Privacy Policy
Last updated: July 2, 2026
On this page
1. Who We Are
The 7 Space is an art gallery and wellness center located at 7 Warren Street, Newark, New Jersey 07102. It is operated by The 7 Space LLC (“The 7 Space”, “we”, “us”, “our”), a New Jersey limited liability company. We host exhibitions, wellness sessions, workshops, and community events, and we sell related goods and bookings through this website. For the purposes of data-protection law, The 7 Space LLC is the “controller” of the personal information described here. Questions about this policy or your data: [email protected].
2. Information We Collect
We keep collection to the minimum needed to serve you well. Here is exactly what we collect, why, and how long we keep it.
| Category | Examples | Why we collect it | Source |
|---|---|---|---|
| Contact details | Name, email, optional phone | To reply to you, schedule bookings, fulfill orders, and (if opted in) send updates | You, via a form / booking / checkout / newsletter |
| Booking & order details | Services or products selected, appointment times, messages, preferences | To deliver the sessions, events, and purchases you request | You |
| Payment information | Amount, item, billing name/email, last-4 & card brand | To process orders, deposits, and in-person sales (via Stripe). We never see or store your full card number. | You → Stripe |
| Technical data | IP address, browser, referring page, timestamps | Security, diagnostics, and preventing abuse | Collected automatically (server logs) |
| Usage & analytics | Aggregate page/interaction data | To understand what’s useful and improve the site | Collected automatically (analytics) |
| Communications history | Emails, form submissions, bookings, order records | Records of our work together and your visits | You / automatically |
We do not collect government IDs, financial account numbers, biometric data, precise geolocation, or special-category / sensitive data (health, race, religion, sexual orientation, etc.), and we do not knowingly collect information from anyone under 13.
3. How We Use Your Information
- Respond to your inquiry and schedule sessions, classes, events, and gallery visits.
- Send transactional messages — booking confirmations, reminders, order receipts, and service notices.
- Process payments and deposits for the bookings and products you request.
- Send newsletters or updates only if you have opted in.
- Maintain, secure, and improve the site and our services, and prevent fraud or abuse.
- Comply with legal obligations and enforce our Terms.
We do not use your information for automated decision-making that produces legal or similarly significant effects, and we do not sell it or use it for third-party advertising.
4. Legal Bases for Processing (EEA / UK)
If you are in the European Economic Area or the United Kingdom, we process your personal data on these legal bases: performance of a contract (to deliver services and products you request), legitimate interests (to run, secure, and improve our practice, balanced against your rights), consent (for opt-in marketing — which you may withdraw at any time), and legal obligation (where the law requires it).
5. Who We Share Information With
We do not sell your personal information and we do not “share” it for cross-context behavioral advertising. We disclose it only to the vetted service providers (“processors” / “sub-processors”) that run this business, each bound by contract to protect it and use it only to provide their service to us:
| Provider | What it does | Data involved | Their policy |
|---|---|---|---|
| Stripe | Online & in-person payment processing | Billing name/email, amount, card token | stripe.com/privacy |
| WooCommerce | E-commerce & order management | Order, billing, and shipping details | automattic.com/privacy |
| Amelia | Appointment & class booking | Name, email, phone, booking details | Runs on this site |
| WPForms | Contact-form handling | Whatever you submit in a form | Runs on this site |
| Beehiiv | Newsletter delivery (opt-in) | Name, email | beehiiv.com/privacy |
| Resend | Transactional email | Name, email, message content | resend.com/legal/privacy-policy |
| Twilio | SMS confirmations/reminders (opt-in) | Phone number, message content | twilio.com/legal/privacy |
| Notion | Customer/CRM records | Contact & booking details | notion.so/Privacy-Policy |
| Google Analytics | Aggregate site-usage analytics | Usage data, device/approximate location | policies.google.com/privacy |
| SiteGround | Website hosting | All site data, server logs | siteground.com/privacy |
| Cloudflare | CDN, security & bot protection | Technical/request data | cloudflare.com/privacypolicy |
We may also disclose information where required by law (e.g. a valid subpoena), to enforce our Terms, or to protect the rights, property, or safety of any person. In the unlikely event of a merger, sale, or transfer of the business, records may transfer as part of that transaction, subject to this policy.
6. Cookies & Analytics
We use a small number of cookies for essential functions (such as your cart and checkout) and aggregate analytics. Disabling cookies will not stop you browsing the site, though it may affect the cart and checkout. Full detail — including a cookie-by-cookie table — is in our Cookie Policy.
7. Email & SMS
Transactional and (opted-in) marketing email is delivered through Resend and Beehiiv. If you provide a phone number and opt in, we may send booking confirmations or reminders by text through Twilio — reply STOP to opt out at any time, or HELP for help; message & data rates may apply. We do not sell or share your phone number for anyone else’s marketing, and marketing consent is never a condition of purchase. See our SMS / Messaging Terms for details.
8. How Long We Keep It
| Data | Retention |
|---|---|
| Contact-form & inquiry data | Up to 24 months after last contact, then deleted |
| Booking & order records | For the engagement + up to 7 years (tax/records), then deleted |
| Payment records | As required by tax/accounting law (typically 7 years) |
| Newsletter subscription | Until you unsubscribe |
| Server / security logs | Short-term (typically 30–90 days) |
9. Your Rights
Wherever you are, you may email [email protected] to access, correct, delete, or receive a copy of your personal information, or to stop receiving communications. We will verify your request and respond within the time your law requires (generally 30–45 days). You will never be discriminated against for exercising a privacy right.
10. US State & Regional Privacy Rights
Several states and regions grant specific rights. The table shows what applies and how to use them. In every case we honor the same core rights for all users — the table simply names the legal source.
| If you are in… | Law | Key rights |
|---|---|---|
| New Jersey | NJ Data Privacy Act | Access, correct, delete, portability, opt out of sale/targeted ads/profiling |
| California | CCPA / CPRA | Know, access, delete, correct, opt out of sale/sharing (we do neither), limit sensitive data, non-discrimination, authorized agent |
| New York | SHIELD Act | Reasonable security safeguards; breach notification |
| Other US states (CO, CT, VA, etc.) | State privacy acts | Access, correct, delete, portability, opt-outs |
| Nevada | SB 220 | Opt out of the sale of covered information (we do not sell) |
| EEA / UK | GDPR / UK GDPR | Access, rectification, erasure, restriction, portability, objection; right to complain to your supervisory authority |
Do Not Sell or Share / Do Not Sell My Personal Information: We do not sell or share personal information as those terms are defined by these laws, so there is nothing to opt out of — but you may still email us to confirm.
11. International Transfers
We are based in the United States and our service providers may process data in the US and elsewhere. Where data is transferred out of the EEA/UK, we rely on appropriate safeguards (such as Standard Contractual Clauses) offered by those providers.
12. Data Security
We use reasonable administrative and technical safeguards — encryption in transit (HTTPS), access controls, reputable processors, and least-data collection — to protect your information. No method of transmission or storage is perfectly secure, but we will notify affected individuals and regulators of a breach as, and when, the law requires.
13. Children
This site and our online services are directed to adults. We do not knowingly collect personal information online from anyone under 13. If you believe a child has provided information, contact us and we will delete it.
14. Changes to This Policy
If we update this policy we will revise the “Last updated” date above and, for material changes, provide a more prominent notice. Continued use of the site after a change indicates acceptance of the updated policy.
15. Contact
The 7 Space LLC
7 Warren Street, Newark, New Jersey 07102
[email protected]
This Privacy Policy is provided for transparency and general information; it is not legal advice. It is governed by, and works alongside, our Terms of Service, Cookie Policy, and SMS / Messaging Terms.