Tracey Ash
Last updated: March 27, 2026
Ash Academy ("we", "us", "our") is committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information when you use our educational platform.
We collect the following personal data:
Name and email address (provided during registration)
Phone number and biography (optionally provided in your profile)
Payment and order history (processed via PayPal)
Course enrollment and learning progress data
Booking and session attendance records
Certificates earned
We use your personal data to:
Provide and manage your account and access to courses
Process payments and manage orders
Schedule and manage bookings and session reminders
Issue certificates of completion
Send transactional notifications (booking confirmations, reminders)
Send marketing communications (only with your explicit consent)
We process your data based on: contractual necessity (to provide our services), your consent (for marketing communications), and legitimate interest (to improve our platform).
We share data only with: PayPal (payment processing), Zoom (video sessions), and BunnyNet (video content delivery). We do not sell your personal data to third parties.
Under GDPR / UK data protection law, you have the right to:
Access your personal data — available via Settings → Export My Data
Rectify inaccurate data — update your profile in Settings
Erase your data — delete your account via Settings → Profile
Withdraw marketing consent — update your preferences in Settings
Lodge a complaint with the ICO (ico.org.uk) if you are unsatisfied
We retain your data for as long as your account is active. When you delete your account, all personal data is permanently removed. Payment records may be retained for legal/tax purposes as required by law.
We use encryption (HTTPS), hashed passwords, database-backed sessions, and two-factor authentication to protect your data.
For data protection queries, contact us at the email address provided on our website.