Last updated: 7th June 2025

1. Introduction

The Supervisor Platform is committed to protecting your personal information and privacy. This Privacy Policy outlines how we collect, use, disclose, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Who We Are

Supervisor Platform is currently operated by its founder, Natalie Stott. The platform is being developed to help supervisees easily connect with qualified supervisors.

If you have any questions about this policy or how your data is used, you can contact Natalie directly at info@supervisorplatform.com

3. What Information We Collect

We may collect the following personal data:
- Name, email address, and contact information
- Professional information for supervisors (e.g., qualifications, registration)
- Payment information (via secure third-party processors)
- Technical data (e.g., IP address, browser type, device info)
- Usage data (e.g., pages viewed, actions taken)
- Cookies and similar technologies (see our Cookie Policy)

4. How We Collect Information

We collect information directly when you:
- Create an account or profile
- Subscribe to updates
- Make a payment
- Contact us

We also collect some information automatically via cookies and analytics tools.

5. How We Use Your Information

We use your information to:

• Create and display public supervisor profiles

Supervisors provide biographical, professional, and contact information (such as email and practicewebsite) for inclusion in their public profile. These profiles are visible to anyone visiting the platform and are searchable without requiring an account.

• Enable contact between supervisees and supervisors

Prospective supervisees can email supervisors directly using the contact details provided on each public profile. The platform does not facilitate or send messages between users.

• Process payments for profile subscriptions

• Improve site functionality and user experience

• Comply with legal obligations

6. Lawful Bases for Processing

We process your data based on:
- Your consent (e.g., marketing)
- Performance of a contract (e.g., paid listings)
- Legal obligations
- Legitimate interests (e.g., improving our platform)

7. Data Sharing

We may share your data with:
- Service providers (e.g., payment processors, email platforms)
- Regulatory or legal authorities, if required by law

We do not sell your personal data to third parties.

8. International Transfers

If we transfer your data outside the UK, we ensure appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions.

9. Data Security

We take appropriate measures to protect your personal data from unauthorised access, loss, misuse, or alteration. These include encryption, secure data storage, and restricted access controls.

Where data is transferred outside the UK (for example, to cloud providers based in the US), we ensure that adequate safeguards are in place—such as Standard Contractual Clauses approved by the UK government or transfers to countries with recognised data protection adequacy

10. Data Retention

We retain data only as long as necessary:
- Supervisor profiles: for the duration of the listing plus 12 months
- Email subscribers: until you unsubscribe
- Payment records: for up to 7 years to comply with tax laws
- Website analytics data: typically for 26 months

11. Your Rights

You have the right to:
- Access your data
- Request correction or deletion
- Withdraw consent at any time
- Object to or restrict processing
- Request data portability
- Lodge a complaint with the Information Commissioner's Office (ICO) at www.ico.org.uk

12. Cookies

We use cookies to enhance your browsing experience and understand user behaviour. You can control cookie settings through your browser. For more details, see our Cookie Policy.

13. Data Breach Notification

If a data breach occurs that affects your personal data, we will notify you and the relevant authorities in accordance with legal requirements.

14. Anonymised Data

We may use anonymised or aggregated data for analytics, research, or service improvement. This data does not identify individuals and is not subject to GDPR.

15. Changes to This Policy

We may update this policy from time to time. We encourage you to check this page periodically. Continued use of our site indicates your acceptance of any changes. If we make significant changes, we will notify users via email or a notice on our website.

16. Contact

For any questions or to exercise your rights, contact us at:

Supervisor Platform

Contact: Dr Natalie Stott

Email: info@supervisorplatform.com

No registered business address at this stage

17. Cookie Policy Reference

For more information on how we use cookies and similar technologies, please refer to our separate Cookie Policy, available on our website. It outlines the types of cookies we use, their purpose, and how you can manage your preferences.

18. Privacy Contact and Data Protection Officer

If you have any questions about this Privacy Policy or how we handle your data, please contact our Privacy Officer:

Privacy Officer: Natalie Stott

Email: info@supervisorplatform.com

19. Third-Party Service Providers

We work with trusted third-party service providers to deliver our services, including payment processors (e.g., Stripe), email platforms (e.g., Mailchimp), and website analytics providers (e.g., Google Analytics). These providers may have access to your personal data only to the extent necessary to perform their functions and are obligated to maintain its confidentiality.

20. Detailed Data Retention Periods

We retain personal data as follows:
- Supervisor profiles: for the duration of the subscription plus 12 months
- Email subscribers: until you unsubscribe or request deletion
- Payment and invoicing records: for 7 years to comply with tax and accounting laws
- Website analytics and tracking data: retained for up to 26 months
After these periods, data is securely deleted or anonymised.

21. User Rights and Access Requests

You can exercise your data protection rights at any time by contacting us using the details in section 18. We will respond to all legitimate requests within one month. You may be asked to verify your identity before we can process your request.