Privacy Policy

Last Updated: May 2026

Introduction

This Privacy Policy explains how cloudless-ranging collects, uses, stores, and protects your personal information when you use our website and services. We are committed to protecting your privacy and complying with applicable data protection laws including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Information We Collect

We collect the following types of personal information:

Information You Provide Directly

• Name and contact details (email address, postal address)
• Programme registration information including age group and preferences
• Payment information (processed securely through third-party payment processors)
• Communications you send to us via email or contact forms
• Information about the child or young person participating in programmes

Information Collected Automatically

• Browser type and version
• Operating system
• IP address
• Pages visited and time spent on pages
• Referring website addresses
• Cookie data (see our Cookies Policy for details)

How We Use Your Information

We use your personal information for the following purposes:

• To provide and deliver our financial education programmes
• To process registrations and payments
• To communicate with you about programmes, schedules, and updates
• To respond to your enquiries and provide customer support
• To improve our website and services
• To send programme-related information and educational resources
• To comply with legal obligations
• To protect against fraud and ensure security

Legal Basis for Processing

We process your personal information based on:

• Contractual necessity: To fulfil our obligations when you register for programmes
• Legitimate interests: To operate our business, improve services, and communicate effectively
• Legal compliance: To meet regulatory and legal requirements
• Consent: Where you have given explicit consent for specific processing activities

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your information with:

• Service providers: Third-party companies that help us operate our business (payment processors, email services, hosting providers)
• Legal authorities: When required by law or to protect our rights and safety
• Business transfers: In the event of a merger, acquisition, or sale of assets

All third-party service providers are required to maintain appropriate security measures and process data only as instructed.

Data Retention

We retain your personal information for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required by law. Specifically:

• Programme registration data: Retained for 7 years after programme completion
• Payment records: Retained for 7 years for accounting and tax purposes
• Marketing communications: Until you unsubscribe or request deletion
• Website analytics: Typically retained for 26 months

Your Rights

Under UK GDPR, you have the following rights:

• Right of access: Request a copy of your personal data
• Right to rectification: Request correction of inaccurate data
• Right to erasure: Request deletion of your data in certain circumstances
• Right to restrict processing: Request limitation of how we use your data
• Right to data portability: Receive your data in a structured, machine-readable format
• Right to object: Object to processing based on legitimate interests
• Right to withdraw consent: Withdraw consent for processing where applicable

To exercise any of these rights, please contact us at [email protected].

Security Measures

We implement appropriate technical and organisational security measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication
• Secure data storage facilities
• Staff training on data protection

Children's Privacy

While our programmes are designed for children and teenagers, we collect personal information from parents or legal guardians, not directly from minors. We do not knowingly collect personal information from children under 13 without parental consent.

International Data Transfers

Your personal information is primarily stored and processed within the United Kingdom. If we transfer data outside the UK, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. For detailed information, please see our separate Cookies Policy.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the updated policy on our website with a new "Last Updated" date. Your continued use of our services after changes constitutes acceptance of the updated policy.

Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Email: [email protected]
Address: 47 Whiteladies Road, Clifton, Bristol, BS8 2LR, United Kingdom

Supervisory Authority

If you believe we have not handled your personal information appropriately, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Website: https://cloudless-ranging.com
Telephone: 0303 123 1113