Privacy Policy

1.Purpose of this Privacy Policy

This Privacy Policy explains how YDY Coaching Ltd collects, uses, stores and shares personal data when you:

• • browse our website.
  • contact us (email/forms/chat).
  • book calls/sessions.
  • join our mailing list.
  • buy or access coaching, programmes, consultancy services, marketing services.
  • buy or access digital downloads.
  • join a membership/community.
  • interact with our ads or social media.

2. Data controller

YDY Coaching Ltd is the data controller for personal data described in this Privacy Policy.

Contact: ydycoaching@gmail.com
Registered office: Leeds, UK  

3. Key definitions

• • Personal data: information relating to an identified or identifiable person.
  • Processing: anything done with personal data (collecting, storing, using, sharing, deleting).
  • Controller: the organisation that decides how and why personal data is processed.
  • Processor: a service provider that processes data on behalf of the controller.

4. What personal data we collect

Depending on your interaction with us, we may collect:

4.1 Identity and contact data

Name, email address, phone number, business name, social media handles, and any info you submit in messages.

4.2 Account and membership data (if applicable)

Login details (where applicable), membership status, preferences, and access/activity within member areas.

4.3 Purchase, billing and transactional data

Products/services purchased, invoices, payment status, billing address (if needed), and related communications.

Payment cards: We do not store full card numbers; payments are handled by Stripe.

4.4 Coaching/consultancy/marketing services delivery data

Information you provide about your business, objectives, performance, plans, progress, and implementation.

4.5 Communications data

Emails, messages, form submissions, call notes (where relevant), feedback and support requests.

4.6 Marketing data

Marketing preferences and, where enabled, email engagement data (opens/clicks) and lead source attribution.

4.7 Technical and usage data

IP address, device and browser information, pages visited, clicks, approximate location, and referral source.

5. Special category data

We do not intentionally collect special category data (e.g., health data, political opinions). If you voluntarily provide it, we will only use it where necessary for the service you requested and will treat it as sensitive.

6. How we collect personal data

We collect data when you:

• • fill in forms (including GoHighLevel/YDY Hub forms/embedded widgets).
  • email us.
  • book appointments.
  • purchase services/products.
  • access member areas/downloads.
  • interact with emails and marketing.
  • browse our website with cookies/trackers enabled.

7. Why we use your personal data (purposes)

We use personal data to:

• • respond to enquiries and provide customer support.
  • manage leads and customer relationships.
  • deliver coaching, programmes, consultancy and marketing services.
  • manage scheduling, communications, and service administration.
  • provide membership access and deliver digital products.
  • process payments, invoices and accounting.
  • send service messages (transactional/admin).
  • send marketing (where permitted).
  • measure website performance and marketing effectiveness.
  • maintain security, prevent fraud/abuse, and protect our business.
  • comply with legal obligations.

8. Lawful bases for processing (UK GDPR)

We rely on one or more lawful bases:

8.1 Contract

Where processing is necessary to perform a contract with you (e.g., delivering coaching, providing downloads, membership access, consultancy services).

8.2 Legitimate interests

Where necessary for our legitimate interests (e.g., responding to enquiries, improving services, business administration, security), provided those interests are not overridden by your rights.

8.3 Consent

Where you have given consent (e.g., certain marketing communications, non-essential cookies/trackers).

8.4 Legal obligation

Where we must comply with legal obligations (e.g., tax/accounting record-keeping).

9. Marketing communications

9.1 Email marketing

We may send marketing emails:

• • where you have opted in; and/or
  • where “soft opt-in” may apply for existing customers (where applicable).

You can unsubscribe at any time using the link in emails or by emailing us.

9.2 Tracking in emails

If our email platform uses tracking pixels (eg to measure opens/clicks), this may involve storage/access technologies on your device. Where required, we will use this in line with consent requirements and platform settings.

9.3 Ads and remarketing

If you consent to marketing cookies, we may use:

• • • Meta Pixel (Facebook/Instagram)
    • LinkedIn Insight Tag

These help us measure ad performance and (where enabled) build audiences for retargeting.

10. How we share personal data

We share data only where necessary for the purposes in this policy.

10.1 Key service providers (processors)

We may use providers such as:

• • GoHighLevel/YDY Hub (CRM, funnels, forms, automations)
  • Google Analytics 4 (GA4) (analytics)
  • Meta Pixel (advertising measurement/targeting, where consented)
  • LinkedIn Insight Tag (advertising measurement/targeting, where consented)
  • Stripe (payments)
  • Email marketing providers (eg Mailchimp and/or ConvertKit, if used)
  • Hosting, website infrastructure, security tools
  • Professional advisers (accountants) where needed

10.2 What we expect from providers

We expect providers to:

• • process data securely.
  • only process on our instructions.
  • implement appropriate safeguards.

10.3 Legal disclosures

We may disclose personal data if required to comply with law, enforce our rights, or protect users/our business.

11. International transfers

Some providers may process personal data outside the UK. Where this occurs, we take steps designed to ensure appropriate safeguards are in place (e.g., contractual safeguards and vendor compliance measures).

12. Data retention (how long we keep personal data)

We keep data only as long as necessary.

Typical retention periods (adjust to your practice):

• • Enquiries/leads: up to 24 months from last meaningful contact.
  • Clients/customers: up to 7 years after the end of the relationship (accounting/tax and business records).
  • Marketing lists: until you unsubscribe or we remove inactive contacts.
  • Support communications: up to 24 months after resolution.
  • Cookie/analytics data: per Cookie Policy durations.

We may keep data longer where needed for legal claims, dispute resolution, or regulatory requirements.

13. Your rights (UK GDPR)

You have rights, including:

• • Access to your data.
  • Rectification (correction).
  • Erasure (deletion) in certain cases.
  • Restriction of processing in certain cases.
  • Data portability in certain cases.
  • Objection (especially to direct marketing).
  • Withdraw consent at any time (where processing is based on consent).

To exercise rights, email ydycoaching@gmail.com. We may need to verify your identity.

14. Complaints

If you are unhappy, contact us first and we will try to resolve the issue. You may also complain to the Information Commissioner’s Office (ICO).

15. Security

We use appropriate measures designed to protect personal data, including:

• • access controls.
  • reputable service providers.
  • least-privilege access.
  • security updates and strong password practices.

No system is completely secure, but we take reasonable steps to protect data.

16. Children

Our Website and services are not intended for children and we do not knowingly collect children’s data.

17. Automated decision-making

We do not use automated decision-making that produces legal or similarly significant effects on you.

18. Links to other websites

Our Website may link to third-party websites. We are not responsible for their privacy practices.

19. Updates to this Privacy Policy

We may update this policy from time to time by posting the latest version on the Website and updating the “Last updated” date.