0

No products in the basket.

HomePrivacy Policy

Privacy Policy

Laura Andrews Online Privacy and Cookies Policy

Last updated: 21st May 2026.

1.Who we are

  • Laura Andrews Online (“we”, “us”, “our”) is a UK-based marketing consultancy and coaching business helping small business owners create calm, consistent marketing.
  • Legal entity: Laura Andrews Online
  • Registered/Business address: Copthorne Drive, Lightwater, Surrey, GU18 5TE
  • Contact for privacy matters: laura@lauraandrewsonline.com
  • We act as the data controller for personal data we collect and use in connection with this website and our services in the UK.

2.Scope of this policy

This policy explains how we collect, use, disclose, and protect your personal data when you:

  • visit or interact with our website and content;
  • enquire about or purchase our services (e.g., Calm Marketing Call, Calm Content Partnership, Calm Marketing Method – 90‑Day Programme, Calm Marketing Club membership);
  • subscribe to our newsletter, download content, or attend online sessions/events;
  • interact with us via email or social media.

It also explains your rights under the UK General Data Protection Regulation (UK GDPR) and how we comply with the Privacy and Electronic Communications Regulations (PECR) for cookies and electronic marketing.

3.The data we collect

We collect and process the following categories of personal data:

  • Identity and contact data: name, business name, email address, phone number, postal/ billing address.
  • Enquiry and booking data: service interests, availability, notes you provide during discovery or booking forms.
  • Client and coaching data: goals, business context, materials you choose to share, call notes, feedback, and progress data created through our work together.
  • Transaction data: purchase history, invoice amounts, partial card details (last 4 digits only) and payment status from our payment processor (we do not store full card numbers).
  • Marketing preferences and engagement: newsletter opt-ins, unsubscribes, email opens/clicks at aggregate or individual level (as enabled by our email platform).
  • Usage and technical data: IP address, device type, browser, pages viewed, referral source, time on page, and approximate location, collected via cookies and similar technologies (see section 10).
  • Social and third-party data: your public profile/handle and messages if you contact us via Instagram, Facebook, LinkedIn, or similar platforms (subject to your platform settings).

Children: Our services are for adults and business owners. We do not knowingly collect data from children.

4.How we collect data

  • Direct interactions: forms on our website, email, phone/video calls, DMs, bookings, and during delivery of services.
  • Automated technologies: cookies, pixels, and similar tools when you browse our site (see section 10).
  • Third parties: payment processors, scheduling tools, email service providers, analytics platforms, and social platforms, each providing limited data necessary to perform their function.

5.Why we use your data (purposes) and the lawful bases

We process personal data only where a lawful basis applies under UK GDPR:

  • To respond to enquiries, provide quotes, schedule sessions, and deliver paid services (contract).
  • To take payment, issue invoices/receipts, and manage accounts (contract; legal obligation for tax/record-keeping).
  • To run our membership, programmes, coaching, and accountability check‑ins (contract; legitimate interests to deliver and improve services).
  • To send service communications (e.g., booking confirmations, programme information) (contract/legitimate interests).
  • To send email marketing where you have opted in, including newsletters, offers, and event updates (consent under PECR; you can withdraw any time).
  • To maintain security, prevent fraud/abuse, and administer the website (legitimate interests; occasionally legal obligation).
  • To analyse site usage and improve content and user experience (consent for non‑essential cookies under PECR; see section 10).
  • To keep business records and comply with tax, accounting, and regulatory duties (legal obligation).

6.Marketing communications (PECR)

  • Email: We send marketing emails only with your consent (opt‑in) or to existing customers about similar services where PECR’s “soft opt‑in” applies. You can unsubscribe at any time via the link in each email or by contacting us.
  • SMS/phone marketing: We do not use SMS or phone marketing unless you have explicitly consented.
  • Social advertising: We may run interest‑based ads on platforms (e.g., Meta, Instagram). We do not upload your personal data to create custom audiences without consent or another valid basis.

7.Sharing your data

We do not sell your personal data. We share it only with:

  • Service providers acting as processors, strictly for our business purposes and under contract:
    • Payment processing: Stripe via WooCommerce for secure payments.
    • Scheduling: Calendly for booking management.
    • Email and newsletters: Kajabi and Mailchimp to send updates you’ve opted into.
    • Website/hosting and analytics: Krystal and Google Analytics 4 to run and improve our site.
    • Document storage and collaboration: Google Workspace for client files and notes.
    • Video calls and chat facilities: Zoom to deliver online calls, Kajabi community for marketing club.
  • Professional advisors: accountants, legal advisors, insurers where necessary.
  • Authorities: HMRC, law enforcement, regulators where required by law.

International transfers: Some providers may process data outside the UK. Where this occurs, we rely on a UK “adequacy decision” (e.g., for the EEA) or put in place appropriate safeguards such as the UK International Data Transfer Agreement (IDTA) or Addendum to the EU SCCs.

8.How long we keep your data

We retain personal data only as long as necessary for the purposes set out above:

  • Enquiry data: up to 12 months after last contact if you do not become a client.
  • Client and coaching records: typically, up to 6 years after the end of the engagement (to support our contract, professional practice, and legal/accounting requirements).
  • Transaction records: 6 years for tax and accounting.
  • Marketing data: until you unsubscribe or withdraw consent; we may keep a minimal suppression record to respect your choice.
  • Cookie/analytics data: per the cookie’s lifespan (see section 10) or earlier if you withdraw consent.

We review retention periods periodically and securely delete or anonymise data when it is no longer needed.

9.Your rights

Under UK GDPR you have the right to:

  • Access your personal data and receive a copy.
  • Rectify inaccurate or incomplete data.
  • Erase your data in certain circumstances.
  • Restrict or object to processing, including objecting to direct marketing.
  • Data portability where applicable (for data you provided to us by consent or contract).
  • Withdraw consent at any time where consent is our basis (e.g., newsletters, analytics cookies).
  • Complain to the Information Commissioner’s Office (ICO) at ico.org.uk. We would appreciate the chance to address your concerns first – contact us at laura@lauraandrewsonline.com.

To exercise any rights, contact us with sufficient information to identify you and your request.

10.Cookies, pixels, and similar technologies (PECR)

What are cookies? Small text files placed on your device to make websites work and to collect information. We use:

  • Strictly necessary cookies (essential): enable core functionality like security, network management, and accessibility. These do not require consent.
  • Preferences (optional): remember choices such as preferred settings. Used only with your consent.
  • Analytics (optional): help us understand traffic and improve content and usability (e.g., Google Analytics 4). Set only with your consent.
  • Marketing (optional): measure or deliver advertising on social platforms. Set only with your consent. We do not set marketing cookies unless we are actively running ads that require them.

Consent management: On your first visit, we present a cookie banner that:

  • does not set non‑essential cookies until you choose “Accept”;
  • allows you to “Reject” non‑essential cookies as easily as “Accept”;
  • links to granular controls where you can toggle categories on/off and change your mind later.

Managing cookies: You can update your preferences at any time via the “Cookies” link in our footer and also through your browser settings. Blocking cookies may affect site functionality.

Representative list of cookies/tools we may use (update to match your setup):

  • Google Analytics 4 (analytics) – retention: e.g., 14 months; IP anonymisation enabled where available.
  • Meta Pixel (marketing, only if ads are running) – used to measure ad performance; not set without consent.
  • Website platform/host essential cookies – for security and core site operation.

11.Security

We use appropriate technical and organisational measures to protect personal data, including secure platforms, access controls, encryption in transit, and staff awareness. No system is 100% secure; we monitor and mitigate risks and maintain incident response procedures.

12.Third‑party links

Our website may link to third‑party sites (e.g., social platforms, partners). Those sites have their own privacy and cookies policies, which we encourage you to review.

13.Changes to this policy

We may update this policy from time to time to reflect changes in our services, providers, or legal requirements. Significant changes will be highlighted on this page. Please check back periodically.

14.Contact

Questions, requests, or complaints related to privacy:

Address: Copthorne Drive, Lightwater, Surrey,

Subscribe to my Newsletter

Stay updated with the latest marketing tips, social media strategies, and tools to grow your business with confidence!

© 2026 Laura Andrews Online | Privacy Policy