GDPR Compliance

Last updated: June 6, 2026

General Data Protection Regulation

serene-mentorship.com is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and UK data protection laws. This document outlines how we comply with these regulations and your rights as a data subject.

Data Controller

For the purposes of GDPR, serene-mentorship.com acts as the data controller for personal information collected through our website and services.

Legal Basis for Processing

We process your personal data under the following legal bases:

• Consent: When you voluntarily submit information through our contact forms or subscribe to communications
• Contract Performance: When processing is necessary to fulfill our service obligations to you
• Legitimate Interests: For business operations, service improvement, and fraud prevention, balanced against your rights
• Legal Obligation: When required to comply with legal or regulatory requirements

Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

Right to Access

You may request confirmation of whether we process your personal data and obtain a copy of that data.

Right to Rectification

You may request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure

You may request deletion of your personal data in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.

Right to Restriction of Processing

You may request that we restrict processing of your personal data in specific situations, such as when you contest the accuracy of the data.

Right to Data Portability

You may request to receive your personal data in a structured, commonly used, and machine-readable format and have it transmitted to another controller.

Right to Object

You may object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw that consent at any time.

Data Protection Officer

For questions regarding GDPR compliance or to exercise your rights, please contact us at [email protected].

Supervisory Authority

You have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues, if you believe your data protection rights have been violated.

International Data Transfers

We primarily process data within the United Kingdom. Any international data transfers are conducted in compliance with GDPR requirements, including the use of standard contractual clauses or other appropriate safeguards.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR.

Exercising Your Rights

To exercise any of your GDPR rights, please submit a written request to [email protected]. We will respond to your request within one month, though this period may be extended by two additional months for complex requests.