Effective Date: 01 April 2024
Last Updated: 09 March 2025
1. Introduction
Blue Plume Academy ("we," "us," or "our") is committed to protecting your personal data and ensuring compliance with UK General Data Protection Regulation (UK GDPR) and the Association for Coaching (AC) Code of Ethics & Good Practice. This Privacy Policy explains how we collect, use, store, and protect your data when you engage with our coaching services.
2. What Data We Collect
We may collect the following personal data:
· Identity Data: Name, title, and contact details (email, phone number, address).
· Professional Information: Job title, employer, and career background.
· Coaching Records: Notes from coaching sessions, agreed goals, and progress tracking.
· Financial Information: Payment details (processed securely via third-party providers).
· Technical Data: IP address, device information, and usage data when you visit our website.
3. How We Use Your Data
We process your personal data to:
· Provide coaching services tailored to your needs.
· Maintain professional records in accordance with coaching industry standards.
· Communicate with you regarding sessions, progress, and resources.
· Manage payments and billing securely.
· Improve our services through feedback and evaluation.
· Comply with legal, ethical, and regulatory obligations.
We do not sell or share your data for marketing purposes.
4. Legal Basis for Processing
We process your data based on:
· Contractual necessity (to provide coaching services).
· Legitimate interests (to ensure service quality and client support).
· Consent (for specific processing activities, such as testimonials).
· Legal obligations (compliance with safeguarding and financial regulations).
5. Confidentiality & Data Sharing
Your coaching sessions are strictly confidential, in line with the AC Code of Ethics. However, we may disclose data in the following circumstances:
· If required by law or regulatory authorities.
· If there is a serious risk of harm to yourself or others.
· With your explicit consent (e.g., sharing progress with your employer, if applicable).
6. Data Security & Retention
We implement robust security measures to protect your personal data, including encrypted storage, password protection, and restricted access.
We retain client records for six years after the end of our coaching relationship, in line with AC best practices and legal requirements, unless a longer period is required by law.
7. Your Rights Under UK GDPR
You have the following rights regarding your data:
· Access – Request a copy of your personal data.
· Correction – Update or correct inaccurate information.
· Erasure – Request deletion of your data (subject to legal obligations).
· Restriction – Limit processing in certain circumstances.
· Objection – Object to data processing where applicable.
· Data Portability – Request transfer of your data to another service provider.
To exercise these rights, contact admin@blueplumeacademy.com
8. Complaints & Contact Details
If you have any concerns about your data, please contact Andrew Masterson Coaching at andrew@blueplumeacademy.com
If we cannot resolve your concerns, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) at www.ico.org.uk
9. Updates to This Privacy Policy
We may update this policy from time to time. Please review this page periodically to stay informed.