ImPerfect Ltd Privacy Policy

Ā 

1. Who We Are

ImPerfect Ltd is committed to protecting your privacy and handling your personal data securely, responsibly and transparently.

This Privacy Policy explains how we collect, use, store, protect and share your personal information when you use our website, purchase our products, access our digital resources, join our mailing list, contact us, attend our events or workshops, enrol in our courses, engage with our community spaces, or use any of our services.

ImPerfect Ltd operates in accordance with the UK General Data Protection Regulation, also known as UK GDPR, and the Data Protection Act 2018.

Business name: ImPerfect Ltd
Website: www.imperfect.love
Email: [email protected]
Registered office/business address: 3, Pemberton Street, Old Trafford, Manchester, M16 9JY
Company number: 17011155

For the purposes of data protection law, ImPerfect Ltd is the data controller for the personal data we collect and use.

2. Scope of This Privacy Policy

This Privacy Policy applies to personal data collected through:

  • our website;
  • online forms;
  • mailing list sign-ups;
  • purchases and checkouts;
  • digital products and downloadables;
  • mental fitness tools;
  • courses;
  • workshops;
  • events;
  • community spaces;
  • coaching-style personal development support;
  • email, phone, social media and website enquiries;
  • feedback forms, surveys and testimonials;
  • analytics, cookies and similar website technologies.

This Privacy Policy should be read alongside our Terms & Conditions, Disclaimer Policy, Refund Policy and Cookie Policy where applicable.

3. Age Requirement

Our products, services, courses, workshops, events, digital products, downloadables, mental fitness tools, community spaces and online resources are intended for individuals aged 18 and over, unless otherwise clearly stated.

We do not knowingly collect personal data from children for our general services.

If we become aware that personal data has been provided by a person under 18 without appropriate consent or a clear lawful reason, we may delete that information and restrict access to our products or services.

Where we run a service, workshop, event or activity that is specifically intended for young people, additional safeguarding, consent and privacy arrangements may apply.

4. Personal Data We May Collect

We may collect personal data when you:

  • visit our website;
  • sign up to our newsletter or mailing list;
  • download a free resource;
  • purchase a digital product, downloadable, mental fitness tool, course or service;
  • register for events, workshops or community activities;
  • create an account or access a private online area;
  • complete forms, assessments, surveys, quizzes or feedback forms;
  • contact us by email, phone, social media, website forms or other communication channels;
  • participate in our online community spaces, events, workshops or courses;
  • provide a testimonial, review or feedback;
  • interact with our website, emails, adverts or social media content.

The personal data we may collect includes:

  • name;
  • email address;
  • phone number;
  • postal address or billing address;
  • account or login information;
  • purchase history and transaction details;
  • payment information, which is processed securely by third-party payment providers and is not stored by us as full card details;
  • event, workshop or course booking information;
  • communication records, including enquiries, emails and messages;
  • feedback, reviews, testimonials and survey responses;
  • preferences, interests and marketing choices;
  • accessibility needs or support requirements you choose to tell us about;
  • wellbeing-related information you choose to share with us;
  • safeguarding or duty of care information where necessary;
  • website usage data, including IP address, browser type, device information, pages visited, referral links and interaction data;
  • cookie and analytics data, depending on your cookie choices.

5. Special Category Data

Some information you choose to share with us may be classed as special category data under UK GDPR. This may include information relating to your physical health, mental health, wellbeing, disability, accessibility needs, personal experiences or other sensitive circumstances.

We only collect this type of information where it is relevant and necessary, such as where:

  • you choose to share it with us;
  • it is needed to support accessibility or reasonable adjustments;
  • it is relevant to safeguarding, duty of care or participant safety;
  • it helps us understand whether a workshop, service, community space or activity is appropriate for you;
  • it is needed to respond to a concern, risk, complaint or support need.

Where required, we will rely on an appropriate lawful basis under UK GDPR and an additional special category condition under Article 9 of UK GDPR. This may include explicit consent, substantial public interest, vital interests, legal claims, or another appropriate condition depending on the circumstances.

We will not ask you to share sensitive personal information unless it is necessary for a clear purpose.

Please avoid sharing highly sensitive information with us unless it is relevant and necessary.

6. How We Use Your Personal Data

We may use your personal data to:

  • provide our website, products, services, digital products, downloadables, mental fitness tools, courses, workshops, events and community spaces;
  • process purchases, bookings, payments and access to products or services;
  • deliver digital resources, course access, downloads, emails and customer support;
  • manage accounts, login access and user participation;
  • communicate with you about your purchase, booking, enquiry, account, access or participation;
  • respond to enquiries, questions, complaints or support requests;
  • send newsletters, updates, resources, offers or marketing communications where permitted;
  • manage events, workshops, community activities and participation;
  • support accessibility, reasonable adjustments, safeguarding and duty of care responsibilities;
  • improve our website, products, services, resources, events and community spaces;
  • analyse website performance, user behaviour and email engagement;
  • request feedback, reviews or testimonials;
  • maintain business records, accounting records and legal compliance;
  • prevent misuse, fraud, unauthorised access, security risks or breaches of our terms;
  • protect the rights, safety and wellbeing of ImPerfect Ltd, our users, our community and others.

7. Lawful Bases for Processing

Under UK GDPR, we only process personal data where we have a lawful basis to do so.

Depending on the circumstances, we may rely on one or more of the following lawful bases:

Consent

We may rely on your consent where you have given clear permission for us to use your personal data for a specific purpose, such as signing up to our mailing list, agreeing to receive marketing communications, submitting optional sensitive information, or allowing non-essential cookies.

You can withdraw consent at any time.

Contract

We may process your personal data where it is necessary to provide a product, service, course, workshop, event, download, account access or resource that you have requested or purchased.

Legal Obligation

We may process personal data where we are required to do so by law, including for accounting, tax, safeguarding, regulatory, consumer rights or legal compliance purposes.

Legitimate Interests

We may process personal data where it is necessary for our legitimate business interests and where those interests do not override your rights and freedoms.

This may include improving our services, responding to enquiries, keeping business records, protecting our website and services, preventing misuse, managing customer relationships, understanding how people use our website, and communicating with existing customers about similar products or services where legally permitted.

Vital Interests

In rare situations, we may process personal data where it is necessary to protect someoneā€™s life, safety or vital interests.

8. Email Marketing and Communications

We may send you marketing emails, newsletters, updates, resources or offers where you have signed up, given consent, or where we are otherwise permitted to contact you under applicable law.

You can unsubscribe from marketing emails at any time by using the unsubscribe link included in our emails or by contacting us directly.

Unsubscribing from marketing emails will not stop necessary transactional or service-related emails, such as order confirmations, purchase access, booking updates, account information, customer support responses or important service notices.

9. Payments and Financial Information

Payments may be processed by trusted third-party payment providers.

We do not store your full card details.

Payment providers may process your payment information in accordance with their own privacy policies and security standards.

We may retain limited payment and transaction information, such as purchase date, product purchased, amount paid, refund status, invoice information and billing details, for accounting, customer service, legal and tax purposes.

10. How We Share Your Data

ImPerfect Ltd does not sell or trade personal data.

We may share personal data with trusted third-party providers where necessary to operate our business and deliver our products and services. This may include:

  • payment processing providers;
  • website hosting providers;
  • email marketing and email delivery providers;
  • checkout and order management providers;
  • course, community or digital product delivery platforms;
  • booking, form, quiz, survey or assessment providers;
  • video call or webinar providers;
  • analytics and website performance providers;
  • customer support and communication tools;
  • accountants, bookkeepers and professional advisers;
  • IT, cyber security or technical support providers;
  • legal, regulatory, safeguarding or law enforcement authorities where required or permitted by law.

All third parties handling personal data on our behalf are expected to maintain appropriate security measures and comply with applicable data protection requirements.

11. International Data Transfers

Some third-party providers we use may process or store personal data outside the United Kingdom.

Where this happens, we take steps to ensure appropriate safeguards are in place in accordance with UK GDPR requirements. This may include using providers with recognised transfer safeguards, contractual protections or other legally approved transfer mechanisms.

12. How Long We Keep Your Data

We keep personal data only for as long as necessary for the purposes for which it was collected, including to provide services, meet legal obligations, resolve disputes, protect our rights and maintain business records.

Typical retention periods may include:

  • newsletter or marketing records: until you unsubscribe or request removal, unless we need to retain a suppression record;
  • customer account information: for as long as your account remains active and for a reasonable period afterwards;
  • purchase, invoice and transaction records: usually six years for UK tax, accounting and business record purposes;
  • enquiry and customer service records: for a reasonable period after your enquiry is resolved;
  • event, workshop or course records: for as long as needed to manage participation, records and any follow-up obligations;
  • safeguarding, duty of care or incident records: for as long as necessary or legally required, depending on the nature of the concern;
  • feedback, reviews and testimonials: until removed, withdrawn or no longer required;
  • website analytics data: for the period set by the relevant analytics provider or cookie settings.

When personal data is no longer needed, we will securely delete, anonymise or archive it where appropriate.

13. Cookies and Similar Technologies

Our website may use cookies and similar technologies to support website functionality, improve user experience, analyse site traffic, remember preferences, support checkout processes, understand marketing performance and improve our services.

Cookies may include:

  • essential cookies needed for the website to function;
  • performance and analytics cookies;
  • functionality cookies;
  • marketing, advertising or social media cookies.

Where required, we will ask for your consent before using non-essential cookies.

You can manage or withdraw cookie consent through our cookie banner, cookie settings or your browser settings, where available.

For more information about how cookies are used, please see our Cookie Policy where available.

14. Data Security

ImPerfect Ltd takes appropriate technical and organisational measures to protect personal data.

This may include:

  • secure systems and platforms;
  • password protection and access controls;
  • restricted access to sensitive information;
  • secure third-party payment processing;
  • appropriate data storage practices;
  • staff, contractor or volunteer confidentiality expectations where relevant;
  • internal policies and procedures for handling personal information;
  • reasonable steps to prevent unauthorised access, loss, misuse, alteration or disclosure.

However, no website, platform, email system or online service can be guaranteed to be completely secure. You are responsible for keeping your own account details and passwords secure.

15. Your Data Protection Rights

Under UK GDPR, you have rights in relation to your personal data.

These may include the right to:

  • request access to the personal data we hold about you;
  • request correction of inaccurate or incomplete information;
  • request deletion of your personal data where applicable;
  • request restriction of processing in certain circumstances;
  • object to certain types of processing;
  • withdraw consent at any time where we rely on consent;
  • request data portability in certain circumstances;
  • object to direct marketing;
  • ask not to be subject to solely automated decisions that have a legal or similarly significant effect, where applicable.

Some rights only apply in certain circumstances and may be subject to legal exemptions.

To exercise your rights, please contact us using the details below.

We may need to verify your identity before responding to a request.

16. Complaints

If you are concerned about how we have handled your personal data, please contact us first so we can try to resolve the issue.

You also have the right to complain to the Information Commissionerā€™s Office, which is the UK regulator for data protection.

Website: www.ico.org.uk

17. Third-Party Websites and Links

Our website, emails, products, services, resources, courses or community spaces may contain links to third-party websites, platforms, organisations or services.

We are not responsible for the privacy practices, content, security or policies of third-party websites or organisations.

You should review the privacy policies of any third-party websites or services you use.

18. Testimonials, Feedback and User Content

If you provide feedback, reviews, testimonials, comments, survey responses or user-generated content, we may use this information to improve our services, understand user experiences and respond to your feedback.

We will not knowingly publish your full name, image, identifiable story or sensitive personal information for marketing purposes without appropriate permission.

Testimonials and reviews may be edited for clarity, length or formatting, but we will not knowingly change the meaning of your words.

19. Safeguarding and Duty of Care

Although ImPerfect Ltd is not a crisis, clinical or emergency support service, we may take action if information shared with us suggests that you or another person may be at serious risk of harm.

Where necessary and appropriate, we may share relevant information with emergency services, safeguarding authorities, healthcare professionals, legal advisers or other appropriate organisations.

We will only share information in this way where we believe it is necessary, proportionate and permitted or required by law.

20. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements, organisational practices, services, products, platforms or the way we process personal data.

Any updates will be published on our website with a revised update date.

The most current version of this Privacy Policy will apply to your use of our website, products and services.

21. Contact Us

If you have any questions about this Privacy Policy or how your personal data is used, please contact:

Data Protection Lead
ImPerfect Ltd
Email: [email protected]
Website: www.imperfect.love
Registered office/business address: 3, Pemberton Street, Old Trafford, Manchester, M16 9JY
Company number: 17011155