Sign in Subscribe

Privacy Policy

Last updated: 08/02/2026

This Privacy Policy explains how Haley Heath Coaching & Consulting Limited ("we", "us", or "our") collects, uses, stores, and protects your personal data when you use our website www.haleyheath.com, products, or services.

We are committed to protecting your privacy and handling your personal data in a transparent and secure manner, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Controller: Haley Heath Coaching & Consulting Limited
Registered address: 40 Gorse Farm Road, Nuneaton, Warwickshire, England, CV11 6TH
Email: haley@haleyheath.com
ICO registration number : 00012799643

We are the data controller responsible for your personal data.

2. The Personal Data We Collect

We may collect, use, store, and transfer different kinds of personal data about you, including:

  • Identity Data: name, title, date of birth (where relevant)
  • Contact Data: email address, telephone number, postal address
  • Professional Data: job title, organisation, training history (where relevant)
  • Health and Wellbeing Data: information you choose to share during coaching, wellbeing sessions, or training (this may include special category data)
  • Technical Data: IP address, browser type and version, time zone setting, operating system
  • Usage Data: information about how you use our website, services, or training materials
  • Marketing and Communications Data: your preferences in receiving marketing communications from us

We only collect health or wellbeing-related information where it is necessary for the provision of our services and where appropriate safeguards are in place.

We do not knowingly collect data relating to children under the age of 18 without parental or guardian consent.

3. How We Collect Your Data

We collect personal data through:

  • Direct interactions, such as when you enquire about or engage in 1-to-1 coaching, group programmes, or corporate training contracts
  • Information shared by you during coaching, wellbeing sessions, workshops, or training delivery (online or in person)
  • Booking systems, online platforms, or learning management systems used to deliver services
  • Session notes recorded in paper form, digital files, or secure platforms
  • Automated technologies such as cookies when you use our website
  • Third parties, such as corporate clients, where appropriate and lawful

4. How We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your data to:

  • Provide coaching, wellbeing, and training services
  • Assess needs and tailor coaching or wellbeing support appropriately
  • Manage bookings, attendance, and delivery of training programmes
  • Communicate with you, including responding to enquiries and providing follow-up materials
  • Maintain professional records and session notes
  • Improve our services, programmes, and training materials
  • Comply with legal, regulatory, and professional obligations
  • Send marketing communications (where you have given consent or where permitted by law)

5. Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases:

  • Consent – particularly for coaching, wellbeing services, marketing communications, and processing special category data
  • Contract – where processing is necessary to deliver coaching, wellbeing, or training services
  • Legal obligation – where we must comply with applicable laws or regulatory requirements
  • Legitimate interests – for business administration, service improvement, and safeguarding, provided your rights and freedoms are not overridden

Where we process special category data (such as health or wellbeing information), we rely on explicit consent and appropriate safeguards.

6. Cookies

We use cookies to improve your experience on our website. You can control or disable cookies through your browser settings. For more information, please see our Cookie Policy [link if applicable].

7. Data Sharing

We may share your personal data where necessary and lawful, including with:

  • Trusted service providers and platforms used for online sessions, bookings, training delivery, or data storage
  • Corporate clients, limited to attendance, participation, or completion information (not confidential coaching or wellbeing content)
  • Professional advisers such as accountants, insurers, or legal advisers
  • Regulators or authorities where disclosure is required by law

We do not share confidential coaching or wellbeing session content with employers or corporate clients without your explicit consent, unless required by law.

All third parties are required to respect the security and confidentiality of your personal data.

8. International Transfers

Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place, such as adequacy regulations or standard contractual clauses.

9. Data Security

We have implemented appropriate technical and organisational measures to protect your personal data, including:

  • Secure storage of paper records in locked cabinets
  • Password-protected devices and encrypted digital storage
  • Use of reputable, GDPR-compliant platforms for online sessions and data storage
  • Access controls to ensure only authorised individuals can access personal data

Despite these measures, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

We have implemented appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse.

10. Data Retention

We will retain personal data only for as long as necessary to fulfil the purposes for which it was collected.

Typical retention periods include:

  • Coaching and wellbeing client records: up to 7 years after the end of services (unless a longer period is required by law or professional standards)
  • Training records and attendance data: up to 6 years
  • Marketing data: until you withdraw consent or unsubscribe

Data will be securely deleted or anonymised once it is no longer required.

Under UK data protection law, you have the right to:

  • Request access to your personal data
  • Request correction of your personal data
  • Request erasure of your personal data
  • Object to processing of your personal data
  • Request restriction of processing
  • Request data portability
  • Withdraw consent at any time

You can exercise your rights by contacting us using the details above.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
www.ico.org.uk

Our website may include links to third-party websites. We are not responsible for their privacy policies or practices.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date.

14. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact:

Email: haley@haleyheath.com