This policy explains how Jane Pangbourne will handle the privacy of your information. I am committed to maintaining robust privacy protection for all my users. I will take the necessary steps to ensure that users’ information is safeguarded and kept in accordance with all applicable laws and regulations.
What information do I collect?
The information that you provide may be collected and processed by me in accordance with the Data Protection Act 1998 and subsequent legislation.
Information you provide:
I have a ‘Contact Us’ page which enables you to email me. I require you to complete all fields so that I can contact you and provide details of my services to you, and deal with general company enquiries. Data collected is held on the grounds of being for legitimate business interests or to fulfil a contractual obligation.
If you do not proceed with any order your details will be deleted in accordance with our data retention policy.
I may use social media to engage with users and my website links to my social media pages. I do not keep any specific data that identifies an individual user but hold details of my followers on these platforms.
When you visit my website, the server collects IP addresses to provide security and prevent brute force or malicious attacks. These IP addresses are not linked to any other personal data.
Information I get from other sources:
From time to time, I may need to obtain information from third parties about you. This will only apply where it is necessary to provide my services to users and as permitted by law.
How I use your personal information:
Your information will be used to enable me to provide services to you. I act as a Data Controller of your information and undertake to protect your personal and sensitive data in a manner that is consistent with the requirements of the Data Protection Act/General Data Protection Regulation (GDPR). I will take reasonable measures to ensure the secure storage of your data.
- Administer the website
- Improve your browsing experience by personalising the website
- Follow up with correspondence
- Email enquires
- Send you general (non-marketing) communications
- Send you email notifications which you have specifically requested
- Send you marketing communications where expressly agreed
- Provide third parties with statistical information about my users – but this information will not be used to identify any individual user
- Ask for feedback and review products and services
- Deal with enquiries and complaints made by or about you relating to the website
Users of this website do so at their own discretion and provide any such personal details at their own risk.
I do not share, sell, or distribute your data to third parties, except as provided in this Privacy Notice. Your data may be shared with contractors working on my behalf, who act on my instruction in relation to the management of your data and must adhere to all data protection laws and regulations. Data processors will be required to have a signed agreement with me to ensure accountability.
I will only send you emails about my products and services (i.e. direct marketing) with your express consent. You have the option not to give consent and to withdraw consent at any time. You may withdraw your consent for me to contact you by contacting me at firstname.lastname@example.org
I may disclose your personal information if required to do so by law, in connection with any legal proceedings, and in order to establish, exercise or defend my legal rights, or if otherwise legally permitted.
Retaining your data:
I keep your personal information in accordance with my Data Retention Policy which reflects the need to provide services to you as required to meet legal, statutory and regulatory obligations. The need to hold information is regularly reviewed and information/data will be disposed of when no longer required.
Storage of data:
Your information may be stored on a cloud-based system whose servers are located within the UK or European Union (EU). All data will be stored in compliance with the Data Protection Act 1998 and as enacted, the General Data Protection Regulation (GDPR)
Jane Pangbourne Body Positivity Coaching cannot guarantee or verify the contents of any externally linked website and users click on external links at their own risk; therefore, cannot be held liable for any damages or implications caused by visiting any external links mentioned.
Social media platforms:
Communication, engagement and actions taken through external social media platforms that this website and its owners participate in, are subject to my terms and conditions as well as the privacy policies held with each social media platform respectively.
Users are advised to use social media platforms wisely and communicate and/or engage with them with due care and caution in regard to their own privacy and personal details. This website and its owners will not ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.
Jane Pangbourne may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised that before using such social sharing buttons, that they do so at their own discretion, and should consider that the social media platform may track and save requests to share a web page, through the users’ social media platform account.
Data Subject Rights
Subject Access Requests:
The General Data Protection Regulation (GDPR) gives individuals, known as ‘data subjects’, the right to access personal data that is held by organisations by a subject access request (SAR). I will endeavour to respond quickly to any such requests, which legally require me to respond within one month of receiving the request and necessary information.
Right to Rectification:
Data subjects have the right to request that I amend or change personal information that I hold about you, that is inaccurate or incorrect.
Right to erasure:
Data subjects have the right to ask me to delete personal information from my systems without giving any reason and at any time. I will act on any request within 7 days.
Right to restrict processing:
Data subjects have the right to rectification or erasure of personal data in the following circumstances:
- Personal data is not accurate
- The processing of data is unlawful. Data subjects may request that processing is restricted
- Data is required to exercise legal rights or defend legal claims
- Data is unlawful but there may be lawful grounds for processing, which override this right.
Right to data portability:
Data subjects have the right to obtain and transfer their data to different service providers.
Right to object:
Data subjects have the right to object to the processing of data at any time based on their particular situation. This includes objecting to profiling unless it is in the ‘public interest’ or exercised lawfully by an official authority.
I will only process data where I can demonstrate lawful grounds for doing so.
Right not to be subject to decisions based on automated processing:
I do not use any automated processing that results in any automated decision based on a data subject’s personal information.
Using your rights:
If you wish to invoke any of these rights, you can contact our Data Controller by email to email@example.com
Questions and queries:
If you have any concerns about how I handle your data, you can contact the Data Controller by email at firstname.lastname@example.org
Changes to this policy:
If you have a complaint about the use of your data, you can contact me on email@example.com
Alternatively, you can formally report an issue of concern to the Information Commissioner’s Office, the UK body that governs Data Protection. See https://ico.org.uk
Third Party Rights:
Jurisdiction and Governing Law: