My Library
Contact

Privacy Policy

Effective date: 19/11/2025
Controller: Paul Millard Fitness LTD (“we”, “us”, “our”)
Contact: [email protected]

We respect your privacy. This Policy explains what personal data we collect, how we use it, and your rights under UK GDPR.

1) What we collect

  • Identity & contact: name, email, password (hashed), country, optional phone/address.

  • Account & purchase: products purchased, checkout status (incl. 7-day trial), invoices, last login.

  • Payment: processed securely by Kajabi Payments (Stripe), Apple Pay/Google Pay (where enabled). We receive only limited billing metadata (no full card numbers).

  • Communications: emails you open/click, support messages, form submissions.

  • Usage data: pages viewed, links clicked, device/browser info, approximate location, session duration.

  • Community/content: posts, comments, likes you choose to share.

  • Email sending: we use Mailgun (via Kajabi) to deliver emails and track deliverability.

2) How we use your data (lawful bases)

  • Provide services (contract): create your account, deliver the Community and The 6-Week Reviver, drip lessons weekly, manage the 7-day trial, process renewals.

  • Payments & fraud prevention (contract/legitimate interests/legal obligation).

  • Customer support & notices (contract/legitimate interests).

  • Email marketing (consent/legitimate interests): programme updates, tips, offers. You can unsubscribe anytime.

  • Analytics & improvement (legitimate interests): understand usage to improve content and checkout.

  • Legal compliance (legal obligation): tax, accounting, regulatory requests.

3) Sharing

We share data only with trusted processors to run our services:

  • Kajabi (website, courses, community, analytics, email templates).

  • Kajabi Payments/Stripe (payments, billing).

  • Mailgun (email delivery/metrics).

  • Support, analytics, and hosting providers used by Kajabi/Stripe/Mailgun.

Processors act on our instructions and implement security measures.

4) International transfers

Our providers may process data in the UK, EEA, and US (and other locations). Where data leaves the UK/EEA, we rely on UK IDTA/EU SCCs or equivalent safeguards implemented by our providers.

5) Cookies & similar tech

We (and Kajabi/Stripe/Mailgun) use cookies and similar technologies for essential site functions, analytics, and improving checkout. You can control cookies in your browser; some features may not work without essential cookies.

6) Data retention

  • Account, purchase, and tax records: up to 7 years (legal obligation).

  • Marketing data: until you unsubscribe or your account is deleted.

  • Community posts: retained while your account exists (you may delete your own posts).
    We’ll keep data longer if needed to establish or defend legal claims.

7) Your rights (UK GDPR)

You have the right to access, rectify, erase, restrict, object, and port your data, and to withdraw consent (where relied on). You may also complain to the ICO (ico.org.uk).
To exercise rights, email [email protected]

8) Security

We use reasonable technical and organisational measures (TLS encryption, access controls, hashed passwords, secure payment processing). No system is 100% secure.

9) Children

Our services are for adults 18+. We do not knowingly collect data from children.

10) Updates

We may update this Policy from time to time. We’ll post the new version here and update the effective date.

Contact: [email protected]