top of page

Privacy Policy

Last updated: 18 September 2025

​

Step 3 Social (operating under Enderby-on-Demand Ltd, “we,” “us,” “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share information when you use our website, purchase our products, or access our services.​

​

Information We Collect

​

We may collect and process the following personal data:

​

  • Identity & Contact Data: name, email address, billing address, phone number.

  • Payment Data: payment details processed securely via third-party providers (we do not store full card details).

  • Account & Training Access Data: login credentials, course progress, subscription history.

  • Marketing & Communications Data: your preferences for receiving marketing messages.

  • Usage Data: interactions with our site, content, and training programmes.

  • Technical Data: IP address, browser type, cookies, tracking pixels,

  • Google Analytics data.

​

How We Collect Data

​

  • Directly from you (when you purchase, register, or contact us).

  • Automatically through cookies, pixels, and analytics tools.

  • From third-party platforms we integrate with (e.g., payment processors, CRM, learning platforms).

​​

How We Use Your Data

​

We process your data for the following purposes:

​

  • To provide and deliver digital products and services you purchase.

  • To process payments securely.

  • To grant and manage access to our training programmes.

  • To maintain our database and improve our services.

  • To measure website usage and performance through analytics.

  • To personalise marketing and advertising using tracking tools.

  • To comply with legal obligations (tax, accounting, fraud prevention).​

​

Cookies & Tracking Technologies

​

We use cookies, tracking pixels, and similar technologies to:

  • Track website traffic and user behaviour (Google Analytics).

  • Measure and improve marketing campaigns.

  • Personalise your browsing experience.

For more details, see our Cookies Policy.

​

Sharing Your Data

​

We may share your data with:

​

  • Payment providers (e.g., Stripe, PayPal) for secure transactions.

  • Analytics & advertising platforms (e.g., Google, Meta) to run campaigns.

  • CRM & learning management systems for delivering our services.

  • Professional advisors and regulators when legally required.

​

We do not sell your personal data.

​

Data Storage & Security

​

  • Your data is stored securely on servers within the UK and/or EEA.

  • Some providers may transfer data outside the UK/EEA. In these cases, we ensure adequate protection (e.g., EU Standard Contractual Clauses).

  • We implement appropriate technical and organisational measures to safeguard your data.

​​

Data Retention

​

We only keep your data for as long as necessary:

​

  • Customer records: up to 6 years for legal/accounting purposes.

  • Marketing data: until you withdraw consent.

  • Training account data: as long as you maintain an active account.

​​

Your Rights

​

Under UK GDPR, you have the right to:

​

  • Access the personal data we hold about you.

  • Request correction of inaccurate data.

  • Request deletion (“right to be forgotten”).

  • Object to or restrict processing (including marketing).

  • Request data portability.

  • Withdraw consent at any time.

​​

To exercise your rights, contact: [insert contact email].

​

Payments & Digital Products

​

  • Payments are processed by third-party providers. We do not store full card details.

  • We use order information to deliver your digital products and manage your account access.

​

Changes to This Policy
​

We may update this Privacy Policy from time to time. Updates will be posted here with a new “last updated” date.

​

Complaints

​

If you are unhappy with how we use your data, please contact us first. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO): www.ico.org.uk.

bottom of page