Privacy Policy | Matthew Squires | Last Updated: 3 June 2026
I respect your privacy and am committed to protecting your personal data. This Privacy Policy explains how I collect, use, and safeguard your information when you visit the website, apply for coaching, or purchase digital products.
1. Information I Collect
I collect information that you voluntarily provide when you interact with the site:
- Identity Data: Name, age, and contact information.
- Health & Movement Data: Injury history, mobility goals, and physical restrictions provided through the coaching application.
- Financial Data: Transaction records. Card details are handled entirely by Stripe or PayPal and are not stored by Matthew Squires.
- Coaching & Training Data: Notes, progress updates, workout tracking records, video assessments, and communications during programs or coaching.
- Marketing Data: Email address and preferences when you subscribe to the newsletter.
- Technical & Usage Data: IP address, browser type, pages visited, and browsing patterns collected automatically via cookies and analytics.
2.. Legal Basis for Processing
- Contract Performance: To deliver programmes or coaching services you have purchased.
- Legitimate Interests: To operate the business and communicate with existing clients.
- Consent: For newsletter subscriptions and marketing emails. You may withdraw consent at any time.
- Legal Obligation: To comply with tax and data protection obligations.
- Explicit Consent: For health and medical data, processed only to the extent necessary to safely deliver your coaching or programme.
3. How We Use Your Data
- To deliver and manage coaching sessions and purchased programmes.
- To send you the newsletter and marketing communications (with consent).
- To process payments and maintain financial records.
- To personalise your programme based on your health intake information.
- To communicate regarding orders, services, or enquiries.
- To improve the Website through analytics.
- To comply with legal and regulatory obligations.
4. Who We Share Your Data With
Matthew Squires does not sell, rent, or trade your personal data. Data is shared only with the following trusted providers to the extent necessary to deliver our services:
- Stripe — Payment processing
- PayPal — Payment processing
- TrainHeroic — Interactive programming and delivery platform
- Kit (formerly ConvertKit) — Email newsletter & automation platform
- Typeform — Coaching application forms
- Calendly — Coaching application and booking forms
- Website hosting and analytics providers
We do not transfer your personal data outside the UK/EEA without appropriate safeguards in place.
5. Data Retention
- Client records: 6 years after the end of our relationship for legal and tax compliance.
- Health, Medical & Video Data: Retained for the active duration of your coaching engagement or active program account, then securely archived or deleted upon request.
- Financial records: 6 years as required by HMRC.
- Newsletter subscriber data: until you unsubscribe or request deletion.
- Website usage data: up to 24 months.
6. Your Rights Under UK GDPR
You have the right to access, correct, erase, restrict, or port your personal data, and to object to processing or withdraw consent at any time. To exercise any of these rights, contact matt@matthewsquires.net. We will respond within 30 days.
7. Cookies
matthewsquires.org uses strictly necessary cookies for site function, analytics cookies (e.g. Google Analytics) with your consent, and marketing cookies with your consent. You can manage preferences via your browser settings or our cookie consent banner.
8. Newsletter & Email Marketing
By subscribing to the Matthew Squires newsletter, your email address and name will be stored on Kit (formerly ConvertKit). You consent to receive marketing emails and may unsubscribe at any time via the link in any email. By subscribing you agree to our Privacy Policy and Terms of Service.
9. Children’s Privacy
Our services are not directed to individuals under 18. We do not knowingly collect data from anyone under 18. If you believe we have done so inadvertently, contact matt@matthewsquires.net immediately.
10. Data Security
We use secure encrypted connections (HTTPS/SSL), limited access controls, and reputable third-party processors to protect your data. In the event of a data breach posing risk to your rights, we will notify you and the ICO within 72 hours as required by UK GDPR.
11. California Residents (CCPA)
California residents have the right to know what data we collect, request deletion, and opt out of data sales. Note: Matthew Squires does not sell personal data. Contact matt@matthewsquires.net to exercise these rights.
12. Changes to This Policy
Material changes will be posted on matthewsquires.org with a revised date and notified by email where required.
13. Contact
If you have any questions about this Privacy Policy or our privacy practices, feel free to contact me at:
- Email: matt@matthewsquires.net
- Website: matthewsquires.org
- Contact Page
