Privacy Policy & GDPR

Privacy Policy for Elevate Success Coaching
Effective Date: February 19, 2025

1. Data Controller

We are the data controller for the personal data we process about our clients, parents, and partners. Elevate Success Coaching provides educational and behavioral coaching services for children and teenagers.
Address: Arent Hansens Vej 15, 3250 Gilleleje, Denmark
CVR No: 43012894

2. Interpretation and Definitions

2.1 Interpretation

• Words with capitalized initials have meanings as defined in this section.
• These definitions apply whether the terms appear in singular or plural form.

2.2 Definitions

• Account – A unique account created for you to access our services or parts of our services.
• Affiliates – Any entity that controls, is controlled by, or is under common control with a party.
• Children – Minors under the age of 18 who receive coaching services.
• Cookies – Small files placed on your device by our website to store browsing history and enhance user experience.
• Company ("We", "Us", or "Our") – Refers to Elevate Success Coaching, located at Arent Hansens Vej 15, 3250 Gilleleje, Denmark.
• Device – Any device that can access our website or services, such as a computer, smartphone, or tablet.
• Personal Data – Any information that identifies or relates to an individual.
• Service Providers – Third-party entities that process data on behalf of the Company, including payment processors, IT providers, and communication platforms.
• Third-Party Social Media Services – External services (e.g., Facebook, Instagram, LinkedIn, YouTube) that allow users to log in or create an account to use our services.
• Usage Data – Automatically collected data, including page visits, interactions, and other system-related information when you access our website or use our services.

3. Introduction

We value your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, share, store, and protect your information when you use our coaching services, including through our website and social media channels. We also describe the legal bases for our processing activities under the GDPR.

4. Processing Activities and Information We Collect

4.1 Website Visits

• Tracking Technologies and Cookies: We use cookies and similar tracking technologies to track activity on our website and store certain information.

4.2 Communication with Potential Clients

• Contact Methods: When you contact us via email, phone, or social media (e.g., Facebook, Instagram, LinkedIn), we process the information you provide (e.g., your name, email, phone number) to respond to your inquiries about our services.
• Legal Basis: Processing is based on our legitimate interest (GDPR Article 6(1)(f)).
• Retention: We delete this communication data once it is clear whether you wish to use our services unless a longer retention period is justified.

4.3 Clients and Service Delivery

• Service Delivery: To provide our coaching services, we may process personal data such as your name, contact details, coaching-related information, payment details, and communications.
• Legal Basis: Processing is necessary for the performance of a contract (GDPR Article 6(1)(b)).
• Retention: Data is retained for the duration of the coaching relationship and then promptly deleted.

4.4 Newsletter Subscription

• Subscription: We offer a newsletter subscription for updates on new content, coaching services, or promotions. You will receive emails only if you have explicitly consented.
• Legal Basis: Processing is based on your consent (GDPR Article 6(1)(a)).
• Retention: Data is retained until you unsubscribe, with consent records kept for 2 years.

4.5 Payment Information

• Payment Processing: To process payments for our coaching services, we use third-party payment processors like Stripe or MobilePay. These processors handle your payment data securely.
• Legal Basis: Processing is necessary for the performance of a contract (GDPR Article 6(1)(b)).
• Retention: Payment details are retained only as long as necessary to complete the transaction.

4.6 Job Applications (if applicable)

• Recruitment Process: When you apply for a job at Elevate Success Coaching, we process your application data to assess your suitability for the position.
• Legal Basis: Processing is based on our legitimate interest (GDPR Article 6(1)(f)).
• Retention: If not selected, your application is deleted once the position is filled.

4.7 Data Processors

• External Providers: We work with third-party service providers to support our operations, including IT hosting, marketing, and payment processing. These partners are contractually obligated to protect your personal data.

5. Parental Rights and Control

We acknowledge the importance of parental involvement in managing their child's data. As a parent or guardian, you have the right to:

• Review and Access Your Child’s Data: You can request a copy of the personal data we hold about your child.
• Request Modifications: You may ask us to correct or update any incorrect or incomplete data.
• Withdraw Consent: You can withdraw your consent for data processing at any time, in which case we will stop processing your child’s personal data unless legally required to retain it.
• Contact Us for Data Requests: If you wish to exercise any of these rights, please contact us at [Insert Contact Information].

6. Confidentiality of Coaching Sessions

We are committed to maintaining the confidentiality of coaching sessions. However, please note:

• Confidentiality: All information shared during coaching sessions will be kept confidential unless required by law.
• Exceptions to Confidentiality: In certain situations, such as safeguarding concerns or legal obligations (e.g., risk of harm to a child), we may be required to disclose information.

7. Specific Data Collection for Children and Teens

When providing coaching services for children and teenagers, we collect the following specific data:

• Behavioral Progress: Information related to behavioral development, progress notes, and educational assessments.
• Sensitive Data: We only collect sensitive data (e.g., health information) with explicit parental consent. This data is handled securely and used exclusively for coaching purposes.

8. Third-Party Tools and Integrations

We use third-party platforms and services to support our coaching activities, such as video conferencing tools, learning management systems, and cloud storage. These third-party services may store or process data, and we ensure they comply with appropriate data security standards:

• Video Conferencing:

Zoom – Privacy Policy

Google Meet – Privacy Policy

Microsoft Teams – Privacy Policy

Skype – Privacy Policy

• Cloud Storage:
  • Google Drive – Privacy Policy

We are committed to ensuring that any third-party tools we use prioritize your child's data security.

9. Safeguarding and Child Protection

We are dedicated to safeguarding children and complying with relevant child protection regulations, including:

• Child Protection: We ensure that coaching services are provided in a manner that prioritizes the well-being and safety of children.
• Compliance with Laws: Our practices adhere to child protection regulations as required by Danish law and the GDPR.

10. Data Storage and Location

We store data securely, primarily within the European Union (EU) to ensure compliance with GDPR regulations. Any third-party services we use for data storage are located within the EU or are GDPR-compliant.

11. Marketing and Communications

We only communicate with children or teenagers through their parents or legal guardians. Promotional materials, newsletters, and updates are sent exclusively to parents, unless a child has specific consent from their parent or guardian to receive such communications.

12. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of Access: Request access to your personal data.
• Right to Rectification: Request corrections to inaccurate or incomplete data.
• Right to Erasure: Request deletion of your data under certain conditions.
• Right to Restrict Processing: Request limitation on how your data is processed.
• Right to Object: Object to processing, including direct marketing.
• Right to Withdraw Consent: Withdraw consent at any time. For more information, refer to the Danish Data Protection Authority (Datatilsynet).

13. Complaints

If you have any concerns about our handling of your personal data, you have the right to file a complaint with the Danish Data Protection Authority (Datatilsynet).

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically.

15. Contact Information

If you have any questions or concerns regarding this Privacy Policy, please contact us at:
Email: contact@elevatesuccess.coach
Phone: +45 53582449
Address: Arent Hansens Vej 15, 3250 Gilleleje, Denmark

GDPR: GDPR Privacy Notice

Introduction

Elevate Success Coaching is committed to protecting personal data in compliance with the General Data Protection Regulation (GDPR) and applicable local laws. This policy outlines our approach to data collection, processing, security, and individual rights.

Data Collection & Use

We collect personal data for specific, lawful purposes, including:

•     Identifying Information: Name, email, phone number, address.

•     Payment Data: Payment details (processed via Stripe).

•     Technical Data: IP address, cookies, browser type.

•     Coaching Data: Behavioral progress, coaching session notes.

We process this data to provide services, comply with legal obligations, prevent fraud, and improve security.

Lawful Basis for Processing

We process personal data based on:

•     Legitimate interests

•     Legal obligations

•     Contract necessity

•     User consent (where applicable)

Data Retention

Personal data is retained for up to 2 years after services are concluded, or as required by law. Certain data may be stored for legal compliance, fraud prevention, or enforcing rights.

Security Measures

We implement technical and organizational measures to protect your data, including:

•     Access controls

•     Regular security audits

•     Awareness training

•     Compliance checks every six months

Data Breach Notification

In case of a data breach, we will notify authorities within 72 hours (GDPR Article 33) and inform affected individuals if there is a high risk to their rights.

Your GDPR Rights

You have the right to:

•     Access & Rectification: Request a copy or correction of your data.

•     Erasure: Request deletion of your data.

•     Restriction & Objection: Limit or object to data processing.

•     Data Portability: Request transfer of data to another provider.

To exercise your rights, please contact us at contact@elevatesuccess.coach.

Third-Party Services

We do not store billing data. Payments are processed via Stripe (Privacy Policy). We use Zoom, Google Meet, Skype, and Google Drive for our coaching services; please refer to their privacy policies for more details.

Contact Information

For any GDPR-related inquiries or requests, please contact:

•     Email: contact@elevatesuccess.coach

•     Address: Elevate Success Coaching, Arent Hansens Vej 15, 3250 Gilleleje, Denmark

Policy Updates

This policy may be updated periodically. The latest version will always be available on our website.

Last Updated: 19/02/2025