Privacy Policy

Effective date: 5th August 2025

Success In Schools Ltd (“we”, “us”, or “our”) is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, store, and share your information in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable UK data protection laws.

1. Who We Are

Success In Schools Ltd
Company number: 07141337
Registered address: Lambert Chapman 3 Warners Mill Silks Way, Braintree, Essex, CM7 3GB
Email: [email protected]
Data Protection Lead: Andrew Hall, Director

We are registered in England and Wales and provide consultancy, training, coaching, and related services to schools, MATs, and educational organisations.

2. What Personal Data We Collect

2.1 Data you provide directly

We may collect and process the following information when you interact with us:

  • Name

  • Job title and role

  • Work email address and telephone number

  • School/organisation details

  • Billing information necessary for invoicing (e.g., school name, finance contact details).

  • We do not collect or store any credit or debit card details. All card payments are handled securely by our payment processor, Stripe.

  • Course registration or event booking details

  • Enquiry information when you contact us

  • Feedback and evaluation responses

2.2 Data collected automatically

When you use our website or digital services, we may collect:

  • IP address

  • Browser type and device information

  • Cookies and usage analytics (e.g. pages visited)

2.3 Special category data

We do not intentionally collect special category data as part of our standard services.
If a client voluntarily shares sensitive information (e.g. in safeguarding-related consultancy), it is processed only where necessary and in line with strict confidentiality requirements.

3. How We Use Your Personal Data

We use your personal data for the following purposes:

  • To respond to enquiries and communicate with you

  • To provide consultancy, training, and related services

  • To manage bookings, registrations, invoicing, and payments

  • To deliver online and in-person training sessions

  • To provide follow-up resources and support

  • To send updates, newsletters, or marketing communications (where consent or legitimate interest applies)

  • To improve our services and understand user engagement

  • To meet legal, accounting, and regulatory obligations

We only process personal data when we have a lawful basis, including:

  • Performance of a contract

  • Legitimate interests

  • Consent

  • Legal obligation

4. Marketing Communications

We may send you information about services, events, or resources that we believe will be useful to you.
You can unsubscribe at any time by clicking the link in emails or contacting us directly.

We will never sell your data.

5. Payments and Card Information

We do not collect, store, or have access to your debit or credit card details at any time.

All payments are processed securely by our third-party payment provider, Stripe, which handles card information on our behalf in accordance with PCI-DSS requirements.

We only receive confirmation of payment (e.g. amount, time/date, transaction status).
We do not see or retain full card numbers, security codes, or other sensitive financial data.

For further information about Stripe’s privacy practices, please visit:
https://stripe.com/gb/privacy

6. Sharing Your Personal Data

We may share your data with trusted third parties, where necessary, including:

  • Payment processors (e.g., Stripe)

  • Webinar and online event platforms

  • Email marketing and communication platforms

  • IT service providers and cloud storage providers

  • Professional advisors (such as accountants)

All third parties are required to respect confidentiality and comply with UK data protection law.

7. Data Retention

We retain your personal data only for as long as necessary:

  • Enquiries: up to 12 months

  • Consultancy/training records: 6 years (for audit and contractual reasons)

  • Financial records: 6 years (legal requirement)

  • Mailing list data: until you unsubscribe

After these periods, data is securely deleted.

8. Your Rights Under UK GDPR

You have the following rights:

  • Access your personal data

  • Request correction of inaccurate information

  • Request deletion of your data (‘right to be forgotten’)

  • Object to processing

  • Restrict processing

  • Data portability

  • Withdraw consent at any time

To exercise these rights, contact us at [email protected].

9. Cookies

Our website(s) may use essential and analytics cookies. You can control cookies through your browser settings.

10. How We Protect Your Data

We use appropriate technical and organisational measures to protect your data, including:

  • Secure, encrypted storage

  • Access controls

  • Confidentiality obligations for staff and contractors

  • Secure networks and hosting environments

11. Children’s Data

Our services are intended for adults working in education.
We do not knowingly collect personal data from children.

12. Complaints

If you have concerns about how we use your data, please contact us first.
You also have the right to complain to the Information Commissioner’s Office (ICO):
www.ico.org.uk
Telephone: 0303 123 1113

13. Changes to This Policy

We may update this Privacy Policy from time to time.
Changes will be published on our website with an updated revision date.

Contact Us

If you have any questions, concerns or complaints about this Privacy Policy, please contact us: