SheRoars in Business
🔒 Privacy Policy
At SheRoars In Business, safeguarding your personal data is a foundational part of our commitment to you. As a UK-based, women-led community, we take the principles of the UK GDPR very seriously. This Privacy Policy details exactly what information we collect when you join our platform (from your Identity Data to your Community Content), how we use that data to provide your paid membership services, and who we share it with (such as our payment processors).
We believe in transparency. This policy outlines your legal rights regarding the data we hold, including your right to access and rectification. By becoming a valued member, you trust us with your professional details, and we are dedicated to protecting that trust while ensuring full compliance with data protection laws.
🔒 Privacy Policy
SheRoars In Business
Effective Date: 11/12/2025
Last Updated: 11/12/2025
1. Introduction and Who We Are
SheRoars Marketing Limited (“we,” “us,” or “our”) is the Data Controller responsible for processing your personal data in connection with the SheRoars In Business online community and services.
Company Name: SheRoars Marketing Limited
Company Number: 16249178
Registered Office: SheRoars Marketing, 463-465 High Street, Lincoln LN5 8JB
Contact for Data Matters: data.protection@sheroarsmarketing.co.uk
We are committed to protecting your privacy and handling your personal data in a transparent and lawful manner, in accordance with the UK GDPR and DPA 2018.
2. The Data We Collect About You
We only collect and process data that is necessary to provide you with the membership services. The categories of personal data we collect include:
| Category of Data | Specific Data Collected | Purpose of Processing |
| Identity Data | Name, business name, username, profile picture (if uploaded), basic directory listing information. | To create and manage your membership account, profile, and community access. |
| Contact Data | Billing address, email address, phone numbers. | To send membership updates, service announcements, and respond to your enquiries. |
| Financial Data | Payment card details (processed by a third-party processor, see Section 4), billing history, membership tier. | To process membership fees (Spark, Flame, Roar), issue invoices, and manage subscriptions. |
| Community Content | Posts, comments, direct messages, files uploaded to the social platform, skill swap listings. | To operate the community platform and facilitate networking and collaboration. |
| Technical Data | Internet Protocol (IP) address, login data, browser type, time zone setting, and operating system. | For security, troubleshooting, and website management (e.g., preventing fraud). |
| Usage Data | Information about how you use our website, courses, templates, and services (e.g., course completion status). | To improve our service offerings, content, and the user experience. |
3. How and Why We Use Your Data (Lawful Basis)
Under UK GDPR, we must have a lawful basis to process your personal data. We primarily rely on the bases of Contract and Legitimate Interests for our membership service:
| Purpose of Processing | Type of Data Used | Lawful Basis for Processing |
| To register you as a member and provide services | Identity, Contact, Financial, Community Content | Performance of a Contract (Membership Agreement/T&Cs) |
| To manage payments, fees, and charges | Financial, Identity, Contact | Performance of a Contract and Legal Obligation (e.g., tax/accounting requirements) |
| To administer and protect our business and website (including troubleshooting, data analysis, testing, system maintenance) | Technical, Usage | Legitimate Interests (for running our business, network security, preventing fraud) |
| To send you service updates, important policy changes, and event notifications | Contact | Legitimate Interests (running the service effectively and keeping members informed) |
| To send marketing communications about our other SheRoars services | Contact, Identity | Consent (where required, such as subscribing to a separate newsletter) |
4. Sharing Your Personal Data
We will never sell your personal data. We share your data only when necessary and with the following categories of third parties:
Payment Processors: Companies that securely handle your payment details (e.g., Stripe, PayPal) to process your membership fees. They act as Data Processors.
Technology Providers: Companies that provide the infrastructure for our online community platform and learning management system (LMS). They act as Data Processors.
Analytics Providers: Providers like Google Analytics to help us understand website usage (based on anonymised/pseudonymised data where possible).
Professional Advisers: Lawyers, accountants, and insurers who require the data to provide professional services to SheRoars Marketing Limited.
Third-Party Perks Providers: Your basic Identity and Membership Tier (but not Contact or Financial data) may be verified with community members offering perks to ensure eligibility, but only as strictly necessary to redeem the benefit.
5. International Transfers
As a UK company, we primarily store your data within the European Economic Area (EEA) or the UK. However, some of our third-party service providers (e.g., cloud services, analytics) may be based outside the UK/EEA.
Whenever we transfer your personal data out of the UK/EEA, we ensure a similar degree of protection is afforded to it by implementing at least one of the following safeguards:
Transferring the data to countries deemed to provide an adequate level of protection for personal data by the UK government.
Using Standard Contractual Clauses (SCCs) or International Data Transfer Agreements (IDTAs) which give personal data the same protection it has in the UK/EEA.
6. Data Security and Retention
Data Security
We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. We limit access to your personal data to employees, agents, contractors, and other third parties who have a business need to know.
Data Retention
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
Generally, we will retain data for the duration of your membership plus a period of up to six (6) years after your membership ends, to comply with UK tax law and to defend against any potential legal claims.
7. Your Legal Rights
Under the UK GDPR, you have the following rights regarding your personal data:
The right to be informed: The right to be informed about how we use your personal data (this Privacy Policy).
The right of access: The right to request a copy of the personal data we hold about you (Data Subject Access Request).
The right to rectification: The right to have any inaccurate or incomplete personal data corrected.
The right to erasure (‘right to be forgotten’): The right to request that we delete or remove your personal data where there is no compelling reason for its continued processing. Note: This right is not absolute and does not apply to data we are legally required to keep (e.g., payment records).
The right to restrict processing: The right to suspend the processing of your personal data.
The right to data portability: The right to request a transfer of your personal data to you or a third party in a structured, commonly used, machine-readable format.
The right to object: The right to object to the processing of your personal data where we are relying on a legitimate interest (or those of a third party).
How to Exercise Your Rights
If you wish to exercise any of the rights set out above, please contact us using the dedicated data protection email address in Section 1.
8. Making a Complaint
If you are unhappy with how we have used your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.
ICO Contact Details:
https://ico.org.uk/make-a-complaint/
We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.
