GDPR Compliance Policy
Fox Paradox Limited (trading as Stoic Training)
Effective Date: [Insert Date]

1. Introduction

Fox Paradox Limited (“Company”, “we”, “us”, or “our”), trading as Stoic Training, is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This GDPR Compliance Policy explains how we collect, process, store, and protect your personal data when you use our services or visit our website.

2. Principles of Data Processing

We adhere to the following GDPR principles when processing personal data:

• Lawfulness, Fairness, and Transparency – We process data legally, fairly, and transparently.
• Purpose Limitation – We only collect data for specified, explicit, and legitimate purposes.
• Data Minimization – We collect only the necessary data for processing.
• Accuracy – We ensure data accuracy and update it where necessary.
• Storage Limitation – We retain data only for as long as necessary.
• Integrity and Confidentiality – We implement appropriate security measures to protect data.

3. What Personal Data We Collect

We may collect the following types of personal data:

• Identity Data – Name, date of birth, contact details (email, phone, address).
• Business Data – Company name, job title, and industry.
• Financial Data – Payment and transaction details when purchasing our services.
• Technical Data – IP address, browser type, and cookies.
• Health & Wellbeing Data (where applicable) – If voluntarily provided in relation to our services.

4. How We Use Your Data

We process personal data for the following purposes:

• To provide our services and products.
• To process payments and fulfill transactions.
• To communicate updates, offers, and service-related messages.
• To comply with legal obligations and prevent fraud.
• To improve our website and services through analytics.

5. Lawful Basis for Processing

Under GDPR Article 6, we process personal data under one or more of the following lawful bases:

• Consent – You have given clear consent for us to process your data.
• Contractual Necessity – Processing is necessary for a contract you have with us.
• Legal Obligation – We are required to process data for compliance with legal obligations.
• Legitimate Interests – Processing is necessary for our legitimate business interests, provided it does not override your rights.

6. How We Protect Your Data

We take appropriate security measures, including:

• Encryption and secure data storage.
• Access controls to limit access to personal data.
• Secure payment processing through third-party providers.

7. Data Sharing and Transfers

We do not sell or rent personal data. However, we may share your data with:

• Service Providers – Third-party payment processors, cloud storage, and marketing platforms.
• Legal Authorities – If required by law or to protect rights and prevent fraud.
• Business Transfers – In case of a merger, acquisition, or restructuring.

Some data may be transferred outside the EEA (European Economic Area) where necessary. In such cases, we ensure adequate safeguards, such as Standard Contractual Clauses (SCCs) or reliance on providers certified under frameworks like UK GDPR adequacy decisions.

8. Your GDPR Rights

Under GDPR Articles 15-22, you have the following rights:

• Right to Access – Request a copy of your personal data.
• Right to Rectification – Correct inaccurate or incomplete data.
• Right to Erasure (“Right to be Forgotten”) – Request deletion of your data where legally applicable.
• Right to Restrict Processing – Limit how we use your data in certain circumstances.
• Right to Data Portability – Request transfer of your data to another service.
• Right to Object – Object to processing based on legitimate interests or direct marketing.
• Rights Related to Automated Decision-Making – Challenge automated profiling that affects you legally or significantly.

To exercise these rights, contact us at [Insert Contact Email]. We will respond within one month of your request.

9. Data Retention

We retain personal data only as long as necessary for business, legal, or regulatory purposes. When data is no longer needed, we securely delete or anonymize it.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance user experience, analyze website traffic, and improve services. You can manage cookie preferences via browser settings.

11. Complaints and Contact Information

For any questions about this GDPR or your data, please contact us at: Fox Paradox Limited (trading as Stoic Training)
7 Edison Buildings, CV1 4JA
connect@stoic.training