The GDPR & Coaching Loft
The Coaching Loft platform is fully committed to upholding the highest standards of data privacy and protection in accordance with the General Data Protection Regulation (GDPR) framework.
At Coaching Loft, we recognize the importance of safeguarding the personal data of our users and ensuring compliance with the GDPR, which is designed to protect the fundamental rights and freedoms of individuals within the European Union (EU) and European Economic Area (EEA).
Here are the key elements that highlight our commitment to GDPR compliance:
Lawful Basis and Consent
We process personal data on the basis of a lawful purpose, such as the user's explicit consent, the necessity for the performance of a contract, compliance with legal obligations, or legitimate interests pursued by Coaching Loft or a third party. We obtain consent when required and respect users' choices regarding the processing of their personal data.
Transparent Data Processing
Data Minimization and Purpose Limitation
We only collect and process personal data that is necessary and relevant for the provision of our coaching services. We do not retain personal data for longer than necessary and only retain it as required by law or for legitimate business purposes.
Data Security Measures
We maintain appropriate technical and organizational security measures to protect personal data against unauthorized access, accidental loss, destruction, or alteration. These measures include encryption, access controls, regular security assessments, and staff training to ensure data privacy and confidentiality.
User Rights and Control
We respect the rights of individuals concerning their personal data. Users have the right to access, rectify, erase, restrict processing, and obtain a copy of their data. We provide mechanisms to facilitate the exercise of these rights and promptly respond to data subject requests.
Data Processing Agreements
We have established clear data processing agreements with our clients and any third-party service providers, ensuring that any personal data processed on our platform is done so in compliance with GDPR requirements.
International Data Transfers
If personal data is transferred outside the EU/EEA, we take appropriate measures to ensure an adequate level of protection. This includes implementing standard contractual clauses or relying on approved mechanisms for data transfers.
Data Breach Management
We have robust procedures in place to detect, assess, and promptly respond to any personal data breaches. In the event of a data breach that poses a risk to individuals' rights and freedoms, we have established processes to notify the relevant supervisory authority and affected individuals without undue delay.
By adhering to the GDPR regulations, the Coaching Loft platform is dedicated to providing a secure and privacy-conscious environment for our users. We continually review and update our practices to ensure ongoing compliance with the evolving data protection landscape.
Please note that this statement provides a general overview and should not substitute legal advice. For specific details regarding the GDPR compliance of the Coaching Loft platform, we recommend reviewing our comprehensive GDPR-related documentation.