Privacy Policy

This Privacy Policy explains how Julie Hendry ("I", "me", or "my") collects, uses, shares, and protects your personal data on juliehendry.com (the "Website"). As a UK-based psych-tech consulting service with potential users in the UK, EU, and US (including California), I am committed to complying with the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (EU GDPR), the Data Protection Act 2018, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and other relevant US state privacy laws where applicable. This policy covers data collected via newsletter signups (using Mailchimp), contact forms, blog interactions, digital downloads (e.g., PDFs), and consulting services like workshops and audits.

If you have questions or wish to exercise your data rights, contact me at info@juliehendry.com.

This policy is effective as of October 01, 2025. Last updated: October 01, 2025.

Summary of Key Points

This summary provides key points from our privacy notice, but you can find out more details about any of these topics by using our table of contents below to find the section you are looking for.

  • What personal information do we process? When you visit, use, or navigate the Website, we may process personal information depending on how you interact with it, the choices you make, and the products and features you use.

  • Do we process any sensitive personal information? We do not process sensitive personal information unless necessary with your explicit consent (e.g., in psych-tech consultations).

  • Do we receive any information from third parties? We may receive limited information from public databases, marketing partners, or social media platforms.

  • How do we process your information? We process your information to provide, improve, and administer services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent.

  • In what situations and with whom do we share personal information? We may share information in specific situations and with specific categories of third parties, such as Mailchimp for newsletters.

  • How do we keep your information safe? We have organizational and technical processes in place to protect your personal information, though no system is 100% secure.

  • What are your rights? Depending on your location (UK, EU, US), you have rights regarding your personal information, including access, deletion, and opt-out.

  • How do you exercise your rights? Contact me via email or the form on the Website. I will respond within the required timelines (e.g., 30 days for CCPA, 1 month for GDPR).

Table of Contents

  1. What Information Do We Collect?

  2. How Do We Process Your Information?

  3. What Legal Bases Do We Rely On to Process Your Personal Information?

  4. When and With Whom Do We Share Your Personal Information?

  5. What Is Our Stance on Third-Party Websites?

  6. Do We Use Cookies and Other Tracking Technologies?

  7. Is Your Information Transferred Internationally?

  8. How Long Do We Keep Your Information?

  9. How Do We Keep Your Information Safe?

  10. Do We Collect Information from Minors?

  11. What Are Your Privacy Rights?

  12. Controls for Do-Not-Track Features

  13. Do California Residents Have Specific Privacy Rights?

  14. Do We Make Updates to This Notice?

  15. How Can You Contact Us About This Notice?

  16. How Can You Review, Update, or Delete the Data We Collect from You?

1. What Information Do We Collect?

Personal Information You Disclose to Us

We collect personal information that you voluntarily provide, such as:

  • Name, email address, and contact details (e.g., for newsletter signups via Mailchimp or inquiries).

  • Payment information (e.g., for digital products like workshops or PDFs).

  • Other details shared in consulting engagements or forms.

Automatically Collected Information

When you visit the Website, we may collect:

  • Device and usage data: IP address, browser type, pages visited, time/date of visit.

  • Log and diagnostic data for error tracking.

We use essential cookies for functionality; no marketing cookies without consent.

Information from Third Parties

We may receive data from public sources or partners (e.g., LinkedIn for outreach), but not for profiling.

2. How Do We Process Your Information?

We process data to:

  • Manage newsletter subscriptions and send psych-tech insights (via Mailchimp).

  • Deliver digital products and consulting services.

  • Respond to inquiries and improve the Website.

  • Ensure security and comply with laws.

3. What Legal Bases Do We Rely On to Process Your Personal Information?

Under UK/EU GDPR:

  • Consent (e.g., for newsletters).

  • Contract (e.g., for services).

  • Legitimate interests (e.g., site improvements, balanced against your rights).

For US users, processing aligns with business purposes under CCPA.

4. When and With Whom Do We Share Your Personal Information?

We share data with:

  • Service providers like Mailchimp (US-based, with standard contractual clauses for transfers).

  • Payment processors (e.g., Stripe).

  • As required by law.

We do not sell personal information under CCPA definitions.

5. What Is Our Stance on Third-Party Websites?

Links to external sites (e.g., Mailchimp) are not under our control; review their policies.

6. Do We Use Cookies and Other Tracking Technologies?

We use essential cookies only. Manage via browser settings. No advanced tracking.

7. Is Your Information Transferred Internationally?

Data may transfer to the US (e.g., Mailchimp servers). For UK/EU users, we use safeguards like standard contractual clauses or adequacy decisions.

8. How Long Do We Keep Your Information?

  • Newsletter data: Until unsubscribe or 2 years inactivity.

  • Service data: Duration of contract + 6 years for legal purposes.

  • Deleted securely thereafter.

9. How Do We Keep Your Information Safe?

We use encryption, access controls, and secure servers. Report breaches to authorities as required.

10. Do We Collect Information from Minors?

Services are not for under-18s (or under-16s in some jurisdictions). We do not knowingly collect children's data; complies with COPPA.

11. What Are Your Privacy Rights?

Under UK/EU GDPR: Access, rectification, erasure, restriction, portability, objection, withdraw consent.

For all users: Contact me to exercise rights. Complain to ICO (UK), national authority (EU), or relevant US body.

12. Controls for Do-Not-Track Features

We honor DNT signals where applicable.

13. Do California Residents Have Specific Privacy Rights?

If CCPA applies (e.g., if we meet thresholds), California residents have:

  • Right to know categories of personal information collected, sources, purposes, shared parties.

  • Right to delete.

  • Right to opt-out of sale (though we do not sell data—link: [Do Not Sell My Personal Information]).

  • Right to non-discrimination.

Requests twice per year; verified response in 45 days (extendable).

14. Do We Make Updates to This Notice?

Updates posted here; continued use implies acceptance.

15. How Can You Contact Us About This Notice?

Email info@juliehendry.com.

16. How Can You Review, Update, or Delete the Data We Collect from You?

Contact me; use unsubscribe for newsletters.