Privacy Policy

​

Last Updated: 28th December 2025

​

1. Who We Are

​

This Privacy Policy explains how CPD Consultancy Ltd collects, uses and protects your personal information when you purchase and use our digital training, mentorship services and coaching sessions.

​

Data Controller: CPD Consultancy Ltd
Contact Email: harrison@thefreetwo.com

By using our services or purchasing our course, you agree to the terms of this Privacy Policy.

​

2. What Information We Collect

​

Information You Provide to Us

​

When you purchase or access our services, we may collect:

• Name
• Email address
• Payment details (processed securely via Stripe – we do NOT store full card data)
• Business information (if applicable)
• Discord username (if mentorship requires access)
• Calendly booking details (for 1-to-1 sessions)
• Communication history with us

​

Automatically Collected Data

​

When you visit our website or course platform, we may collect:

• IP address
• Device and browser type
• Usage data such as pages visited, actions taken
• Cookies and similar technologies

​

Third-Party Platforms Used

​

Because of how our services are delivered, data may also be collected via:

• Stripe – payments
• WHOP – delivery of pre-recorded course content
• Calendly – booking 1-to-1 sessions
• Discord – mentorship communication and live sessions
• Email service providers – communication and updates

Each third party also has their own privacy policy.

​

3. How We Use Your Personal Data

​

We use your information to:

• Provide access to digital training and mentorship services
• Deliver instant access to the WHOP course
• Allow booking of unlimited 1-to-1 mentorship calls
• Manage and verify customer accounts
• Process payments and detect fraud
• Provide customer support
• Communicate about your purchase, updates and service improvements
• Meet legal, regulatory and accounting obligations

We do not sell or rent your personal information to anyone.

​

4. Lawful Basis for Processing (UK GDPR)

​

We process your data under one or more of the following legal bases:

• Contractual necessity – to provide services you purchase
• Legitimate interest – to operate, improve and protect our business
• Legal obligation – for financial, tax and compliance purposes
• Consent – for optional marketing communications (if you opt-in)

​

5. Sharing Your Information

​

Your data may be shared only where necessary with:

• Payment Processor: Stripe
• Course Platform: WHOP
• Scheduling Platform: Calendly
• Communication Platform: Discord
• Professional advisers: accountants, legal advisers
• Regulatory bodies when legally required

We only share what is necessary and ensure appropriate protection is in place.
We do not sell personal data.

​

6. International Data Transfers

​

Some of our service providers operate outside the UK/EEA. Where this occurs, we ensure lawful safeguards exist such as Standard Contractual Clauses or equivalent GDPR-approved protections.

​

7. Data Retention

​

We retain personal data only as long as necessary:

• Customer records – typically up to 6 years for legal and accounting compliance
• Booking and communication records – as long as required for service delivery
• Marketing data – until you withdraw consent
• Payment / transaction records – retained per financial regulations

You may request deletion sooner where legally appropriate.

​

8. Your Rights Under UK GDPR

​

You have the right to:

• Access your personal data
• Correct inaccurate information
• Request deletion (“right to be forgotten”)
• Restrict or object to processing
• Request data portability
• Withdraw consent where applicable
• Complain to the Information Commissioner’s Office (ICO)

To exercise rights, contact:

ICO Website: https://ico.org.uk

​

9. Security Measures

​

We take appropriate technical and organisational measures to protect your data. However, no online system is 100% secure and we cannot guarantee absolute security.

​

10. Cookies

We may use cookies to improve website functionality, analytics and user experience.
If you require a separate Cookie Policy, we can create one.

​

11. Children’s Data

​

Our services are not intended for individuals under 18 years old.
We do not knowingly collect data relating to children.

​

12. Changes to This Policy

​

We may update this Privacy Policy when necessary. Any updates will be posted here with a new “Last Updated” date.

​

13. Contact Us

​

For questions or concerns regarding this policy:
Email: harrison@thefreetwo.com