Privacy Policy
Last updated: 21st November 2025
Tom Waldron Movement Therapy (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy.
This Privacy Policy explains how we collect, use, store, and protect your information when you:
Visit our website
Purchase a digital product, workshop, or course
Sign up for our email list
Access our online learning platform
Interact with us on social media
Use any services we offer online
We operate in accordance with the UK GDPR, Data Protection Act 2018, and related privacy laws.
1. Contact Details
Data Controller:
Tom Waldron Movement Therapy
Email: [email protected]
If you have any questions about this policy or how we use your data, please contact us.
2. What Personal Data We Collect
We may collect and store the following information:
A. Information You Provide Directly
Full name
Email address
Payment information (processed securely by Stripe — we do not store card details)
Billing address (if required by Stripe)
Account/login details
Information submitted through forms
Customer support messages
B. Information Collected Automatically
When you visit our website or course platform, we may automatically collect:
IP address
Device information
Browser type
Pages visited
Time spent on pages
Course progress and usage data
Referral source
This helps us improve our services and understand how customers engage with our content.
C. Information from Cookies & Tracking Tools
We may use:
Cookies
Pixels (Meta/Facebook Pixel, if used)
Deadline Funnel tracking
Google Analytics (if used)
Other analytic tools within GoHighLevel
These help us:
Understand website performance
Track affiliate links (if used)
Run effective marketing campaigns
Deliver relevant ads
You can manage cookie settings at any time using your browser.
3. How We Use Your Data
We process your personal data for the following purposes:
To deliver digital courses, workshops, and products
To manage your account and provide customer support
To send login details and purchase confirmations
To issue certificates of completion or CEC credits (if applicable)
To send educational emails, updates, and promotions
To analyse website and learning platform performance
To improve our products and user experience
To comply with legal and financial obligations
We will never sell your personal information.
4. Legal Basis for Processing (UK GDPR)
We process your data under the following lawful bases:
Contract: To deliver products/services you purchase
Consent: When you sign up for newsletters or marketing
Legitimate Interests: For analytics, site improvement, and security
Legal Obligation: For tax and accounting purposes
You can withdraw consent for marketing at any time by clicking “unsubscribe” in any email.
5. Sharing Your Data
We only share your personal data with trusted third-party processors required to operate our services, such as:
Stripe (payment processing)
GoHighLevel (course platform, CRM, email delivery)
Deadline Funnel (timers and tracking)
Analytics tools (Google Analytics, Meta Pixel — if enabled)
These providers comply with GDPR and have their own privacy and security measures.
We do not share your data with any third parties for their own marketing purposes.
6. How Long We Keep Your Data
We retain your data only as long as necessary:
Account + course access: retained indefinitely unless you request deletion
Payment / purchase records: kept for at least 6 years (legal requirement)
Email marketing data: kept until you unsubscribe
Analytics data: varies based on tool settings
You may request deletion of your account or personal data at any time (see Section 10).
7. Security Measures
We use reasonable and appropriate measures to secure your data, including:
HTTPS encryption
Secure access controls
Encrypted payment processing via Stripe
Regular monitoring and security updates
However, no system is 100% secure.
By using our services, you acknowledge inherent internet security risks.
8. Children’s Privacy
Our website and digital products are intended for adults aged 18+.
We do not knowingly collect data from anyone under 18.
If you believe a minor has provided personal data, please contact us immediately.
9. Your Rights (UK GDPR)
You have the right to:
Access your data
Correct inaccurate data
Delete your data (right to erasure)
Restrict how we process your data
Object to processing or marketing
Request a copy of your personal data
Withdraw consent at any time
To exercise any of these rights, email:
We will respond within 30 days.
10. International Data Transfers
Our third-party processors (e.g., Stripe, GoHighLevel) may store data outside the UK.
All providers we use follow GDPR-equivalent safeguards such as:
Standard Contractual Clauses
Adequacy decisions
GDPR-aligned frameworks
11. Links to Other Sites
Our site may contain links to external websites.
We are not responsible for their privacy practices or content.
12. Updates to This Policy
We may update this Privacy Policy from time to time.
The latest version will always be displayed on this page.
Material changes will be communicated where appropriate.
©2026 Tom Waldron Movement Therapy. All Rights Reserved.