Privacy Policy – Mindful Health Academy

SUMMARY PRIVACY POLICY

This is a summary of our Privacy Policy. Please read the full policy below for the legally binding wording.

What Data We Collect

  • Name, username, email address, full postal address, and phone number (required).
  • Company name and VAT number (optional).
  • Learning records (course enrolments, progress, quiz results, certificates).
  • Technical data such as IP address, browser type, and site usage (via cookies).

How We Use Your Data

  • To provide and manage your courses and learning records.
  • To issue certificates.
  • To contact you about your enrolments and updates.
  • To send you information about other courses and resources (if you opt in).
  • To process payments securely.
  • To improve our website and services.

Who We Share Data With

  • WordPress (website platform).
  • Masteriyo (learning management system).
  • MailerLite (email communications, if opted in).
  • Stripe/PayPal (for secure payments – we don’t store card details).
  • Professional advisors if legally required.
  • We never sell your data.

Your Rights

You have the right to:

  • Access, update or correct your data.
  • Request deletion of your data.
  • Restrict or object to how we use it.
  • Request a copy to transfer elsewhere.
  • Withdraw consent for marketing at any time.

Data Retention

  • Learning records are kept for at least 7 years (to evidence CPD).
  • Marketing data is kept until you unsubscribe.
  • Payment and account records are kept as required by law.

Cookies

  • We use essential cookies (for login, checkout, course progress).
  • We use analytics cookies (to understand site use and improve services).
  • You can manage or disable cookies in your browser, but some features may not work properly.

The above is a simplified summary. Please read the Full Privacy Policy below for the complete details.

FULL PRIVACY POLICY

This privacy policy applies between you, the User of this Website, and Mindful Health Academy, the owner and provider of this Website. Mindful Health Academy takes the privacy of your information very seriously. This policy sets out how we collect, use and protect your personal information in line with the UK GDPR and Data Protection Act 2018.

This privacy policy should be read alongside, and in addition to, our Terms and Conditions.

Definitions and interpretation

  1. In this privacy policy, the following definitions are used:

a. Data: collectively all information that you submit to Mindful Health Academy via the Website.

b. Cookies: small text files placed on your computer by this Website when you use certain features.

c. Data Protection Laws: any applicable law relating to the processing of personal Data, including the UK GDPR and the Data Protection Act 2018.

d. Mindful Health Academy (MHA, we or us): Mindful Health Academy of 1 Laxfield Drive, Broughton, Milton Keynes, MK10 9NQ.

e. User or you: any third party that accesses the Website and is not employed by MHA or providing services to MHA in the course of their work.

f. Website: https://mindfulhealthacademy.org.uk and any sub-domains of this site unless expressly excluded.

  1. Unless the context requires a different interpretation:

a. The singular includes the plural and vice versa.

b. “Including” is understood to mean “including without limitation.”

c. References to statutory provisions include modifications or amendments.

Scope of this privacy policy

  1. This privacy policy applies only to the actions of MHA and Users with respect to this Website and the services delivered through it. It does not extend to external websites accessible via links from this Website.
  2. For purposes of Data Protection Laws, MHA is the “data controller.”

Data collected

  1. We collect and process the following Data:

a. Required Data: Name, Username, Email address, Full postal address, Telephone number.

b. Optional Data: Company name, Company VAT number.

c. Created Data (through your use of our services): Course enrolments, Module progress and quiz results, Certificates awarded and CPD records.

d. Technical Data: IP address, browser type/version, device type, Website usage data (via cookies and analytics).

How we collect Data

  1. We collect Data in the following ways:

a. Directly from you when registering, enrolling, or contacting us.

b. Automatically via cookies and analytics tools.

c. Through the learning platform (Masteriyo) as you complete activities.

Our use of Data

  1. We may use your Data for the following purposes:

a. Provide access to courses and manage your learning records.

b. Issue certificates and CPD evidence.

c. Communicate with you about your enrolments, progress, and updates.

d. Send you information about other courses, resources and opportunities (if you have opted in).

e. Process payments securely.

f. Improve our Website and services.

  1. The lawful bases for processing are performance of a contract, legitimate interests, legal obligations, and consent (for marketing).

Who we share Data with

  1. We do not sell your Data to third parties. We may share your Data with trusted service providers that enable us to operate:

a. WordPress (website platform).

b. Masteriyo (learning management system).

c. MailerLite (email communication and marketing, if opted in).

d. Payment processors such as Stripe or PayPal (for secure payments – we do not store card details).

e. Professional advisors where legally required (e.g. accountants, legal advisors).

Keeping Data secure

  1. We use appropriate technical and organisational measures to safeguard your Data, including secure servers, password-protected accounts, and encrypted connections.
  2. If you suspect misuse, loss, or unauthorised access to your Data, please contact us immediately at hello(@)mindfulhealthacademy.org.uk.

Data retention

  1. Learning records and certificates are retained for at least 7 years.
  2. Marketing preferences are kept until you unsubscribe or withdraw consent.
  3. Payment and account records are retained as required by law for tax and accounting.

Your rights

  1. You have the right to:

a. Access the Data we hold about you.

b. Rectify inaccurate or incomplete Data.

c. Request erasure of your Data.

d. Restrict our use of your Data.

e. Request Data portability.

f. Object to processing, including marketing.

  1. To exercise these rights, contact us at hello(@)mindfulhealthacademy.org.uk.
  2. If you are dissatisfied with our response, you may complain to the Information Commissioner’s Office (ICO) at https://ico.org.uk.

Transfers outside the UK/EEA

  1. Your Data may be transferred outside the UK/EEA (for example, if our service providers host servers abroad).
  2. We only transfer Data where adequate safeguards are in place, such as Standard Contractual Clauses or equivalent protections.

Cookies

  1. We use cookies for the following purposes:

a. Essential website functions (e.g. login, checkout, course progress).

b. Analytics (e.g. to understand how visitors use the site and improve services).

  1. When you first visit the site, you will be asked to consent to non-essential cookies.
  2. You can manage or disable cookies in your browser settings, but some features may not function correctly.

Changes to this privacy policy

  1. We may update this policy from time to time. Any changes will be posted on this page. By continuing to use the Website after changes are posted, you are deemed to have accepted the updated terms.

Contact

  1. For any questions about this policy or your Data, please contact us:

Email: hello@mindfulhealthacademy.org.uk