Privacy Policy

Last updated: 22 June 2026

1. Data controller

The data controller is James Bush Consulting Services, 35/1 Grodziska, 60-363 Poznań, Poland. For any privacy matter, email with the subject line Privacy.

2. What we collect

• Enrolment data: name, email, and billing details (payment card data is handled directly by Stripe — we do not store it).
• Waitlist & enquiry data: name and email when you ask to be notified of future sessions or contact us.
• Usage data: device, browser, and interaction data collected via cookies and analytics (see our Cookie Policy).

3. Why we use it & our lawful basis

• To deliver the Programme you purchased — performance of a contract.
• To send waitlist and marketing updates — your consent, which you can withdraw at any time.
• To run analytics and advertising — your consent (via the cookie banner) and our legitimate interests.
• To meet legal and accounting obligations — legal obligation.

4. Sharing & processors

We share data only with service providers acting on our behalf, including:

• Stripe — payment processing.
• HubSpot and HighLevel — CRM, waitlist, and email communications.
• Google and Meta — analytics and advertising measurement.
• Our website hosting provider.

Each processes data under appropriate agreements. We do not sell your personal data.

5. International transfers

Some of these providers process data outside the EEA. Where that happens, we rely on appropriate safeguards such as the EU Standard Contractual Clauses.

6. Retention

We keep enrolment records for as long as needed to provide the Programme and to meet legal/accounting requirements, and waitlist data until you unsubscribe or ask us to delete it.

7. Your rights

Under the GDPR you have the right to access, rectify, erase, restrict, or object to processing of your data, the right to data portability, and the right to withdraw consent at any time. To exercise these, email with the subject line Privacy. You also have the right to lodge a complaint with the Polish supervisory authority (the President of the Personal Data Protection Office, UODO).

8. Security

We use appropriate technical and organisational measures to protect your data. No method of transmission is 100% secure, but we work to safeguard your information.

9. Changes

We may update this policy and will post the revised version here with a new "last updated" date.