Brown Programs

PRIVACY POLICY & COOKIES  

Brown Dote Studio

Effective Date: 1 January 2026

This Privacy Policy explains how Brown Dote Studio (“we”, “us”, “our”) collects, uses and protects your personal data when you:

    •    Visit our website

    •    Enrol in Magnetic Client Conversion Ecosystem™

    •    Purchase Client Conversion Analysis™

    •    Enrol in Content for Sales™

    •    Engage in 1:1 strategy services

This policy complies with:

    •    UK GDPR

    •    Data Protection Act 2018

    •    Privacy and Electronic Communications Regulations 2003 (PECR)

1. Data Controller

Brown Dote Studio is the Data Controller responsible for your personal data.

Contact:

Email: [email protected]

Address: London Islington , United Kingdom, N7 9DF

2. Personal Data We Collect

We may collect the following categories of personal data:

    •    Name

    •    Email address

    •    Billing and transaction information

    •    Payment details (processed securely via third-party processors)

    •    IP address

    •    Device and browser information

    •    Website usage data

    •    Course engagement data

    •    Coaching session notes

    •    Communications and correspondence

    •    Marketing preferences

3. How We Use Your Data

We process personal data to:

    •    Deliver Magnetic Client Conversion Ecosystem™

    •    Provide access to Client Conversion Analysis™

    •    Deliver Content for Sales™

    •    Provide 1:1 strategy services

    •    Process payments

    •    Manage customer accounts

    •    Send service updates and administrative emails

    •    Send marketing communications (where consent is given)

    •    Improve our website and programmes

    •    Comply with tax and legal obligations

4. Lawful Basis for Processing

Under UK GDPR, we rely on:

    •    Contractual necessity – to deliver purchased services

    •    Consent – for marketing communications and non-essential cookies

    •    Legitimate interests – business improvement, fraud prevention, security

    •    Legal obligation – accounting, tax and regulatory compliance

You may withdraw consent at any time where processing is based on consent.

5. Data Retention

We retain personal data only as long as necessary:

    •    Transaction records: up to 6 years (tax compliance)

    •    Coaching records: as necessary for service delivery

    •    Course accounts: for the duration of access rights

    •    Marketing data: until consent is withdrawn

    •    Analytics data: in accordance with provider retention settings

6. Data Sharing

We may share your data with trusted third parties including:

    •    Payment processors

    •    Course hosting platforms

    •    Email marketing providers

    •    CRM systems

    •    Website hosting providers

    •    Analytics providers

    •    Accountants and legal advisers

All processors are required to handle data securely and in compliance with UK data protection law.

7. International Transfers

Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place, including:

    •    UK adequacy regulations

    •    Standard Contractual Clauses

    •    Other approved transfer mechanisms

8. Cookies & Tracking Technologies

This section explains how we use cookies and similar technologies in accordance with PECR and UK GDPR.

8.1 What Are Cookies?

Cookies are small text files placed on your device when you visit a website.

They help websites function properly, analyse performance, remember preferences and deliver marketing content.

Cookies may collect:

    •    IP address

    •    Device type

    •    Browser type

    •    Pages visited

    •    Time spent on pages

    •    Referral source

Some cookies process personal data.

8.2 Types of Cookies We Use

We use the following categories:

(A) Strictly Necessary Cookies

These cookies are essential for the website to function.

Examples include:

    •    Security cookies

    •    Session management

    •    Login authentication

    •    Payment processing.

Purpose: Enable core website functionality.

Legal basis: Legitimate interest (consent not required under PECR).

(B) Analytical / Performance Cookies

These cookies help us understand how visitors use our website.

They may collect:

    •    Traffic data

    •    Page performance

    •    User behaviour metrics.

We may use analytics providers (such as Google Analytics or similar services).

Purpose: Improve website performance and user experience.

Legal basis: Consent.

(C) Functional Cookies

These allow the website to remember:

    •    Login details

    •    User preferences

    •    Course access settings.

Purpose: Enhance usability and personalisation.

Legal basis: Consent (unless strictly necessary).

(D) Marketing / Targeting Cookies

These may be used to:

    •    Deliver relevant advertisements

    •    Measure advertising performance

    •    Retarget website visitors

They may be placed by social media platforms or advertising networks.

Purpose: Personalised advertising and marketing analytics.

Legal basis: Consent.

8.3 Third-Party Cookies

Some cookies are placed by third-party providers such as:

    •    Payment processors

    •    Course platforms

    •    Analytics providers

    •    Email marketing platforms

    •    Social media platforms

We do not directly control third-party cookies. Their use is governed by their own privacy policies.

8.4 How We Obtain Consent

When you first visit our website, you will see a cookie banner that:

    •    Clearly explains our use of cookies

    •    Allows you to accept or reject non-essential cookies

    •    Provides granular choices (e.g. analytics, marketing)

    •    Does not pre-tick consent boxes.

Non-essential cookies are not placed until you provide affirmative consent.

You may withdraw or adjust consent at any time using our cookie settings link.

8.5 Duration of Cookies

Cookies may be:

    •    Session cookies – deleted when you close your browser

    •    Persistent cookies – remain for a defined period or until deleted

Typical retention ranges from 30 days to 24 months, depending on the provider.

8.6 Managing Cookies

You can control cookies by:

    •    Using our cookie preference tool

    •    Adjusting your browser settings

    •    Deleting cookies via browser controls

Please note: disabling strictly necessary cookies may affect website functionality.

9. Data Security

We implement appropriate technical and organisational security measures to protect personal data.

However, no system can be guaranteed completely secure.

10. Your Rights

Under UK GDPR, you have the right to:

    •    Access your personal data

    •    Rectify inaccurate data

    •    Request erasure

    •    Restrict processing

    •    Object to processing

    •    Data portability

    •    Withdraw consent at any time

To exercise your rights, contact:

[email protected]

11. Complaints

If you are dissatisfied with how we handle your data, you may:

    1.    Contact us directly; or

    2.    Lodge a complaint with the Information Commissioner’s Office (ICO):

Website: https://ico.org.uk

Telephone: 0303 123 1113

12. Updates to This Policy

We may update this Privacy Policy from time to time to reflect:

    •    Legal changes

    •    Regulatory guidance

    •    Changes to our services

The latest version will always be available on our website.