PRIVACY POLICY
Soul Wardrobe Ltd | SoulWardrobe.com
Last updated: March 2026
1. Who We Are
This website is operated by Kerry Wilde, Founder of Soul Wardrobe Ltd (referred to in this policy as "I", "me", or "my"). Soul Wardrobe Ltd is a company registered in England and Wales.
Your privacy is important to me. This Privacy Policy explains what personal data I collect from you, why I collect it, how I use it, and your rights in relation to that data. It is written in accordance with:
• The UK General Data Protection Regulation (UK GDPR)
• The Data Protection Act 2018
• The Privacy and Electronic Communications Regulations 2003 (PECR)
• Any other applicable UK and England & Wales data protection legislation
I encourage you to read this policy carefully. If you have any questions about the data I hold about you, please contact me.
2. Data Controller
For the purposes of UK GDPR, the data controller is:
Kerry Wilde
Soul Wardrobe Ltd
England and Wales
If you wish to exercise any of your rights or have a query regarding your personal data, please contact me directly via the contact page on this website.
3. What Personal Data I Collect
The personal data I collect depends on how you interact with my website and services. This is broken down in detail in the sections below, but generally includes:
• Name and email address (for coaching clients, course buyers, and newsletter subscribers)
• Postal address (for coaching and course purchases)
• Payment information (processed securely via PayPal or Stripe — I do not store card details)
• IP address and browsing data (for website analytics via Squarespace)
4. Legal Basis for Processing
Under UK GDPR, I must have a lawful basis for processing your personal data. Depending on the context, I rely on the following:
• Contract performance — to deliver coaching, courses, or other services you have purchased
• Legitimate interests — to analyse website traffic and improve my services
• Consent — to send you marketing emails (newsletter subscribers only)
• Legal obligation — to retain financial/tax records for at least 6 years as required by UK law
5. Coaching & Online Courses
What I Collect
If you engage with any coaching services or purchase an online course, I collect:
• Full name
• Email address
• Postal address
Where It Is Stored
This data is stored securely within the following platforms: Squarespace, Flodesk, Satori, and Podia.
Why I Need It & How I Use It
I need this basic personal data to contact you and deliver your product or service. You will not be added to any marketing lists unless you have separately opted in. If you are also an email subscriber, please see Section 6 below.
How Long I Keep It
Under UK tax law (HMRC requirements), I am required to retain basic personal data — including your name, address, and contact details — for a minimum of 6 years from the end of the relevant tax year. After this period, your data will be deleted unless you have requested otherwise or unless I am required by law to retain it for longer.
You have the right to be forgotten. Please contact me if you would like your data destroyed (subject to any legal retention obligations).
6. Newsletter Subscribers
What I Collect
When you opt in to my email list, I collect your name and email address. This data is held in Flodesk.
Why I Need It & How I Use It
I use this information to send you regular email communications about my business, brand, resources, and infrequent marketing about new products and services. Your consent is obtained at the point of sign-up, and you can withdraw it at any time.
How Long I Keep It
Your data will be retained until you unsubscribe or request deletion. Every marketing email includes an unsubscribe link. You may also contact me directly to be removed from the list and have your data destroyed.
7. Website Visitors
What I Collect
When you visit this website, I may automatically collect your IP address, approximate location, pages visited, and browsing behaviour. This data is collected and stored by Squarespace.
Why I Need It & How I Use It
This data is used solely to analyse general web traffic trends and improve the website experience. It is not used to identify you as an individual. Your IP address is encoded and not visible to me personally.
How Long I Keep It
This data is retained in accordance with Squarespace's data retention policies. You may contact me to request deletion of any personal data I hold in connection with your website use.
8. Cookies
This website uses cookies to improve your browsing experience and enable site functionality. Cookies are small files placed on your device when you visit a website.
I use the following types of cookies:
• Essential cookies — required for the website to function correctly
• Analytics cookies — to understand how visitors interact with the website (via Squarespace analytics)
• Marketing cookies — where third-party tools (e.g. Flodesk) may set cookies if you interact with embedded forms
Where required by PECR, your consent will be sought before non-essential cookies are set. You can manage or withdraw cookie consent at any time via your browser settings.
9. Sharing Your Data
Under no circumstances is your data ever sold or rented to a third party.
I may share your data in the following limited circumstances:
• With service providers and platforms that assist in the delivery of my products and services, including: PayPal, Squarespace, Podia, Stripe, Flodesk, and Satori. Each of these providers is required to handle your data securely and in accordance with UK GDPR.
• With third parties where disclosure is required or advisable to comply with the law, to enforce my terms and conditions, or to protect the rights, property, or safety of myself or others. This may include sharing information with other organisations for fraud prevention or credit risk purposes.
Where data is shared with third-party processors, I ensure that appropriate data processing agreements are in place in line with UK GDPR requirements.
10. International Data Transfers
Some of my third-party service providers (such as Flodesk, Podia, and Stripe) may process your data outside the UK or European Economic Area (EEA). Where this occurs, I ensure that appropriate safeguards are in place — such as Standard Contractual Clauses (SCCs) or the UK's International Data Transfer Agreement (IDTA) — to protect your data to the same standard required under UK GDPR.
11. Your Rights
Under UK GDPR and the Data Protection Act 2018, you have the following rights in relation to your personal data:
• Right of access — you may request a copy of the personal data I hold about you (a Subject Access Request)
• Right to rectification — you may request that any inaccurate or incomplete data be corrected
• Right to erasure ('right to be forgotten') — you may request that I delete the data I hold about you, subject to any legal retention obligations
• Right to restrict processing — you may request that I limit how I use your data
• Right to data portability — you may request your data in a structured, machine-readable format
• Right to object — you may object to processing based on legitimate interests or for direct marketing purposes
• Right to withdraw consent — where processing is based on your consent (e.g. email marketing), you may withdraw it at any time without affecting the lawfulness of prior processing
To exercise any of these rights, please contact me. I will respond within one calendar month, as required by UK GDPR. There is no charge for making a request.
12. Data Security
I take the security of your personal data seriously. All third-party platforms used (Squarespace, Flodesk, Stripe, PayPal, Satori, and Podia) operate to industry-standard security practices including encryption and secure data storage. I do not store payment card details myself — these are handled entirely by Stripe and/or PayPal.
In the unlikely event of a data breach that poses a risk to your rights and freedoms, I will notify the Information Commissioner's Office (ICO) within 72 hours as required by UK GDPR, and will inform affected individuals where required.
13. Complaints & the ICO
If you believe the information I hold about you is incorrect, or if you are unhappy with how I have handled your personal data, please contact me in the first instance and I will investigate the matter.
If you are not satisfied with my response, or if you believe I am processing your personal data in a manner that is not compliant with the law, you have the right to lodge a complaint with the UK's supervisory authority:
Information Commissioner's Office (ICO)
Website: www.ico.org.uk
Helpline: 0303 123 1113
14. Changes to This Policy
I may update this Privacy Policy from time to time to reflect changes in the law or my data practices. Any updates will be published on this page with a revised 'Last updated' date. I encourage you to review this policy periodically.
Soul Wardrobe Ltd | Kerry Wilde, Founder | Last updated: March 2026