.

1. Introductory Statement

At KNKO, your privacy is protected and honored.

This Privacy Policy explains how KNKO, LLC (“KNKO,” “we,” “us,” or “our”) collects, uses, stores, and shares personal information across all touchpoints — including our website, wellness services, memberships, and communications.

It includes all required disclosures under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), which apply to residents of California. You’ll find those rights and additional information clearly outlined in Appendix A: California Consumer Privacy Notice at the bottom of this page, which serves as KNKO’s Notice at Collection for California residents.

This policy also outlines how we protect sensitive wellness-related information in accordance with applicable California and U.S. privacy laws.

Our policies are designed to reflect the highest standards of discretion, confidentiality, and care — particularly when it comes to sensitive wellness-related information. Whether you’re browsing our site or booking a KNKO service, we safeguard your personal information with intention and integrity.

This policy applies to all KNKO clients and site visitors. By engaging with our services or accessing our platforms, you consent to the practices outlined herein.

We do not sell your data.

We do not use your wellness-related information for advertising.

We protect your information as if it were our own.

Jurisdiction Notice:

KNKO’s website and services are intended solely for individuals located within the United States, specifically California. We do not localize content, offer services, or process personal data under the jurisdiction of any non-U.S. data protection laws, including the General Data Protection Regulation (GDPR). All data is stored and processed in accordance with applicable U.S. privacy regulations, including the California Consumer Privacy Act (CCPA/CPRA).

.

2. What Information We Collect

KNKO collects only the data necessary to provide, personalize, and protect your wellness experience. We differentiate clearly between general personal data, wellness-related information, and anonymized analytics.

A. Information You Provide to Us

When you engage with KNKO, you may provide:

• Personal Identifiers: Name, email address, phone number, mailing address, date of birth, and account credentials.
• Billing & Payment Info: Credit card details and billing addresses — processed through PCI-DSS-compliant third parties (e.g., Square). KNKO never stores full card details.
• Wellness-related Information: Relevant to your wellness services (e.g., intake forms, wellness concerns, assessments, notes) — treated with strict confidentiality and safeguarded under applicable California privacy laws.
• Communications: Emails, support inquiries, surveys, and any other direct contact.

Legal Basis for Use: Your information is processed based on your consent, our service contract with you, compliance with laws, and KNKO’s legitimate interest in improving operations and preventing fraud.

B. Information Collected Automatically

When you visit our website or use our digital tools, we may collect:

• Device & Usage Data: IP address, browser, device ID, operating system, and interaction history.
• Cookies & Tracking Technologies: To improve site performance, personalize your experience, and protect against fraud.  For more information, please see our Cookie Policy.

In limited cases, we may receive information about you from trusted sources, such as wellness professionals or marketing partners, but only with your consent. We do not purchase data from brokers or scrape data from external sources.

For California residents, a full breakdown of the categories we collect is provided in Appendix A: California Consumer Privacy Notice.

.

3. How We Use Your Information

At KNKO, your data is used with purpose — to enhance your wellness journey, honor your preferences, and ensure secure, seamless service delivery.

A. To Provide and Personalize Services

We use your data to:

• Schedule and coordinate wellness sessions
• Maintain your secure client profile
• Tailor wellness recommendations based on your history and preferences
• Deliver services you’ve requested, including membership benefits and session enhancements
• Facilitate communication between you and your practitioner (as applicable)

B. For Payment and Business Operations

• Process secure transactions via Square and manage billing
• Maintain accurate financial records for auditing and compliance
• Conduct internal reporting, service utilization analytics, and training (using de-identified data where possible)

C. To Ensure Legal and Regulatory Compliance

• Maintain secure and confidential wellness-related information in accordance with applicable law
• Comply with applicable laws (e.g., CCPA/CPRA)
• Respond to lawful requests (e.g., subpoenas or regulatory inquiries)
• Enforce our terms, conditions & Agreements, resolve disputes, and protect our legal rights

D. For Communications and Client Engagement

With your consent, we may use your contact information to:

• Send appointment confirmations or reminders
• Deliver wellness updates, newsletters, and offers
• Conduct surveys to improve your KNKO experience

E. For Safety, Security, and Fraud Prevention

• Detect suspicious activity and prevent unauthorized access
• Authenticate identity when necessary
• Protect against fraud, abuse, or potential harm to others

F. Analytics, Personalization & Profiling

KNKO may use analytics tools and de-identified behavioral data to personalize your experience or recommend services. These tools never make decisions that produce legal or significant effects, and all analytics processes involve human oversight. You may opt out of such personalization by contacting us at info@knko.co.

Note: We do not use or disclose your personal or wellness-related information for any purpose not listed above without your explicit, informed consent.

.

4. SAFEGUARDS FOR WELLNESS RELATED INFORMATION

KNKO is not a healthcare provider — but we take your privacy as seriously as one.

Some services you receive from KNKO involve wellness-related information — including intake forms, session notes, and practitioner communications. This information is stored securely, used only to support your requested services, and never shared for advertising or resale.

Data Safeguards

• Encryption of all wellness-related information at rest and in transit
• Role-based access controls limiting data access to “minimum necessary” use
• Two-factor authentication (2FA) for platforms storing client information
• Confidentiality agreements with all contractors and practitioners
• Contractual safeguards with all service vendors (e.g., Noterro, Square) to align with California Consumer Privacy Act (CCPA/CPRA) standards

KNKO does not:

• Provide medical diagnoses or clinical treatment
• Share your personal or wellness-related information for marketing or advertising purposes
• Sell or trade your personal or wellness-related information under any circumstances

De-Identification for AI Analytics

KNKO uses AI to support personalized service delivery, but we never input identifiable wellness-related information into AI systems. Instead, we use a platform that ensures your privacy is fully protected — even when leveraging modern technologies to enhance services.

You may opt out of AI-powered analytics at any time by contacting us at info@knko.co.

.

5. California privacy Rights

KNKO is based in California and complies fully with the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). If you are a California resident, you have specific rights regarding your personal information.

These rights include:

• Right to Know what categories of personal information we collect and how we use, disclose, and retain it
• Right to Access the specific personal information we have collected about you
• Right to Correct inaccurate or outdated personal information in our records
• Right to Delete personal information, subject to certain legal or contractual retention exceptions
• Right to Limit Use of Sensitive Personal Information such as wellness or biometric data
• Right to Opt Out of certain data practices, such as marketing communications or profiling (if applicable)
• Right to Non-Discrimination for exercising any of your privacy rights

You can exercise your rights by contacting us at info@knko.co.

KNKO does not sell or share your personal information as defined by CCPA/CPRA. If our practices change in the future, we will provide a clear “Do Not Sell or Share My Information” link and notice.

To review a full legal disclosure of your rights, the categories of personal information we collect, our sources of data, retention practices, and how to exercise your rights under California law, please refer to Appendix A: California Consumer Privacy Notice at the bottom of this page.

.

6. Data Sharing & Third Parties

KNKO shares your data only when necessary — and only with trusted partners who support the delivery, protection, and improvement of our services. We do not sell your information, and we do not share your personal or wellness-related information for advertising, profiling, or monetization.

A. Third Parties We Work With

We work with select service providers who help us operate our business securely and effectively. These providers may access limited personal information only as needed to perform their functions and are contractually required to protect it.

All third-party vendors are selected with care, and:

• Access is restricted to the minimum necessary
• Information is used only for specified, KNKO-authorized purposes
• No data is used by vendors for their own marketing or sale
• Data protections follow stringent California and U.S. consumer privacy standards.

B. When We May Disclose Your Data

We may also disclose information if legally required to:

• Comply with a subpoena, court order, or regulatory investigation
• Enforce our terms, conditions & Agreements, or defend against legal claims
• Protect the rights, property, or safety of KNKO, clients, or others

Any disclosures will be limited to what is strictly necessary and, where appropriate, subject to confidentiality protections.

We may use de-identified or aggregated data to improve services and wellness insights. This data cannot be traced back to you and is never used for advertising, profiling, or public disclosure.

.

7. Cookies & Tracking Technology

KNKO uses cookies and similar technologies to ensure a seamless, secure, and personalized experience on our website, as outlined within the KNKO Cookie Policy.

These technologies help us:

• Improve website performance and load speed
• Understand how visitors interact with our content
• Remember preferences and session information
• Prevent fraud and enhance security

We respect your privacy choices, and you can manage your cookie settings at any time using your browser tools or our cookie consent banner.

All tracking tools are implemented in accordance with California law and are designed to avoid any unnecessary intrusion or sale of your information.

.

8. Marketing Communications

KNKO respects your time, your preferences, and your inbox.

We only send marketing communications — including wellness tips, special offers, and invitations — to clients who have given explicit consent to receive them. Your participation is always optional, and you can unsubscribe at any time.

A. What You May Receive

If you opt in to receive updates, we may send:

• Email newsletters and service updates
• Exclusive offers and seasonal promotions
• Invitations to KNKO events or experiences
• Wellness guidance aligned with your preferences

B. Consent and Opt-In

We follow California and U.S. email marketing regulations (including CCPA/CPRA and CAN-SPAM) to ensure:

• Clear disclosure at the point of sign-up
• No pre-checked boxes or automatic enrollments
• All communications include an easy opt-out link

KNKO never uses personal or wellness-related information for marketing purposes.

C. Opting Out

You may unsubscribe at any time by:

• Clicking the “unsubscribe” link in any promotional email
• Emailing info@knko.co with a simple opt-out request
• Replying “STOP” to any marketing text message

Opting out of marketing does not affect:

• Appointment reminders
• Service confirmations
• Legal or privacy notifications

We honor your preferences and make it easy to step back at any time. Whether you prefer fewer updates or complete silence, we support your choice without hesitation.

D. Our Email Platforms

We use the following services to manage communications:

• Mailchimp (for email newsletters and promotions)
• Noterro (for appointment confirmations and client reminders)
• Square (for transactional emails and receipts)

All platforms used for marketing are contractually bound to follow U.S. privacy standards. Your information is never shared, sold, or used by these platforms for their own advertising.

.

9. Data Security & Retention

At KNKO, protecting your data isn’t just a compliance requirement — it’s a core part of our commitment to care, discretion, and integrity.

We implement comprehensive administrative, technical, and physical safeguards to protect your personal information, including any wellness-related information.

A. How we Protect Your Data

KNKO maintains an enterprise-grade security program that includes:

• Encryption: All personal and wellness-related data are encrypted at rest and in transit using AES-256 and TLS 1.2+
• Role-Based Access: Only authorized staff and practitioners may access client data — limited to “minimum necessary” use
• Multi-Factor Authentication (MFA): Enforced across all systems containing personal or wellness-related information
• Encrypted Cloud Storage: All session notes and wellness-related information are stored securely in Noterro, using privacy safeguards consistent with California law.
• Regular Assessments: KNKO conducts periodic audits, penetration tests, and vulnerability scans
• Incident Response Plan: Includes breach detection, containment, remediation, and notification protocols

Even with rigorous controls, no system is completely immune to breaches. KNKO is committed to transparency and legal compliance in the rare event of a data incident.

B. Data Retention Periods

When retention periods end, data is securely deleted or anonymized using industry-standard sanitization protocols.

If your information is ever compromised in a data breach, KNKO will notify you without unreasonable delay, and within the timeframes required by California law. We will inform you of the nature of the breach, what information was affected, and the steps you can take to protect yourself.

.

10. Accessing, Correcting, or Deleting Your Information

KNKO gives you control over your information.

If you would like to access, correct, or delete personal data we have on file (including any wellness-related information or service records), please contact us:

KNKO Privacy Officer

Email: info@knko.co

Mailing Address:

 KNKO, LLC

 2021 Fillmore St, Suite #2246

 San Francisco, CA 94115

Phone: 415-890-6966

We will verify your identity and respond within the timeframes required under California and federal law — typically within 45 days.

Your rights include:

• Reviewing the personal or wellness-related information we have collected
• Correcting errors or outdated information
• Requesting deletion of your information (unless retention is legally required)

For your protection, we will verify your identity before fulfilling any data access or deletion request. This may include confirming known account information or requesting additional documentation depending on the sensitivity of the request. Our verification process for California residents follows CPRA guidelines. See Appendix A: California Consumer Privacy Notice for details.

KNKO shall not be held liable for delays or failures in performance due to causes beyond its reasonable control, including acts of nature, cyberattacks, or regulatory changes.

KNKO will never retaliate against you for making a privacy-related request.

A. Information Related to Minors

KNKO does not knowingly collect personal information from children under the age of 13. Our services are intended for adult clients or minors with parental consent, consistent with our intake policies. If you believe we have unintentionally collected data from a child, please contact us immediately at info@knko.co so we can investigate and delete the information if required.

.

11. Policy Updates & Notifications

We keep this Privacy Policy up to date so that it reflects:

• Changes in applicable privacy laws (e.g., CCPA/CPRA)
• Updates to our services or data handling practices
• New technologies or security standards
• Evolving ethical commitments to client trust and transparency

A. When We Update This Policy

KNKO may update this Privacy Policy from time to time. You’ll always find the most current version of the KNKO Privacy Policy on the KNKO website.

We will notify you of material changes by:

• Posting an alert on our website
• Emailing you if you are a client or subscriber

Updates take effect immediately unless otherwise stated. Your continued use of KNKO’s services after an update constitutes your agreement to the revised policy.

B. Previous Versions

Archived versions of this Privacy Policy may be requested by emailing info@knko.co.

KNKO makes reasonable efforts to maintain compliance with all applicable privacy laws. However, this Privacy Policy does not create any contractual rights or remedies beyond those provided by law. In the event of a conflict between this policy and a regulatory requirement, the latter shall govern.

Any disputes arising from this Privacy Policy are subject to the terms of the KNKO Dispute Resolution and Binding Arbitration, including its arbitration and jurisdiction provisions.

Regulatory Scope & Legal Applicability

KNKO is a U.S.-based company that operates exclusively under United States and California law. We do not target, monitor, or offer services to individuals outside the United States. Any privacy-related obligations or rights discussed in this policy are intended to reflect compliance with U.S. regulations only — including the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). We expressly disclaim any legal obligation under the Health Insurance Portability and Accountability Act (HIPAA) and any foreign data protection laws such as the General Data Protection Regulation (GDPR). Clients accessing KNKO services from outside the United States do so voluntarily and are subject solely to the laws and jurisdiction of California.

All disputes related to this Privacy Policy are subject to the laws of the State of California and must be resolved through binding arbitration in San Francisco County, California, in accordance with our KNKO Dispute Resolution and Binding Arbitration.

This Privacy Policy is subject to the limitation of liability provisions set forth in KNKO’s Client Service Agreement.

Force Majeure Disclaimer:

KNKO shall not be held responsible for any failure or delay in fulfilling its obligations under this Privacy Policy due to circumstances beyond its reasonable control. This includes, but is not limited to, natural disasters, cyberattacks, acts of government, regulatory changes, service outages, or other unforeseen events that disrupt normal operations or data access.

.

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy, your data, or your rights, please contact KNKO’s Privacy Officer:

KNKO Privacy Officer

Email: info@knko.co

Mailing Address:

 KNKO, LLC

 2021 Fillmore St, Suite #2246

 San Francisco, CA 94115

Phone: 415-890-6966

To file a complaint about how your data has been handled, you may contact KNKO’s Privacy Officer. We will investigate and respond promptly. If your concern relates to wellness-related data, you may also file a complaint with the U.S. Department of Health and Human Services Office for Civil Rights.

We are here to listen, respond promptly, and protect your privacy every step of the way.

.

.

Appendix A: California Consumer Privacy Notice

.

.

Effective Date: Aug 21, 2025
Last Updated: Aug 21, 2025

.

This section provides additional disclosures required under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) for California residents. It applies to personal information KNKO collects in the context of providing wellness services, website use, memberships, and consultations.

1. what we collect

In the course of delivering wellness services and operating knko.co, we may collect the following categories of personal information:

• Identifiers: name, email, phone number, address, IP address
• Customer Records (§1798.80(e)): contact details, billing address, intake forms
• Wellness-Related Information: wellness assessments, service notes, and session preferences
• Commercial Information: service history, upgrades, and payment records
• Internet Activity: website usage, browser/device data, interaction logs
• Geolocation Data: approximate IP-based location
• Professional or Employment Info: only if voluntarily provided (e.g., for executive wellness)
• Inferences: service preferences or behavior patterns
• Sensitive Personal Information (SPI): wellness-related intake information, birthdate
• We do not collect biometric, genetic, or government-issued identification data.

.

2. Sources of Personal Information

We collect personal information from:

• Direct interactions (e.g., bookings, intake forms, consultations)
• Website and email tools (cookies, analytics) – See KNKO Cookie Policy
• Secure third-party services (e.g., Noterro, Square, Mailchimp)
• Direct submissions (e.g., intake forms, consultations)
• Website forms and cookies – See KNKO Cookie Policy
• Client assessments, feedback and wellness progress reviews

We do not collect biometric, genetic, or government-issued identification data.

.

3. Business or commercial purposes for use

We use personal information for the following purposes:

• To schedule, personalize, and deliver KNKO wellness services
• To manage secure client records and process payments
• To communicate with you (e.g., confirm appointments, send reminders, respond to your inquiries)
• To conduct analytics, optimize our website and improve your experience (de-identified analytics only)
• To fulfill legal and compliance obligations (e.g., CCPA/CPRA)
• To ensure system integrity and fraud prevention

We do not use your personal information, wellness-related information or SPI for marketing, profiling, or sale.

4. Disclosure of Personal Information

We share limited personal data only with third parties that help us operate, secure, or improve KNKO’s services:

KNKO does not sell or share your personal information for behavioral advertising. If this policy changes, you will receive a clear “Do Not Sell or Share” option.

.

5. data Retention periods

Data is securely deleted or anonymized once no longer required.

.

6. your rights as a california resident

As a California resident, you have the right to:

• Know the categories and sources of personal information we collect
• Access the specific pieces of personal information we hold about you
• Correct inaccurate or outdated data
• Delete personal information (with lawful exceptions)
• Limit the use or disclosure of sensitive personal information
• Opt out of marketing communications
• Designate an authorized agent to act on your behalf

KNKO will not discriminate against you for exercising any of these rights.

7. How to Exercise Your Rights

To submit a privacy-related request or exercise any of your rights, contact us:

KNKO Privacy Officer

Email: info@knko.co

Mailing Address:

 KNKO, LLC

 2021 Fillmore St, Suite #2246

 San Francisco, CA 94115

Phone: 415-890-6966

Verification: We will verify your identity before processing your request. If you designate an authorized agent, they must provide proof of your permission and verify their own identity.

.

8. Notice at Collection

This Appendix A serves as KNKO’s “Notice at Collection” under Cal. Civ. Code §1798.100(b). It outlines:

• What information we collect
• Why we collect it
• How we use and share it
• Your rights and how to exercise them

.

9. Governing Law & Dispute Resolution

All disputes under this notice are governed by California law and subject to KNKO’s binding arbitration and dispute resolution provisions, as outlined in the KNKO Dispute Resolution and Binding Arbitration Agreement.