Privacy Policy

Effective date: September 21, 2025

This Privacy Policy is issued by Erin Kendal (“we”, “our”, “us”), acting as the Data Controller of your personal information. We provide online courses, memberships, and related services through erinkendal.com and erin-kendal.mykajabi.com (“Site”).

This Policy describes how we collect, use, and share your personal information in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Controller

The Data Controller responsible for your personal information is:

Erin Kendal
Email: [email protected]

Information We Collect

We may collect the following personal data when you visit our Site or use our services:

  • Name, business name, email address, telephone number, billing address.

  • Payment details (note: card details are processed securely by Stripe and are not stored by us).

  • Technical data such as IP address, browser type, and geographic location.

  • Account information such as login details, membership activity, survey responses, and support queries.

  • Marketing information such as email preferences, testimonials, or social media handles you choose to provide.

We do not knowingly collect personal data from individuals under 18. If we learn that we have collected personal data from a child, we will delete it promptly.

Legal Bases for Processing

We process your personal data on the following legal bases:

  • Contract: to provide you with access to our Membership and services.

  • Consent: when you opt in to receive marketing communications or accept cookies.

  • Legal obligation: to comply with tax and accounting laws (e.g. retaining invoices).

  • Legitimate interest: to maintain Site security, improve services, and prevent fraud.

How We Use Your Information

We use your information to:

  • Deliver services, process payments, and provide account access.

  • Communicate with you about Membership updates, support, and resources.

  • Send marketing communications if you have opted in (you may unsubscribe at any time).

  • Improve our Site, content, and services through analytics and feedback.

  • Meet our legal and accounting obligations.

International Data Transfers

Our service providers (e.g. Stripe, Kajabi, email platforms) may store and process data outside the EU, including in the United States.

When personal data is transferred internationally, we rely on Standard Contractual Clauses or other lawful safeguards required under GDPR to ensure adequate protection.

Data Retention

  • Financial records (such as invoices and billing information) are retained for up to 10 years, in line with applicable tax law.

  • Membership account data is retained while you are a member and archived for up to 2 years after cancellation, unless deletion is requested.

  • Marketing data is retained until you unsubscribe or request deletion.

  • Cookies and analytics data are retained according to the policies of the third-party services used.

Your Rights

You have the right to:

  • Access the personal data we hold about you.

  • Rectify inaccurate or incomplete information.

  • Request erasure of your personal data (“right to be forgotten”), except where we must retain it for legal reasons (e.g. tax records).

  • Restrict or object to processing of your data.

  • Request portability of your data in a commonly used format.

  • Withdraw consent at any time, where processing is based on consent (e.g. marketing).

  • Lodge a complaint with your local Data Protection Authority if you believe your rights are not being respected.

If you are in the EU, you can also lodge a complaint with your local Data Protection Authority.

To exercise your rights, contact us at [email protected]

Cookies and Tracking

Our Site uses cookies and similar technologies to:

  • Ensure basic site functionality (such as login and checkout).

  • Analyse website traffic and usage patterns.

Essential cookies are always active because they are necessary for the Site to function. Non-essential cookies (such as analytics) will only be used if you give consent. You can withdraw consent or adjust cookie settings at any time via your browser or our cookie banner.

Sharing Your Information

We only share personal data with trusted service providers who help us operate our business, including:

  • Payment processors (e.g. Stripe) to handle secure transactions.

  • Membership and course platforms to deliver our services.

  • Email marketing and communication providers to keep you updated.

  • Analytics providers to help us understand how our Site is used.

  • Professional advisors (such as accountants or legal counsel) where necessary to comply with obligations.

These providers are contractually required to protect your data and may only use it in line with our instructions.

We do not sell or rent your personal data. We may disclose information if required by law, to comply with legal proceedings, or to protect our rights and the safety of others.

Security

We take appropriate technical and organisational measures to protect your data. Payment details are encrypted and securely processed by Stripe.

In the event of a data breach that compromises your personal data, we will notify you promptly in line with GDPR and applicable law.

While we do our best to protect your personal data, no system is completely secure and we cannot guarantee absolute security.

Business Transfers

If there is a change of control in our business (whether by merger, sale, transfer of assets, or otherwise), customer information, which may include your personal data, could be transferred to a purchaser under a confidentiality agreement.

Links to Other Websites

Our Site may contain links to other websites. These are provided for your convenience only. Links to third-party websites do not constitute endorsement or approval. We are not responsible for the privacy practices of other websites and encourage you to read their privacy policies.

Changes to This Policy

We may update this Privacy Policy from time to time. Updates will take effect immediately upon posting to our Site. Please check this page periodically to stay informed.

Contact Us

If you have questions or concerns about this Privacy Policy or how we handle your personal information, please contact us at:

We aim to respond within 30 days, or sooner where required by law.