The Identity Project™ (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website, services, and coaching.

Business details
Legal name: The Identity Project™
Address: Herculesstraat 34, 7521 DJ Enschede, The Netherlands
Email: support@identityproject.online
Chamber of Commerce (KvK): 67867847
VAT number: NL002322630B97

We operate under Dutch law and comply with the General Data Protection Regulation (GDPR).

1. What personal data we collect
Depending on how you interact with us, we may collect:
Contact details, incl. name, email address, phone number, billing address (when required).
Client information, incl. information shared in intake forms and questionnaires, notes from coaching sessions, materials you choose to share during our work together.
Clients may share sensitive personal information during coaching (for example about wellbeing, personal circumstances, or life experiences). This information is processed only with your consent and solely for the purpose of providing coaching services.
Technical data, incl. IP address, website usage data via analytics tools, cookie and tracking data
Marketing data, incl. newsletter subscription details (name, email address, and engagement data stored by our email provider)
Communication data, incl. messages sent via contact forms, email, or social media
Payment information: Payments are processed through secure third-party providers. We do not see or store full card numbers.

2. How we collect your data
We collect data when you: Fill in contact or application forms on our website, book or attend coaching sessions, sign up for our newsletter, schedule calls via Zoom, make payments via Stripe, PayPal, GoCardless, or bank transfer, contact us by email or social media, accept cookies on our website.

3. Why we use your data (legal bases)
We only process your data when we have a legal basis to do so: To provide coaching services. Including session delivery, preparation, follow-up, and maintaining continuity between sessions. To communicate with you. Responding to enquiries, scheduling sessions, and sharing relevant information. To process payments and meet legal obligations. Including accounting and tax requirements. For marketing (with consent). Sending newsletters or updates you have chosen to receive. You can unsubscribe at any time. To improve our website. Using analytics and cookies to understand how visitors use the site. With your explicit consent. For processing sensitive information shared during coaching.

4. Coaching confidentiality
Coaching sessions are private and confidential. Information shared in sessions is not disclosed to third parties. The only exception would be rare situations involving a legal obligation or serious risk of harm to you or others, where appropriate steps may need to be taken. Brief session notes may be kept to support continuity. These are confidential, stored securely, and are not clinical or medical records.

5. Session recordings
Sessions may be recorded only with your consent and for your personal use. Recordings are shared directly with you and are not used for any other purpose. Any copy held by us is deleted within 30 days.

6. How long we keep your data
We do not keep personal data longer than necessary. Client coaching records: up to 5 years after our last session. Financial records: 7 years (legal requirement). Discovery call applicants who do not become clients: up to 24 months.  General enquiries: up to 24 months. Newsletter data: until you unsubscribe.

7. Sharing your data
We only share data when necessary, and never sell personal data. Your information may be shared with trusted service providers, incl. email marketing platforms (MailerLite, ConvertKit), website hosting (TransIP), payment providers (Stripe, PayPal, GoCardless), video and scheduling tools (Zoom), cloud storage (Google Drive), project management (ClickUp), analytics and advertising platforms (Google, Meta). These providers process data on our behalf and are required to protect it.

8. International data transfers
Some of the tools we use operate outside the EU. When this happens, we rely on GDPR-approved safeguards such as Standard Contractual Clauses to protect your data.

9. Cookies and tracking
Our website uses cookies and similar technologies, incl. Google Analytics, Meta (Facebook/Instagram) Pixel. These help us understand website usage and improve our services. You can manage your cookie preferences through our cookie banner.

10. How we protect your data
We take appropriate security measures, incl. password-protected devices, two-factor authentication on key systems, secure, encrypted payment providers, limited access to client data (only the business owner).

11. Children
Our services are not intended for children under 16, and we do not knowingly collect their data.

12. Your rights
Under GDPR, you have the right to access your personal data, correct inaccurate data, request deletion of your data, restrict or object to processing, withdraw consent at any time, lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) To exercise your rights, email: support@identityproject.online

13. Updates
We may update this Privacy Policy from time to time. The latest version will always be available on our website.