Geoff Nicholson Privacy Policy
Privacy Policy for GN Coaching
Last Updated: 18 July 2025
1. Introduction
Welcome to the privacy policy for Geoff Nicholson (T/A GN Coaching) ("we", "us", or "our").
We are committed to protecting your personal data and respecting your privacy. This policy explains how we collect, use, and look after your personal data when you visit our websites (including geoffnicholson.co.uk, kickmediocrity.com, successiqpodcast.com), sign up for our free resources, purchase our products, or use our coaching services.
This policy has been written to comply with UK data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Controller Details:
Business Name: Geoff Nicholson (T/A GN Coaching)
Address: 9 Ryal Crescent, Medburn Park, Medburn, Northumberland, NE20 0BX, United Kingdom
Contact Email: info@geoffnicholson.co.uk
We are registered as a data controller with the UK Information Commissioner's Office (ICO).
2. The Data We Collect About You
We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:
Identity Data: Includes first name, last name.
Contact Data: Includes billing address, email address, and telephone numbers.
Financial Data: Includes payment card details and bank account information processed via our secure payment processors.
Transaction Data: Includes details about payments to and from you and other details of products and services you have purchased from us.
Technical Data: We do not use tracking cookies for analytics or advertising on our websites.
Marketing and Communications Data: Includes your preferences in receiving marketing from us and your communication preferences.
Client Session Data: Includes notes from coaching sessions, audio recordings of sessions, and transcriptions of those recordings. This may include sensitive information you choose to share with us regarding your personal and professional life.
3. How Your Personal Data is Collected
We use different methods to collect data from and about you including through:
Direct Interactions: You may give us your Identity and Contact Data by filling in forms on our website (e.g., when you sign up for "The Focus Reset"), by booking a call, or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you purchase a product or service.
Coaching Sessions: We collect Client Session Data directly from you during our 1-on-1 coaching sessions.
4. How We Use Your Personal Data
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
To Perform a Contract: Where we need to perform the contract we are about to enter into or have entered into with you (e.g., to provide you with coaching services).
With Your Consent: Where you have given us your explicit consent to do so (e.g., to send you marketing emails).
For Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
To Comply with a Legal Obligation: Where we need to comply with a legal or regulatory obligation.
Purposes for which we will use your personal data:
Purpose/Activity
Type of data
Lawful basis for processing
To register you as a new client
Identity, Contact
Performance of a contract with you
To process and deliver your order including managing payments
Identity, Contact, Financial, Transaction
Performance of a contract with you
To provide coaching services and manage our relationship with you
Identity, Contact, Client Session Data
Performance of a contract with you
To manage our business records and CRM
Identity, Contact
Necessary for our legitimate interests
To deliver marketing communications to you
Identity, Contact
Consent
To collect testimonials and social proof
Identity, Contact
Consent
5. Disclosures of Your Personal Data
We may have to share your personal data with the third-party service providers (known as "data processors") listed below to provide our services to you. We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
Heights Platform: To host and deliver our digital products and courses.
Brevo, Lemlist, SuiteDash: To send marketing and outreach emails.
Lemcal: To schedule appointments and meetings.
Salesflare & SuiteDash: To manage client and lead information in our CRM and business management systems.
Plaud.ai: To record and transcribe audio from coaching sessions.
Dubb: To send personalised video messages.
Endorsal: To collect and display client testimonials with your consent.
LinkedIn & Lead Delta: To manage professional networking contacts.
Stripe, PayPal, Monzo: To securely process payments.
We will not share your personal data with any other third party without your consent, unless required to do so by law.
6. Data Security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. We use strong, unique passwords for each service and enable two-factor authentication where available.
Access to your personal data is limited to those who have a genuine business need to know it.
7. Data Retention
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements.
Leads: If you have subscribed to our marketing emails, we will retain your data until you choose to unsubscribe. Upon unsubscribing, you will be removed from all marketing lists to ensure you are not contacted again.
Clients: We are required by UK law to keep records of all financial transactions for at least six years after the end of the relevant tax year. Client session notes and other data will be held for the duration of our coaching relationship and for a reasonable period thereafter, after which it will be securely deleted.
8. Your Legal Rights
Under UK data protection law, you have rights in relation to your personal data, including the right to:
Request access to your personal data.
Request correction of your personal data.
Request erasure of your personal data.
Object to processing of your personal data.
Request restriction of processing of your personal data.
Request the transfer of your personal data.
Right to withdraw consent.
You can exercise any of these rights at any time by contacting us at info@geoffnicholson.co.uk.
9. How to Contact Us
If you have any questions about this privacy policy or our privacy practices, please contact us at:
Email: info@geoffnicholson.co.uk
Postal Address: 9 Ryal Crescent, Medburn Park, Medburn, Northumberland, NE20 0BX, United Kingdom
You also have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.