Privacy Policy

LearnLoom Works ("we", "us", "our") respects your privacy and is committed to protecting your personal data. This policy explains how we collect, use, disclose, and safeguard information when you visit learnloomworks.website or use our services, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who we are

Data Controller: LearnLoom Works, Studio 14, The Loom, 14 Gowers Walk, London E1 8PY, United Kingdom. Phone: +44 20 4579 8234. Email: info@domain.

2. Personal data we collect

• Identity & Contact: name, email address, phone (if supplied).
• Usage & Technical: IP address, device and browser type/version, pages viewed, time spent, referral URLs, approximate location, and cookie identifiers.
• Transaction & Course Data: enrollments, progress, feedback, support requests, and communications.
• Marketing Preferences: opt‑in/opt‑out choices for email updates.

3. How we use your data

We process personal data for the following purposes and lawful bases:

• Provide services (enrolment, access to materials, support) — contract.
• Improve and secure our site (analytics, troubleshooting, testing) — legitimate interests.
• Communications about your account, updates, service messages — contract / legitimate interests.
• Marketing newsletters and offers — consent (you can withdraw any time).
• Legal & compliance — legal obligation / legitimate interests.

4. Cookies & analytics

We use essential cookies to make the site work and optional analytics cookies to understand performance. Where required, we ask for your consent for non‑essential cookies. You can manage cookies in your browser settings or via any consent banner we provide.

5. Sharing your data

We may share data with trusted providers who help us operate our services (for example: hosting, analytics, email delivery, payments, and customer support). These parties process data under contracts that require appropriate security and confidentiality. We do not sell your personal data.

6. International transfers

Where data is transferred outside the UK (e.g., to service providers), we use lawful safeguards such as UK International Data Transfer Agreements (IDTA), Standard Contractual Clauses (SCCs), or adequacy regulations.

7. Data retention

We keep personal data only as long as necessary for the purposes described above, including satisfying legal, accounting, or reporting requirements. Retention periods depend on data type and context; when no longer needed, data is securely deleted or anonymised.

8. Your rights

Under UK GDPR you have the right to:

• Access your personal data and obtain a copy.
• Request correction of inaccurate or incomplete data.
• Request deletion ("right to be forgotten") in certain cases.
• Object to or restrict processing in certain cases.
• Data portability for information you provided to us with consent or contract.
• Withdraw consent at any time where we rely on consent.

To exercise rights, contact us at info@domain. We may need to verify your identity before responding.

9. Children’s privacy

Our services are not directed to children under 16. We do not knowingly collect data from children. If you believe a child has provided us data, contact us to remove it.

10. Security

We apply technical and organisational measures appropriate to the risk, including encryption in transit (HTTPS), access controls, and staff confidentiality obligations. No method of transmission or storage is 100% secure.

11. Third‑party links

Our website may contain links to third‑party sites. We are not responsible for their privacy practices. We encourage you to read their policies.

12. Complaints

If you have concerns, please contact us first. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO): ico.org.uk.

13. Changes to this policy

We may update this policy to reflect changes in laws or our practices. The revised version will be posted here with an updated date.