PRIVACY POLICY
PRIVACY POLICY
Last Updated: May 2026
Applies to: www.rseven.co.uk
1. INTRODUCTION
This Privacy Policy explains how RSEVEN “we”, “us”, or “our”) collects, uses, stores, shares, and protects personal data when you visit or use our website, submit a form, subscribe to communications, purchase a product or service, book a call, access digital content, register for an event, or otherwise interact with us.
This website is hosted on Squarespace and may use Squarespace tools for website hosting, forms, analytics, ecommerce, payments, email campaigns, scheduling, member areas, digital products, or other website functions.
This Privacy Policy applies to all visitors, users, customers, subscribers, clients, prospective clients, event participants, course participants, and anyone who interacts with us through the website or related services.
We are committed to handling personal data responsibly and in accordance with applicable privacy and data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”), applicable Cyprus data protection law, and any other laws that may apply depending on your location.
By using this website, you are informed about how your personal data is processed as described in this Privacy Policy. Where consent is required, we will request it separately.
2. WHO WE ARE
For the purposes of GDPR and applicable data protection laws, [RSEVEN / full legal company name] is the data controller responsible for the personal data collected directly through this website and our business activities.
Business name: RSEVEN
Registered address: Evagoras Ave. Evagoras Building, 4th floor, 1066, Nicosia, Cyprus
Email: rseven@rseven.co.uk
Website: www.rseven.co.uk
If you have any questions about this Privacy Policy or how we handle your personal data, you may contact us using the details above.
3. PERSONAL DATA WE MAY COLLECT
The personal data we collect depends on how you interact with the website and our services.
A. Information You Provide Directly
We may collect personal data that you voluntarily provide, including:
Full name
Email address
Phone number
Company name
Job title or professional role
Country or location
Website or social media profile
Billing address
Shipping address, where applicable
VAT number or tax details, where applicable
Payment and transaction information
Login or account details for member areas, courses, or digital products
Messages sent through contact forms, email, scheduling tools, intake forms, diagnostic forms, application forms, surveys, or chat functions
Information shared during advisory enquiries, diagnostic conversations, client onboarding, events, workshops, courses, or other business interactions
Any additional information you choose to provide when communicating with us
Please do not submit special category data, highly sensitive personal information, or unnecessary confidential information through website forms unless specifically requested.
B. Information Collected Automatically
When you visit the website, certain information may be collected automatically through Squarespace, cookies, analytics tools, security tools, and similar technologies.
This may include:
IP address
Browser type and version
Device type
Operating system
Pages visited
Time spent on the website
Referring URLs
Date and time of visit
Approximate location
Interaction with website content
Cookie data and similar tracking technologies
Squarespace analytics data
Checkout, cart, or ecommerce interaction data, where applicable
C. Information from Third Parties
We may receive limited personal data from third-party tools and platforms connected to the website or our business operations, including:
Squarespace
Payment processors such as Stripe, PayPal, Squarespace Payments, Apple Pay, Google Pay, and other providers available at checkout
Email marketing platforms
Scheduling tools
Course, membership, or digital product platforms
Analytics providers
CRM systems
Accounting and invoicing tools
Social media platforms, where you interact with our content
Shipping or fulfilment providers, where physical products are purchased
4. HOW WE COLLECT YOUR DATA
We may collect personal data when you:
Visit or browse the website
Submit contact, enquiry, diagnostic, intake, application, or booking form
Book a call, consultation, advisory session, workshop, or event
Subscribe to a newsletter or email list
Download free or paid resource
Purchase a service, digital product, course, membership, event ticket, template, framework, or physical product
Create an account or access a member area
Communicate with us by email or through the website
Interact with cookies, analytics, tracking technologies, or embedded tools
Engage with us through social media or third-party platforms
5. WHY WE USE YOUR DATA
We may use your personal data for the following purposes:
To respond to enquiries
To assess whether there is a suitable fit for advisory work
To book, manage, and deliver calls, meetings, consultations, workshops, events, and services
To prepare proposals, contracts, engagement letters, invoices, receipts, and related business documents
To provide advisory services, strategic work, business support, courses, memberships, digital products, downloads, events, or other offers
To process payments and manage transactions
To deliver digital products, access links, course materials, member area access, templates, downloads, or other purchased content
To fulfil orders and ship physical products, where applicable
To manage client communication, onboarding, and service delivery
To send newsletters, business insights, event invitations, resources, product updates, service updates, or relevant communications
To improve website content, performance, user experience, and commercial effectiveness
To analyze website traffic and visitor behavior
To maintain website security and prevent fraud, misuse, or unauthorized access
To comply with legal, tax, accounting, regulatory, and contractual obligations
To protect our rights, business, clients, users, website, and legitimate commercial interests
6. LEGAL BASIS FOR PROCESSING UNDER GDPR
Where GDPR applies, we process personal data only where we have a lawful basis to do so.
A. Contract
We may process your personal data where necessary to:
Provide the service you requested
Deliver advisory work, consultations, workshops, courses, digital products, memberships, events, or purchased content
Process payments and transactions
Send confirmations, receipts, invoices, access links, or service information
Manage client relationships and contractual obligations
Take steps before entering into a contract
B. Legal Obligation
We may process your personal data where required to:
Issue and retain invoices
Maintain tax and accounting records
Comply with VAT, financial, legal, regulatory, and reporting obligations
Respond to lawful requests from public authorities, regulators, courts, or tax authorities
C. Legitimate Interests
We may process your personal data where necessary for legitimate business purposes, provided your rights and interests do not override those interests.
This may include:
Responding to business enquiries
Managing client and prospective client relationships
Improving website functionality and service quality
Understanding interest in our services, products, or content
Protecting website security
Preventing fraud or misuse
Keeping appropriate business records
Communicating with existing clients, contacts, or business relationships where permitted by law
D. Consent
We may rely on your consent when you:
Subscribe to a newsletter
Opt in to marketing communications
Accept non-essential cookies
Submit optional forms, surveys, or feedback
Agree to receive specific communications or resources
You may withdraw your consent at any time.
7. ADVISORY SERVICES, DIAGNOSTIC CALLS, AND CLIENT WORK
When you contact us about advisory services, book a diagnostic conversation, submit an intake form, or become a client, we may collect and process personal and business information necessary to assess fit, define the scope of work, prepare proposals, deliver services, manage communication, issue invoices, and comply with legal and accounting obligations.
This may include:
Your name, role, and contact details
Company information
Business context
Commercial, strategic, operational, financial, or market information you choose to share
Meeting notes
Project documents
Proposals, contracts, invoices, and related correspondence
Information necessary to deliver advisory work or related services
Where separate contracts, engagement letters, confidentiality agreements, or non-disclosure agreements apply, those documents may also govern confidentiality and the handling of business information.
8. ECOMMERCE, PAYMENTS, AND TRANSACTIONS
If you make a purchase through the website, we may collect the information necessary to process the transaction, including:
Name
Email address
Billing address
Shipping address, where applicable
Company name and VAT number, where applicable
Purchase details
Transaction details
Payment confirmation
Payments may be processed through Squarespace Payments, Stripe, PayPal, Apple Pay, Google Pay, or other payment providers made available at checkout.
We do not store full payment card details on our own systems. Payment providers process payment information according to their own privacy and security policies.
By making a purchase, you may also be subject to the privacy policies and terms of the relevant payment provider.
9. DIGITAL PRODUCTS, ONLINE COURSES, DOWNLOADS, AND MEMBERSHIPS
If we offer digital products, online courses, memberships, member areas, templates, frameworks, downloads, recorded content, or similar resources, we may collect and process personal data to:
Create or manage your account
Provide access to purchased content
Deliver downloads, resources, or materials
Send access links and product updates
Manage subscriptions, renewals, cancellations, or access periods
Provide customer support
Process payments and issue invoices
Track course progress, engagement, or completion, where applicable
Improve the learning or product experience
Comply with legal, tax, accounting, and consumer protection obligations
Please refer to the applicable Terms & Conditions, Refund Policy, or product-specific terms for details on cancellations, refunds, access periods, and digital product rights.
10. EVENTS, WORKSHOPS, WEBINARS, AND SESSIONS
If you register for an event, workshop, webinar, roundtable, session, or other activity, we may collect and use your personal data to:
Manage registration
Confirm attendance
Send event details and reminders
Provide access links or venue details
Issue invoices or receipts
Share relevant materials or follow-up communication
Manage participant communication
Improve future events and sessions
If an event is photographed, recorded, streamed, or shared publicly, we will aim to provide appropriate notice where required.
11. SHIPPING AND PHYSICAL PRODUCTS
If physical products are sold through the website, we may collect and process information necessary to fulfil the order, including:
Full name
Delivery address
Billing address
Email address
Phone number, where required for delivery
Order details
Tracking information
Delivery instructions
We may share relevant shipping information with delivery, logistics, fulfilment, customs, or courier providers only where necessary to complete the order.
12. INVOICING, ACCOUNTING, AND TAX RECORDS
When a transaction occurs, whether for a service, advisory engagement, consultation, course, event, digital product, membership, download, or physical product, we may issue an invoice or receipt.
This may include:
Your name or company name
Billing address
VAT number, where applicable and provided
Purchase details
Transaction amount
Date of transaction
Payment status
We may retain invoices, transaction records, order records, and financial records for at least seven years, or for any longer period required under applicable tax, accounting, regulatory, or legal obligations.
These records are held securely and are not shared except where necessary for accounting, tax, legal, audit, regulatory, payment, or business administration purposes.
13. NEWSLETTERS AND MARKETING COMMUNICATIONS
If you subscribe to our newsletter, request a resource, register for an event, or opt in to receive communications, we may use your email address and related information to send:
Newsletters
Business insights
Strategic resources
Event invitations
Product or service updates
Course, membership, or digital product announcements
Relevant commercial communications
We send marketing communications where we have your consent or where otherwise permitted by applicable law.
You can unsubscribe at any time by clicking the “unsubscribe” link in any email or by contacting us directly.
We do not sell or rent your email address to third parties.
We may use [Squarespace Email Campaigns / Mailchimp / Flodesk / ConvertKit / other platform — insert actual provider] to manage and send email communications.
Transactional emails, such as order confirmations, receipts, invoices, service updates, access links, and administrative messages, are not marketing emails and may still be sent where necessary.
14. COOKIES AND SIMILAR TECHNOLOGIES
This website uses cookies and similar technologies to operate, analyse, improve, and protect the website and user experience.
A cookie is a small text file placed on your device when you visit a website.
A. Essential Cookies
These are necessary for the website to function. They may support page navigation, security, checkout, forms, account access, shopping cart functionality, and other core features.
B. Analytics Cookies
These help us understand how visitors use the website, which pages are visited, how users arrive at the website, and how the website can be improved.
We may use Squarespace analytics, Google Analytics, or other analytics tools if enabled.
C. Functional or Preference Cookies
These may help remember your preferences and improve your website experience.
D. Marketing Cookies
These may be used to measure marketing campaigns, understand referral sources, or deliver relevant content through third-party platforms, if enabled.
E. Third-Party Cookies
Third-party providers, including payment processors, embedded tools, analytics platforms, video platforms, scheduling tools, or social media platforms, may set their own cookies according to their own privacy policies.
F. Your Cookie Choices
Where required, you will be given the option to accept, decline, or manage non-essential cookies through the website’s cookie banner or consent tool.
You can also manage or disable cookies through your browser settings. Disabling certain cookies may affect website functionality.
15. ANALYTICS AND WEBSITE PERFORMANCE
We may use Squarespace analytics and other analytics tools to understand website traffic, visitor behavior, content performance, and user experience.
This may include information such as:
Pages visited
Traffic sources
Country or approximate location
Device type
Browser type
Time spent on pages
Conversion activity
Form submissions
Checkout or product interaction, where applicable
We use this information to improve the website, content, services, offers, and user experience.
16. THIRD-PARTY SERVICES
We may use third-party providers to operate the website, manage payments, deliver services, send communications, provide analytics, manage bookings, host content, fulfil orders, or support our business operations.
These may include:
Squarespace for website hosting, forms, ecommerce, analytics, member areas, and related website tools
Stripe, PayPal, Squarespace Payments, Apple Pay, Google Pay, or other payment processors
Email marketing platforms
Scheduling or booking tools
CRM systems
Course, membership, or digital product platforms
Analytics providers
Accounting and invoicing tools
Shipping, fulfilment, courier, or logistics providers
Legal, accounting, tax, audit, IT, or other professional advisers
Social media platforms, where you interact with our content or embedded features
Where required, we use appropriate contractual, organisational, and technical safeguards when working with third-party providers.
Some providers may act as processors on our behalf. Others may act as independent controllers for their own processing activities.
You should review the privacy policies of third-party platforms you use or interact with.
17. INTERNATIONAL DATA TRANSFERS
Because this website is hosted on Squarespace and may use third-party digital tools, your personal data may be transferred to, stored in, or processed in countries outside Cyprus, the European Economic Area, or your country of residence.
This may include the United States or other countries where our service providers operate.
Where GDPR or similar laws apply, we aim to rely on appropriate safeguards for international transfers, such as adequacy decisions, the EU-U.S. Data Privacy Framework where applicable, Standard Contractual Clauses, UK transfer safeguards, or other lawful transfer mechanisms.
18. USERS OUTSIDE THE EUROPEAN UNION
This website may be accessed by users from outside Cyprus, the European Union, the European Economic Area, and the United Kingdom, including users in the United States and other jurisdictions.
If you access the website from outside Cyprus or the European Economic Area, you understand that your personal data may be processed in Cyprus, the European Union, the United States, or other countries where we or our service providers operate.
Depending on your location, you may have additional privacy rights under local laws. You may contact us using the details in this policy to exercise any applicable rights.
We do not sell personal data in the ordinary sense of selling contact lists or client information.
19. DATA RETENTION
We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.
Retention periods may vary depending on the type of data, the purpose of processing, and legal, tax, accounting, contractual, or regulatory requirements.
As a general guide:
Enquiry and contact form submissions may be retained for up to two years, unless a longer period is necessary for business, legal, or client relationship purposes.
Newsletter subscriber data is retained until you unsubscribe or request deletion, subject to suppression-list requirements.
Client records may be retained for the duration of the client relationship and for a reasonable period afterwards.
Contracts, invoices, tax records, accounting records, order records, and payment records may be retained for at least seven years, or longer where required by law.
Course, membership, and digital product access records may be retained for the duration of access and for a reasonable period afterwards.
Website analytics data is retained according to the settings of the relevant analytics provider.
Cookie data is retained according to the cookie type and the settings of the relevant provider.
After the relevant retention period, personal data will be deleted, anonymized, or securely archived where appropriate.
20. YOUR RIGHTS UNDER GDPR
If you are located in the European Union, European Economic Area, or another jurisdiction with similar data protection rights, you may have the right to:
Access the personal data we hold about you
Request correction of inaccurate or incomplete data
Request deletion of your personal data
Request restriction of processing
Object to certain processing
Object to direct marketing
Withdraw consent where processing is based on consent
Request data portability
Lodge a complaint with a data protection authority
To exercise your rights, contact us at:
Email: rseven@rseven.co.uk
We may need to verify your identity before responding to certain requests.
We aim to respond to valid requests within one month, unless a longer period is permitted under applicable law.
If you are in Cyprus, you may also contact the Office of the Commissioner for Personal Data Protection.
21. CHILDREN’S PRIVACY
This website and our services, advisory work, content, products, courses, memberships, and events are not directed at children under the age of 16.
We do not knowingly collect personal data from children.
If you believe that a child has provided personal data to us without appropriate consent, please contact us and we will take appropriate steps to delete the information.
22. DATA SECURITY
We take reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, disclosure, or destruction.
These measures may include:
SSL/TLS encryption across the website
Secure payment processing through third-party payment providers
Restricted access to personal data
Password-protected systems
Use of reputable service providers
Internal controls around data access and storage
Review of website, security, and data practices where appropriate
No method of internet transmission, email communication, website hosting, or digital storage is completely secure. We cannot guarantee absolute security, but we take data protection seriously and aim to use appropriate safeguards.
23. AUTOMATED DECISION-MAKING
We do not use your personal data for automated decision-making that produces legal or similarly significant effects.
24. CLIENT CONFIDENTIALITY, TESTIMONIALS, AND CASE STUDIES
We treat client and business information with care and discretion.
We will not publish client names, testimonials, identifiable case studies, or identifiable business information without permission, unless the information is already public or has been anonymized so that the client or business cannot reasonably be identified.
Where separate confidentiality agreements, non-disclosure agreements, contracts, or engagement letters apply, those documents may provide additional confidentiality terms.
25. THIRD-PARTY LINKS
This website may contain links to third-party websites, tools, payment providers, booking platforms, social media pages, event platforms, course platforms, or other external services.
We are not responsible for the privacy practices, content, security, or policies of third-party websites or platforms.
You should review the privacy policies of any third-party services before providing personal data to them.
26. SOCIAL MEDIA
If you interact with us on social media platforms, your interaction may be visible to others depending on your privacy settings and the platform’s own rules.
We may receive basic information from social media platforms when you follow, comment, like, share, message, or otherwise engage with our content.
Your use of social media platforms is governed by the privacy policies and terms of those platforms.
27. CHANGES TO THIS PRIVACY POLICY
We may update this Privacy Policy from time to time to reflect changes in our website, services, tools, business activities, legal obligations, or data practices.
When we update this policy, we will change the “Last Updated” date at the top of this page.
For significant changes, we may provide additional notice where appropriate.
28. CONTACT US
If you have any questions, concerns, or requests related to this Privacy Policy or how your personal data is handled, please contact us:
RSEVEN
Email: rseven@rseven.co.uk
Address: Evagoras Ave. Evagoras Building, 4th floor, 1066, Nicosia,Cyprus
Website: www.rseven.co.uk
SHORT FORM WORDING FOR WEBSITE FORMS
Contact or diagnostic forms:
By submitting this form, you agree that RSEVEN may use the information provided to respond to your enquiry, assess whether there is a suitable fit, and communicate with you in relation to your request. Your information will be handled in accordance with our Privacy Policy.
Newsletter forms:
By subscribing, you agree to receive email communications from RSEVEN You can unsubscribe at any time. Your information will be handled in accordance with our Privacy Policy.
Checkout:
Your personal, billing, and payment information will be used to process your order, deliver the product or service, issue invoices or receipts, and comply with legal, tax, and accounting obligations. Payment data may be processed by third-party payment providers.