Legal
Policies for Bondlife Wellness Community
Last updated: 10 June 2026
Privacy Policy
Bondlife Wellness Community (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, store and protect personal information when you visit our website, register for an account, book events, use member services, participate in community features, or otherwise interact with our platform.
1. Who we are and how to contact us
Bondlife Wellness Community is a UK wellbeing and community organisation. For the purposes of applicable data protection law, we act as the data controller in respect of personal information processed through this platform unless stated otherwise.
If you have questions about this Privacy Policy or wish to exercise your data protection rights, contact us using the details on our Contact page or by email to the address published there. We will respond within one month, or inform you if we need longer in complex cases.
2. Scope of this policy
This policy does not apply to third-party websites linked from our platform. Those sites have their own privacy practices.
- Visitors browsing public pages (events, blog, services, contact).
- Registered members using dashboard features (bookings, profile, community, progress, resources, challenges, membership).
- Individuals submitting contact, corporate or coaching enquiries.
- Attendees at in-person or online events run by Bondlife Wellness Community.
3. Personal information we collect
We collect information you provide directly, information generated through your use of the service, and limited technical data.
- Identity and contact: name, email address, phone number, profile photo (optional).
- Account: login credentials (stored in hashed form), role, membership tier, notification preferences.
- Bookings and payments: event registrations, ticket/check-in references, payment status, Stripe transaction identifiers (we do not store full card numbers).
- Wellbeing and participation: optional goals, progress logs, challenge check-ins, community posts, comments and reactions you submit.
- Communications: messages sent via contact forms, support requests, and email correspondence.
- Technical: IP address, browser type, device identifiers, session cookies, and usage data where analytics are enabled.
4. How we use your information
We do not sell your personal information. We do not use automated decision-making that produces legal or similarly significant effects without appropriate safeguards and transparency.
- Provide, operate and improve the platform and member services.
- Process event registrations, memberships and payments.
- Send transactional communications (confirmations, reminders, password resets, support replies).
- Operate community features, challenges and resource libraries you choose to use.
- Send push notifications and email updates where you have opted in.
- Respond to enquiries and provide customer support.
- Maintain security, prevent fraud and enforce our Terms of Service.
- Comply with legal, regulatory and safeguarding obligations.
- Produce aggregated, anonymised statistics to improve our programmes.
5. Legal bases for processing (UK GDPR)
We process personal data only where we have a lawful basis:
- Contract: to register you, fulfil bookings, provide membership benefits and deliver services you request.
- Legitimate interests: to secure the platform, improve services, communicate about your account, and run our organisation — balanced against your rights.
- Legal obligation: where we must retain or disclose information (e.g. tax, safeguarding, court orders).
- Consent: for optional marketing, non-essential cookies/analytics, and push notifications where required. You may withdraw consent at any time.
6. Sharing and recipients
We share personal information only as necessary with trusted processors that help us operate the platform, under written agreements requiring appropriate security and use limitations.
We may disclose information to regulators, law enforcement or other parties when required by law or to protect the rights, property or safety of Bondlife Wellness Community, our members, staff or the public.
If Bondlife Wellness Community undergoes a merger, acquisition or asset sale, personal information may transfer subject to this policy or notice to you.
- Cloud hosting and database providers.
- Email delivery services (transactional email).
- Payment processor (Stripe) for paid events and subscriptions.
- File storage (e.g. AWS S3) for uploads and member resources.
- Push notification delivery (Expo) for mobile app notifications.
- Analytics providers (if enabled), such as product analytics tools.
- Professional advisers (legal, accounting) where necessary.
7. International transfers
Our processors may process data outside the UK. Where this occurs, we ensure appropriate safeguards are in place, such as UK International Data Transfer Agreements, adequacy regulations, or equivalent contractual protections approved under UK GDPR.
8. Retention
We retain personal information only for as long as necessary for the purposes described in this policy, including to satisfy legal, accounting, safeguarding and dispute-resolution requirements.
Typical retention periods include: active account data for the life of your account plus a reasonable period after closure; booking and payment records as required for tax and consumer law; contact enquiry records for up to 24 months unless a longer period is needed; server logs for a limited security period.
You may request deletion of your account subject to data we must retain by law or for legitimate business purposes (e.g. completed transaction records).
9. Security
We implement appropriate technical and organisational measures to protect personal information, including encryption in transit (HTTPS), access controls, hashed passwords, and secure session handling. No method of transmission or storage is completely secure; please use a strong password and keep login details confidential.
10. Your rights
Under UK GDPR you may have the following rights, subject to conditions and exemptions:
To exercise your rights, contact us via the Contact page. We may need to verify your identity before responding.
- Access — request a copy of personal information we hold about you.
- Rectification — correct inaccurate or incomplete information.
- Erasure — request deletion in certain circumstances.
- Restriction — limit processing in certain circumstances.
- Object — object to processing based on legitimate interests or for direct marketing.
- Data portability — receive certain data in a structured, machine-readable format.
- Withdraw consent — where processing is based on consent.
- Complaint — lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
11. Children
Our services are not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, contact us and we will take steps to delete it. Users aged 13–17 should use the platform with parental or guardian consent where required.
12. Marketing and communications
We may send service-related messages about your account, bookings or security without separate consent. Marketing emails and push notifications are sent only where permitted by law and your preferences. You can update notification settings in your account or unsubscribe using links in emails.
13. Cookies and similar technologies
We use cookies and similar technologies as described in our Cookie Policy. Essential cookies are required for sign-in and security.
14. Changes to this policy
We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page indicates when it was last revised. Material changes will be communicated via the platform or email where appropriate. Continued use after changes take effect constitutes acknowledgement of the updated policy.