Home About Us Certified Companies Letter from the Founder Coaching & Consulting Blog WComm How to Get Certified Join the Movement

WCORPORATION LTD

PRIVACY POLICY

www.wcorporation.org

Last updated: March 2026

 

1. Introduction

WCorporation Ltd ("WCorp", "we", "us", or "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect information about you when you visit our website at www.wcorporation.org or use any of our Services.

This policy is written in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. WCorp acts as the data controller for the personal data described in this policy.

Please read this policy carefully. By using our website or Services, you acknowledge that you have read and understood this Privacy Policy.

 

2. Who We Are

WCorporation Ltd is a company registered in England and Wales. We are an organisation dedicated to transforming workplace culture, advancing gender equity, and empowering women in business through certification programmes, consulting, coaching, and community initiatives.

Data Controller Contact:

Website: www.wcorporation.org

Email: [Insert Data Protection contact email]

 

3. What Personal Data We Collect

3.1 Data You Provide Directly

We collect personal data that you voluntarily provide when you:

  • Enquire about or apply for our certification programme;
  • Book consulting, coaching, or advisory services;
  • Register for an event, webinar, or workshop;
  • Subscribe to our newsletter or email communications;
  • Apply to join the Ambassador Programme;
  • Submit a contact form or enquiry on our website;
  • Make a purchase or payment through our website;
  • Interact with us on social media or at events.

The types of data collected include: full name, job title, company name, email address, phone number, billing address, payment information (processed securely by our payment provider), and any other information you choose to share with us.

3.2 Data Collected Automatically

When you visit our website, we may automatically collect certain technical data, including:

  • IP address and device identifiers;
  • Browser type and version;
  • Pages viewed, time spent on pages, and referring URLs;
  • Cookie data (see Section 9 on Cookies below).

This data is collected using cookies and similar tracking technologies to help us understand how our website is used and to improve your experience.

3.3 Data from Third Parties

We may receive data about you from third parties, including:

  • Our website platform provider (Kajabi);
  • Payment processors;
  • Social media platforms when you interact with our pages;
  • Event partners or co-organisers.

 

4. How We Use Your Personal Data

We use your personal data for the following purposes, based on the lawful basis indicated:

  • To provide and administer our Services, including certification, coaching, and consulting (Contractual necessity);
  • To process payments and manage your account (Contractual necessity);
  • To communicate with you about your enquiries or services (Contractual necessity / Legitimate interests);
  • To send you our newsletter and marketing communications, where you have subscribed or consented to receive them (Consent / Legitimate interests);
  • To improve our website, products, and services through analytics (Legitimate interests);
  • To comply with our legal and regulatory obligations (Legal obligation);
  • To detect and prevent fraud or misuse of our Services (Legitimate interests / Legal obligation).

 

5. Legal Bases for Processing

Under UK GDPR, we must have a lawful basis for processing your personal data. The legal bases we rely on are:

  • Contractual necessity: where processing is necessary to perform a contract with you or take pre-contractual steps at your request;
  • Legitimate interests: where we have a legitimate business interest that does not override your rights;
  • Consent: where you have given us clear, informed consent to process your data for a specific purpose;
  • Legal obligation: where processing is necessary to comply with a legal obligation.

Where we rely on consent as our lawful basis, you have the right to withdraw your consent at any time (see Section 10).

 

6. How We Share Your Personal Data

We do not sell your personal data. We may share your data with third parties only in the following circumstances:

  • Service providers: We share data with trusted third-party providers who assist in delivering our Services, including our website platform (Kajabi), payment processors, email marketing tools, and event platforms. These providers are bound by contractual obligations to process data only on our instructions and in accordance with applicable data protection law.
  • Professional advisers: We may share data with our legal advisers, accountants, or insurers where necessary.
  • Certified Companies and Publicly Listed Information: Company names and logos of certified organisations may be displayed publicly on our website with consent.
  • Legal requirements: We may disclose data where required by law, court order, or regulatory authority.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity, subject to equivalent protections.

 

7. International Data Transfers

WCorp's primary operations are based in the United Kingdom. Some of our third-party service providers may operate or store data outside the UK. Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR, such as adequacy decisions or Standard Contractual Clauses (SCCs).

 

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Our general retention periods are:

  • Client and certification records: 7 years from the end of the engagement, in accordance with our legal and accounting obligations;
  • Marketing contact records: Until you unsubscribe or withdraw consent, plus a further 12 months;
  • Event registration data: 2 years from the date of the event;
  • Website analytics data: Up to 26 months.

When your data is no longer required, it will be securely deleted or anonymised.

 

9. Cookies

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyse site traffic, and support our marketing activities. Cookies are small text files placed on your device when you visit our website.

We use the following types of cookies:

  • Strictly necessary cookies: Required for the website to function properly;
  • Analytics cookies: Help us understand how visitors use our site (e.g., via Google Analytics);
  • Marketing and preference cookies: Used to deliver relevant communications and remember your preferences.

You can manage or disable cookies through your browser settings or via our cookie consent banner when you first visit the site. Please note that disabling certain cookies may affect the functionality of our website.

 

10. Your Rights Under UK GDPR

You have the following rights in relation to your personal data:

  • Right of access: To request a copy of the personal data we hold about you;
  • Right to rectification: To request correction of inaccurate or incomplete data;
  • Right to erasure: To request deletion of your data in certain circumstances;
  • Right to restriction: To request that we limit our processing of your data;
  • Right to data portability: To receive your data in a structured, machine-readable format;
  • Right to object: To object to processing based on legitimate interests or for direct marketing purposes;
  • Right to withdraw consent: Where we rely on consent, to withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at the details in Section 13. We will respond to your request within one month of receipt. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at www.ico.org.uk.

 

11. Security

We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, disclosure, or destruction. Our website platform and payment systems employ industry-standard encryption and security protocols.

Despite our efforts, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but will notify you and the relevant authorities of any breach as required by law.

 

12. Children's Privacy

Our Services are directed at business professionals and are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us immediately.

 

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, Services, or legal obligations. The revised policy will be posted on our website with an updated "Last updated" date. We encourage you to review this policy periodically.

 

14. Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or how we handle your personal data, please contact us:

 

WCorporation Ltd

Website: www.wcorporation.org

Email: [email protected]

Registered in England and Wales

 

You also have the right to make a complaint to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues, at www.ico.org.uk or by calling 0303 123 1113.

 

 

© 2026 WCorporation Ltd. All rights reserved.