PRIVACY POLICY

Last updated: 18 January 2026

1. Who we are

Omnience LLC, doing business as James Warren, is the data controller for personal data collected through this website and our products and services.

Contact details

2. The personal data we collect

We may collect:

  • Identity and contact data, name, email address, phone number.

  • Transaction data, purchases, payment status, invoices, refund history.

  • Account and usage data, log-in details, access and progress within purchased content.

  • Communications, messages you send us, support requests, feedback.

  • Technical data, IP address, device and browser data, and information about how you use the website (cookies and similar technologies are covered in section 8).

3. Where the data comes from

  • Directly from you when you enter details into forms, checkouts, sign-up pages, or contact us.

  • Automatically when you use our website.

  • From service providers involved in payments, email delivery, and platform hosting.

4. How we use your data and our lawful bases

We use your data for the following purposes:

A. To provide what you asked for

  • Examples: supplying digital products, providing access to a portal, delivering coaching or support, handling refunds.

  • Lawful basis: contract, or steps requested by you before entering a contract.

B. To run and protect the business

  • Examples: customer support, record-keeping, preventing fraud, maintaining website security.

  • Lawful basis: legitimate interests.

C. To meet legal obligations

  • Examples: accounting and tax records, responding to lawful requests.

  • Lawful basis: legal obligation.

D. Marketing communications

  • We send marketing emails where you have opted in, or where the law allows the “soft opt-in” for existing customers and you were given a clear opt-out at collection and in every message.

  • Lawful basis: consent, or legitimate interests where soft opt-in applies under PECR.

You can unsubscribe at any time using the link in our emails.

5. The platform we use and how data flows

We use Mastermind as a key business platform to run parts of our website and customer experience, such as forms, contact management, and delivery features.

Mastermind describes the typical GDPR roles as:

  • You (the business using the platform) act as the data controller for your customer and visitor data.

  • The platform acts as a data processor when it processes personal data on your behalf.

Mastermind also states it aims to provide features that support GDPR compliance, but using the product alone does not make a business GDPR compliant.

Mastermind’s security and compliance overview states, at a high level, that:

  • Data is encrypted in transit and at rest.

  • Access controls include role-based access control, logging and monitoring, and enforced two-factor authentication.

  • Backups are maintained with point-in-time recovery and seven days of backups retained.

  • Customers are notified as required by law in case of personal data breaches impacting customer data.

  • Sub-processors are managed and listed within its Data Processing Agreement.

  • Payment card processing is handled by PCI-compliant payment processors, and it states it does not store or collect credit card information itself.

6. Who we share data with

We share personal data only with service providers needed to operate the website and deliver services, such as:

  • Website and platform providers (including Mastermind).

  • Payment processors.

  • Email and communications providers.

  • Analytics and consent tools (where enabled by your cookie choices).

  • Professional advisers where necessary.

  • Authorities where required by law.

7. International transfers

Some service providers may process data outside the UK. Where this happens, we use appropriate safeguards, such as adequacy regulations or approved contractual protections, as required.

8. Cookies and similar technologies

We use cookies and similar technologies to make the site work and, if enabled, to understand usage and improve performance.

Non-essential cookies and similar technologies require your consent.

9. How long we keep your data

We keep personal data only as long as necessary for the purpose it was collected for.

Examples:

  • Purchases and accounting records are kept for as long as required by UK tax and accounting rules.

  • Support and communications are kept for as long as needed to resolve issues and maintain reasonable business records.

  • Marketing data is kept until you unsubscribe, or until we remove inactive contacts under our list management process.

10. Your rights

You have rights under UK GDPR, including access, correction, deletion, restriction, objection, and data portability in certain circumstances.

To exercise your rights, contact us using the details in section 1.

11. Complaints

If you have concerns, contact us first.

You can also complain to the Information Commissioner’s Office (ICO), the UK supervisory authority.

12. Changes to this notice

We may update this notice from time to time. We will update the “Last updated” date above. 

© 2026 James Warren - All rights reserved