Home About Nicola I Am Rising Membership Podcast
Offerings
Inner Freedom I Am Rising Intuitive Consultation
Events & Retreats
Angelic Alchemy Crystal Sound Bath - July
Contact

Privacy Policy 

Last updated: [18/6/2026]

This Privacy Policy explains how Nicola McCarthy (“I”, “me”, “my”) collects, uses, and protects your personal information when you visit nicolamccarthy.co.uk (the “Website”), book or attend a session, join the I Am Rising membership, or otherwise interact with my business.

I am committed to handling your personal information with the same care and respect I bring to our work together. This policy is written in plain English wherever possible, because you deserve to understand exactly what happens with your information.

I am the data controller for the purposes of UK GDPR and the EU GDPR (where applicable). You can contact me about any privacy matter at [email protected]

1. The information I collect

I collect information in a few different ways.

Information you give me directly. This includes your name, email address, and any other details you provide when you fill in the contact form, book a session via Calendly, sign up to my email list, join the I Am Rising membership, or correspond with me by email or social media.

Information shared during sessions. During Inner Freedom Sessions, Intuitive Consultations, The Alchemy Process, or any other session, you may choose to share personal details about your health, relationships, family history, beliefs, or other sensitive matters. This is sometimes called “special category data” under UK GDPR. I only use this information to provide the session itself, and I treat everything shared in session as confidential.

Payment information. Payments for sessions and the I Am Rising membership are processed through Kajabi’s checkout system. I do not see or store your full card details. Kajabi and its payment processors handle this information directly under their own privacy policies.

Information collected automatically. Like most websites, nicolamccarthy.co.uk uses cookies and similar technologies to operate properly and to understand how visitors use the site. See my separate Cookie Policy for full details.

2. How I use your information

I use your information to:

Respond to enquiries made through the contact form or by email.

Book, prepare for, and deliver sessions, including Inner Freedom Sessions, Intuitive Consultations, and The Alchemy Process.

Administer the I Am Rising membership, including processing your subscription and giving you access to membership content.

Send you emails you have asked to receive, such as newsletters, updates, and offers, if you have signed up to my email list.

Maintain the safety, security, and proper functioning of the Website.

Meet legal and accounting obligations, for example keeping financial records.

I do not use anything you share with me in a session for marketing purposes, and I do not sell your personal information to anyone.

3. My legal basis for processing your information

Under UK GDPR, I rely on the following legal grounds depending on the situation:

Contract. Where I need your information to provide a session or membership you have booked or purchased.

Consent. Where you have actively opted in, such as signing up to my email list. You can withdraw this consent at any time by unsubscribing or contacting me directly.

Legitimate interests. Where I need to respond to an enquiry you have made, or to run and improve my business, in a way that does not override your rights.

Legal obligation. Where I need to keep certain records, for example for tax purposes.

Where session content involves special category data (such as details about your health or family history), my legal basis is your explicit consent, given by choosing to share that information with me in the course of a session you have booked.

4. Who I share your information with

I do not sell or rent your personal information. I share it only with trusted third parties who help me run my business, including:

Kajabi, who host my website, manage my email list, process membership payments, and host membership content.

Calendly, which I use to manage session bookings.

Any other service provider I use from time to time to support the running of sessions or the membership, such as email or scheduling tools.

These providers only access the information they need to perform their function, and I have taken reasonable steps to satisfy myself that they handle your data securely. Some of these providers may be based outside the UK or EEA. Where this is the case, I rely on appropriate safeguards such as Standard Contractual Clauses, or the provider’s own adequacy and compliance arrangements, to ensure your information continues to be protected.

I will only share your information with anyone else if required by law, or with your express permission.

5. How long I keep your information

I keep your information for as long as is necessary to fulfil the purposes set out in this policy, and to meet legal, accounting, or reporting requirements.

As a general guide, financial records relating to bookings and payments are kept for the period required by UK tax law (currently six years). Enquiry and session-related correspondence is kept for as long as is reasonably useful to our working relationship, and is deleted or anonymised when it is no longer needed. If you ask me to delete your information, I will do so unless I am legally required to keep it.

6. Your rights

Under UK GDPR, you have the right to:

Ask me what personal information I hold about you, and to receive a copy of it.

Ask me to correct any information that is inaccurate or incomplete.

Ask me to delete your information, where there is no good reason for me to continue processing it.

Ask me to restrict the use of your information in certain circumstances.

Object to my processing of your information where I am relying on legitimate interests.

Withdraw consent at any time, where I am relying on consent, such as for marketing emails.

Ask me to transfer your information to you or to another organisation, in certain circumstances.

To exercise any of these rights, please contact me at [EMAIL ADDRESS]. I will respond within one month.

If you are unhappy with how I have handled your information, you also have the right to complain to the Information Commissioner’s Office (ICO), the UK’s data protection regulator, at ico.org.uk.

7. Children

My services are intended for adults. I do not knowingly collect personal information from anyone under the age of 18. If you believe a child has provided me with personal information, please contact me so I can delete it.

8. Security

I take reasonable technical and organisational measures to protect your personal information against unauthorised access, loss, or misuse, including relying on the security measures provided by Kajabi and other reputable third-party providers. However, no method of transmission over the internet is completely secure, and I cannot guarantee absolute security.

9. Changes to this policy

I may update this Privacy Policy from time to time, for example to reflect changes in my business or in the law. I will post any updates on this page with a revised “last updated” date.

10. Contact me

If you have any questions about this Privacy Policy or how your information is handled, please contact me at:

Nicola McCarthy-  [email protected]