Privacy Policy

Effective Date: 14th March 2025

Shattered Ceiling Coaching ("we," "our," or "us") is committed to protecting your privacy and ensuring that your personal data is handled securely and responsibly. This Privacy Policy explains how we collect, use, store, and protect your personal information in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Shattered Ceiling Coaching is a professional coaching service offering 1:1 coaching, group coaching, and digital products for women’s career and leadership development.

  • Business Name: Shattered Ceiling Coaching

  • Website: www.shatteredceilingcoaching.com

  • Email: dataprivacy@shatteredceilingcoaching.com

  • Data Controller: Laura Bridgeman

2. What Personal Data We Collect

We may collect the following types of personal data when you use our website, book coaching services, or interact with us:

A. Information You Provide to Us:

  • Name

  • Email address

  • Phone number

  • Billing information (for payments)

  • Data provided in the client profile and recorded in the session notes

  • Any information you submit via contact forms or email

B. Information Collected Automatically:

  • IP address

  • Browser type and device information

  • Website usage data (via cookies and analytics tools)

C. Sensitive Data (Special Category Data)

In some cases, coaching may involve discussing personal or sensitive topics. Any such data will only be collected with your explicit consent and stored securely.

3. How We Use Your Personal Data

We use your data for the following purposes:

  • To provide and manage coaching services.

  • To respond to inquiries and communicate with you.

  • To process payments for coaching services or digital products.

  • To send email updates, newsletters, or marketing materials (only if you opt-in).

  • To analyze website traffic and improve user experience.

  • To comply with legal or regulatory obligations.

Lawful Bases for Processing:
Under UK GDPR, we process your personal data based on:

  1. Contractual necessity – when you book coaching services.

  2. Legitimate interests – to improve our services and communicate with clients.

  3. Consent – for marketing emails and sensitive coaching-related data.

4. How We Store and Protect Your Data

We take appropriate security measures to protect your personal data, including:

  • Secure password protection on all accounts.

  • Encrypted payment processing through third-party providers.

  • Limited access to personal data (only necessary personnel can access it).

  • Secure storage of coaching session notes (if applicable).

We do not store payment details—all transactions are processed through secure third-party payment providers.

5. How Long We Keep Your Data

We only keep personal data for as long as necessary:

  • Client records: Up to 6 years (for legal and business purposes).

  • Marketing data: Until you opt out.

  • Website analytics: 12 months (then anonymised).

If you request deletion of your data, we will securely erase it unless required by law to retain certain records.

6. Sharing Your Data

We do not sell or rent your personal data. However, we may share data with:

  • Payment processors for transactions.

  • Marketing platforms if you’ve opted into emails.

  • Legal or regulatory authorities if required by law.

All third-party providers comply with GDPR and have their own privacy policies.

7. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  • Right to Access – Request a copy of the data we hold about you.

  • Right to Rectification – Correct any inaccurate or incomplete data.

  • Right to Erasure ("Right to be Forgotten") – Request deletion of your data.

  • Right to Restrict Processing – Limit how we use your data.

  • Right to Data Portability – Receive your data in a structured format.

  • Right to Object – Stop us from processing your data in certain cases.

  • Right to Withdraw Consent – Unsubscribe from marketing at any time.

To exercise your rights, contact us at dataprivacy@shatteredceilingcoaching.com.

8. Cookies and Tracking Technologies

Our website uses cookies to enhance user experience and analyze traffic. Cookies may include:

  • Essential Cookies – Necessary for website functionality.

  • Analytics Cookies – To track website performance (e.g., Google Analytics).

  • Marketing Cookies – For personalized ads (only with your consent).

You can manage your cookie preferences via your browser settings.

9. Third-Party Links

Our website may contain links to third-party sites (e.g., social media, external resources). We are not responsible for their privacy policies, so please review them separately.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page, and we will notify users of significant updates.

11. Contact Us

If you have any questions about this Privacy Policy or your personal data, please contact:

Email: dataprivacy@shatteredceilingcoaching.com

If you have concerns about data protection, you can also contact the Information Commissioner’s Office (ICO) at www.ico.org.uk.