Privacy policy.

Privacy Policy for Vengold Ltd

Effective date: 20 April 2026

Welcome to Vengold Ltd trading as VenGold Transformations (“we”, “us”, “our”).

We are committed to protecting your personal data and respecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and where applicable the Privacy and Electronic Communications Regulations (PECR).

1. Who We Are

Company Name: Vengold Ltd
Trading Name: VenGold Transformations
Registered Address: 244 James Green Way, Lichfield, England, WS13 7JZ
Email: transformations@vengold.co.uk

Vengold Ltd is the data controller responsible for your personal data.

2. The Personal Data We Collect

We may collect and process the following categories of personal data:

Identity Data

Name, username, date of birth, age, gender.

Contact Data

Email address, telephone number, billing address.

Health & Fitness Data (Special Category Data)

This includes information relating to your health and wellbeing, such as:

  • weight

  • height

  • body measurements

  • progress photographs

  • injury history

  • dietary habits

  • lifestyle information

  • fitness goals

  • medical conditions relevant to coaching

  • physical and mental wellbeing information voluntarily provided

This is special category data concerning health under Article 9 UK GDPR and receives additional protection. ()

Transaction Data

Payment details, invoices, subscription information, services purchased.

Technical Data

IP address, browser type, device type, operating system, app usage data.

Usage Data

Workout logs, nutrition logs, progress check-ins, website usage analytics.

Marketing Preferences

Communication preferences and consent choices.

3. How We Collect Your Data

We collect personal data through:

  • website forms

  • onboarding questionnaires

  • coaching check-in forms

  • app usage

  • direct email / phone communication

  • payment processors

  • analytics tools

  • embedded forms such as Typeform

4. Lawful Basis for Processing

We process your data under the following lawful bases:

Contract

To provide paid coaching services.

Legitimate Interests

To improve our services, maintain records, and operate our business.

Consent

For direct marketing communications where required.

Explicit Consent (Health Data)

For all health-related data, we rely on explicit consent under Article 9 UK GDPR. ()

You may withdraw consent at any time by contacting us.

Please note that withdrawal of consent may affect our ability to continue providing coaching services safely.

5. Marketing Communications

We may send service-related updates and, where permitted, marketing emails.

Where legally required, we will obtain your prior consent before sending marketing communications.

You may unsubscribe at any time by:

  • clicking unsubscribe in emails

  • contacting us directly

6. Cookies and Tracking

Our website uses cookies and similar technologies.

Where cookies are not strictly necessary, we obtain your consent before placing them on your device in accordance with PECR. ()

Examples may include:

  • analytics cookies

  • performance cookies

  • marketing pixels

See our Cookie Policy below.

7. Third-Party Providers

We may share data with trusted providers including:

  • website hosting providers

  • payment processors

  • analytics services

  • email marketing software

  • Typeform

  • coaching app providers

  • legal/accounting advisers

These providers act only on our instructions.

8. International Transfers

Some providers may process data outside the UK.

Where this occurs, we ensure appropriate safeguards such as:

  • UK adequacy regulations

  • International Data Transfer Agreements (IDTA)

  • provider contractual safeguards

9. Data Retention

We retain personal data only as long as necessary.

Typical retention periods:

  • client account and payment records: 6 years

  • health coaching records: up to 6 years after service ends

  • marketing consent records: until withdrawn

10. Your Rights

You have the right to:

  • access your data

  • correct your data

  • erase your data

  • restrict processing

  • object to processing

  • data portability

  • withdraw consent

You also have the right to complain to Information Commissioner's Office.

11. Children

Our services are not intended for persons under 18 without parental consent.

12. Automated Decision Making

We do not carry out automated decision-making or profiling with legal or similarly significant effects.