Blissness with Jo McCoy

Playing with High Frequency

Privacy Policy & GDPR Statement for Blissness

Introduction

At Blissness, we take your privacy seriously. This Privacy Statement explains how we collect, use, store, and protect your personal data in compliance with the General Data Protection Regulation (GDPR). We are committed to ensuring that your personal data is handled in a safe and secure manner.

Data Controller

Jo McCoy is the data controller for the purposes of GDPR. This means that we determine how your personal data is processed and for what purposes.

Data We Collect

We may collect and process the following types of personal data:

  • Mentoring Details: Personal data shared during mentoring sessions, recorded anonymously on paper and held in a locked file.
  • Contact Information: Email addresses collected through Mailchimp (soon to be MailerLite) for communication and marketing purposes.
  • Phone Numbers: For those who wish to be contacted via WhatsApp. We store phone numbers without any additional details.
  • Appointments: Information related to appointments, stored in Acuity Scheduling or another colleague’s booking system in case of collaboration.
  • Payments: Information about payments made through PayPal, Stripe, and financial records stored in QuickBooks.
  • Reports and Communication: Weekly reports sent via WhatsApp to piano pupils’ parents, including a photo of the paper report that is sent home with the child.

How We Use Your Data

Your personal data is used for the following purposes:

  • Communication: To provide services, such as mentoring, updates, or reports, including the use of email, WhatsApp, and other communication channels.
  • Appointments: To schedule and confirm your appointments via Acuity Scheduling or other collaborative booking systems.
  • Payments and Accounting: For processing payments through PayPal and Stripe, and for maintaining accounting records in QuickBooks.
  • Marketing: We may send you newsletters, updates, and other relevant communication via email. You can opt-out of marketing communications at any time.

Data Storage and Security

  • Paper Files: Personal mentoring details are stored in a locked file, ensuring security and confidentiality.  The person’s name is not in the documents about them.
  • Digital Records: Email addresses and other relevant data are stored securely through Mailchimp (soon to be MailerLite) for marketing and only email format in Gmail for one2one correspondence. We ensure that only authorised personnel have access to your data. 
  • Phone Numbers: Stored in our phone contacts for those who have agreed with no additional details attached.
  • Online Scheduling and Payment Systems: We use Acuity Scheduling, PayPal, Stripe, and QuickBooks to manage appointments, payments, and accounting, and these services store your data securely in compliance with GDPR.

Data Sharing

We do not share your personal data with any third parties, except where necessary for the operation of services (such as payment processing with PayPal or Stripe) or where required by law.

Retention of Data

We will retain your personal data for as long as necessary for the purposes outlined in this Privacy Policy, including for the duration of our business relationship. Once this is no longer needed, your data will be securely disposed of or anonymised. EFT/Mentoring clients data will be held for 7 years (with possible 1+ year buffer extension) as recommended. Art client data will be held anonymously in code form in paper format held in a locked file indefinitely as give context to existing art work and would only be released or deleted on request from the client. 

Retention of Data

We will retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including for the duration of our business relationship and any legal or regulatory obligations. Once your data is no longer required, it will either be securely disposed of or anonymised, depending on the context.

  • EFT/Mentoring Clients: Personal data will be held for a period of 7 years, with a possible 1+ year buffer extension, in line with industry recommendations and applicable legal requirements.
  • Art Client Data: Data related to your art will be stored on paper in an anonymous form,  kept in a locked file, and retained indefinitely. This data provides context for existing artwork. It will only be released or deleted upon client request. If you wish to access or delete your data, please contact us directly.

Data Transfers

We may store and process your data in cloud services that are based outside of the UK, such as PayPal, Stripe, Mailchimp, MailerLite, and QuickBooks. These services are GDPR-compliant and provide adequate protection for your personal data.

Updates to This Policy

We may update this Privacy Policy from time to time. Any changes will be communicated to you via email or other appropriate means. Please review this policy periodically to stay informed about how we protect your data.

Contact Us

If you have any questions or concerns about how we process your personal data, please contact us at info@jomccoy.com.