates) — these are required to run your account.

We send marketing email only if you opt in (for example, by joining a newsletter list or checking an explicit "send me updates" box at checkout). Every marketing email includes a one-click unsubscribe link, and unsubscribing never affects your access to the Service.

5. Service Providers (Sub-Processors)

We use a small set of trusted vendors to run the Service. Each receives only the data they need to perform their role, and each is contractually required to protect that data:

ProviderWhat they do for usData shared
StripePayment processing, subscription billing, customer portal, refundsName, email, billing address, card details (handled directly by Stripe)
GoHighLevel (GHL)Member portal hosting, content delivery, account password management, transactional emailName, email, account events, content access logs
VercelPublic website hosting (resonanceprotocol.app)Standard server logs (IP address, user agent, request path) — not linked to member identity
Cloudflare-class CDNStatic asset delivery, DDoS protectionStandard CDN logs (IP, request path) — short retention
Plausible Analytics (or equivalent privacy-respecting analytics)Aggregate website usagePage views, referrer, anonymized — no cookies, no individual tracking
Domain registrar / email hostDomain DNS and the support@resonanceprotocol.app inboxEmail content of messages you send us
Print-on-demand or fulfillment partner (when used)Printing and shipping the paperbackName, U.S. shipping address, order reference

We may add or change sub-processors over time. We will update this list when we do, and we will not add a sub-processor whose practices conflict with this policy.

6. Cookies and Local Storage

The public website (resonanceprotocol.app) does not set tracking cookies. We may use a single first-party local-storage flag to remember a non-identifying preference (for example, that you've dismissed a notice).

The member portal (operated through GoHighLevel) uses session cookies that are required to keep you logged in. These are essential cookies and cannot be disabled while you use the portal.

Stripe Checkout (the page where you enter payment details) uses Stripe's own cookies for fraud prevention and session continuity, governed by Stripe's privacy policy.

7. Data Retention

  • Active members: we retain your account, billing, and progress data for as long as your membership is active.
  • Cancelled or refunded accounts: we retain account records for up to 24 months after cancellation for tax, accounting, dispute, and reactivation purposes, then we delete or anonymize them.
  • Transactional records (invoices, refunds, tax records): retained for 7 years as required by U.S. tax law.
  • Email correspondence: retained for up to 24 months after the last interaction.
  • Aggregate website analytics: retained indefinitely in anonymized form; cannot be tied back to individuals.

You can request earlier deletion at any time (see Section 9), subject to legal record-keeping requirements.

8. Security

We protect your data with industry-standard practices:

  • TLS encryption for all traffic between your browser, our servers, and our sub-processors
  • Stripe handles all payment card data under PCI-DSS Level 1 compliance — we don't store card numbers ourselves
  • Restricted internal access — account data is accessible only to Resonance Protocol personnel who need it to operate the Service
  • Strong passwords and MFA on all admin accounts and sub-processor consoles
  • Regular review of sub-processor security posture

No system is perfectly secure. If we ever experience a data breach affecting your personal information, we will notify affected members promptly and in any event within 72 hours of confirming the breach, in accordance with applicable law.

9. Your Rights

You have the following rights with respect to your data, regardless of where you live:

  • Access — request a copy of the personal data we hold about you
  • Correction — ask us to fix anything that's inaccurate
  • Deletion — ask us to delete your account and personal data (subject to legal retention requirements for tax/billing records)
  • Portability — receive a copy of your data in a common, machine-readable format
  • Withdrawal of marketing consent — unsubscribe from marketing email at any time
  • Cancellation — cancel your membership at any time through the Stripe customer portal

To exercise any of these rights, email support@resonanceprotocol.app with the email address on your account. We will respond within 30 days.

9.1 California Residents (CCPA / CPRA)

California residents have additional rights under the California Consumer Privacy Act:

  • The right to know what categories of personal information we have collected
  • The right to delete personal information we have collected
  • The right to correct inaccurate personal information
  • The right to opt out of the sale or sharing of personal information

We do not sell or share personal information as those terms are defined under California law. There is nothing to opt out of.

To exercise any CCPA right, email support@resonanceprotocol.app. We will not discriminate against you for exercising any privacy right.

9.2 EU / UK Residents (GDPR)

If you are in the European Economic Area or the United Kingdom, you have rights under the General Data Protection Regulation including the rights listed above plus the right to lodge a complaint with your local data protection authority.

Our legal basis for processing your data is:

  • Contract (Article 6(1)(b)) — to operate your membership
  • Legitimate interest (Article 6(1)(f)) — for fraud prevention, security, and aggregate analytics
  • Consent (Article 6(1)(a)) — for marketing email
  • Legal obligation (Article 6(1)(c)) — for tax records and legal process

We do not transfer EU/UK personal data outside the U.S. without applying appropriate safeguards (such as Standard Contractual Clauses where required).

10. Children

The Service is not directed at children under 18 and we do not knowingly collect data from minors. If you believe a minor has registered, email us and we will delete the account and refund any charges.

11. International Members

The Resonance Protocol is operated from the United States. By using the Service from outside the U.S., you understand and consent to the transfer of your data to the U.S. for processing.

International members at every paid tier (Monthly, Annual, Lifetime) receive full digital access. Paperbacks ship to U.S. addresses only. We do not collect international shipping addresses.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this document will reflect any change.

For material changes — anything that meaningfully affects what data we collect, how we use it, or who we share it with — we will notify active members by email at least 30 days before the change takes effect.

For non-material changes (typo fixes, clarifications, formatting), we'll update the document and the date without separate notice.

13. Contact

Questions, concerns, or requests under this policy:

Email: support@resonanceprotocol.app Web: resonanceprotocol.app

Resonance Protocol LLC A Wyoming limited liability company

Tune the body. The mind follows.

← Back to resonanceprotocol.app