Privacy Policy

1. Who We Are

FounderUNLOCK is a trading name of Jay Staniforth Ltd, registered in England and Wales (Company Number: [Number]). We are the data controller for personal data collected through this website and the Founder100 program.

Data Controller: Jay Staniforth Ltd trading as FounderUNLOCK
Registered Address: [Address]
Email: founder@jaystaniforth.com
ICO Registration Number: [ICO Number]

2. What Data We Collect

We collect the following categories of personal data:

2.1 Data You Provide Directly

• Name, email address, and contact details (via booking forms and enquiry forms)
• Business information (company name, revenue details) provided during onboarding
• OPS-50 Diagnostic responses and assessment data
• Payment information (processed securely via our payment processor — we do not store full card details)
• Communications you send to us (emails, call recordings where consent is given)

2.2 Data Collected Automatically

• Website usage data (pages visited, time on page, referral source) via Google Analytics
• IP address and browser/device information
• Cookie data (see Section 8)

2.3 Data from Third Parties

• Booking data collected via Calendly when you schedule a discovery call
• Social media profile data if you connect via a social login (where applicable)

3. How We Use Your Data

We use your personal data for the following purposes:

• To deliver the Founder100 program and associated coaching services
• To process payments and manage your account
• To communicate with you about your programme and account
• To send relevant program updates, content, and coaching materials (where you have enrolled)
• To improve our website and services through analytics
• To comply with legal obligations
• To run targeted advertising campaigns on platforms including Meta (Facebook and Instagram) where you have provided consent or where we rely on legitimate interests (see Section 4)

4. Legal Basis for Processing

We rely on the following legal bases under UK GDPR:

• Contract: Processing necessary to deliver the Founder100 program and related services you have enrolled in
• Legitimate Interests: Analytics, service improvement, and direct marketing to existing clients and warm prospects — subject to your right to object
• Consent: Where required by law, for cookies, marketing emails to new contacts, and data sharing with advertising platforms
• Legal Obligation: Retention of financial records and compliance with applicable law

5. Data Retention

We retain your data for the following periods:

• Client coaching records: 3 years from end of engagement
• Financial and payment records: 7 years (as required by HMRC)
• Marketing data (where consent-based): Until you withdraw consent or opt out
• Analytics data: As per Google Analytics data retention settings (default: 14 months)
• OPS-50 Diagnostic data: Duration of program + 1 year

After these periods, data is securely deleted or anonymised.

6. Third-Party Processors

We use the following third-party services to operate our business. Each is bound by appropriate data processing agreements:

• Calendly — appointment scheduling (US-based; subject to EU-US Data Privacy Framework and standard contractual clauses)
• Supabase — database and backend infrastructure (EU region where available)
• Vercel — website hosting (US-based; standard contractual clauses in place)
• Google Analytics (Google LLC) — website analytics (data may be processed in the US; subject to EU-US Data Privacy Framework)
• Stripe — secure payment processing (PCI-DSS compliant)
• Meta Platforms Inc. — advertising (where you have provided consent or we rely on legitimate interests for retargeting; see below)

6.1 Meta Advertising Platforms

We may use Meta Pixel and Meta's advertising tools on our website. This allows us to measure the effectiveness of our advertising campaigns on Facebook and Instagram. Where the Meta Pixel is active, Meta may collect your IP address, browser information, and pages visited on our site.

We only activate the Meta Pixel where you have accepted non-essential cookies via our cookie consent banner. You can opt out at any time by rejecting non-essential cookies or by adjusting your preferences at Meta's Cookie Policy.

7. Your Rights Under UK GDPR

Under UK GDPR, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure (“Right to be Forgotten”): Request deletion of your data where there is no compelling reason for its continued processing
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests, including direct marketing
• Right to Restrict Processing: Request that we restrict processing in certain circumstances
• Right to Withdraw Consent: Where processing is based on consent, withdraw it at any time without affecting the lawfulness of prior processing

To exercise any of these rights, contact us at founder@jaystaniforth.com. We will respond within 30 calendar days. There is no charge for making a request.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

8. Cookies Policy

We use cookies and similar technologies on our website. Cookies are small files stored on your device that help us understand how you use our site.

8.1 Types of Cookies We Use

• Strictly Necessary Cookies: Essential for the website to function. These cannot be disabled. They include cookies that store your cookie consent preference.
• Analytics Cookies: Google Analytics cookies that help us understand how visitors interact with our website. These are only activated with your consent.
• Advertising/Marketing Cookies: Where activated with your consent, Meta Pixel cookies used to measure advertising effectiveness and enable retargeting.

8.2 Managing Cookies

When you first visit our website, you will be presented with a cookie consent banner where you can accept all cookies or reject non-essential cookies.

You can change your preferences at any time by clearing your browser's local storage and revisiting the site, or by adjusting your browser settings to block cookies. Please note that blocking all cookies may affect the functionality of our website.

For more information on managing cookies in your browser, visit aboutcookies.org.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:

• HTTPS encryption for all data transmitted via this website
• Access controls limiting who can access personal data
• Use of reputable, security-certified third-party processors
• Regular review of our data handling practices

In the event of a data breach that is likely to result in risk to your rights and freedoms, we will notify the ICO within 72 hours and affected individuals without undue delay.

10. International Transfers

Some of our third-party processors are based outside the UK. Where data is transferred to countries without an adequacy decision from the UK, we ensure appropriate safeguards are in place — including Standard Contractual Clauses (SCCs) or reliance on the UK-US Data Bridge framework where applicable.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, our practices, or our services. The most current version will always be available on this page with the date of last update. We will notify you of significant changes where required by law.

12. Contact Us

For any questions, concerns, or data subject requests, contact us at:

FounderUNLOCK Data Enquiries
Jay Staniforth Ltd
[Registered Address]
Email: founder@jaystaniforth.com

You also have the right to contact the ICO: ico.org.uk | 0303 123 1113

See also our Terms & Conditions.