Effective Date: 21/07/2025
Last Updated: 21/07/2025
Captain Thinking Ltd. ("Captain Thinking", "we", "us", or "our") is committed to ensuring that your personal data is protected and handled in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the Data Protection Act 2018 in the UK. This Data Protection Policy explains how we collect, use, and protect your personal data.
By interacting with our website www.captainthinking.com or www.captainthinking.co.uk and using our services, you consent to the collection, processing, and sharing of your personal data as described in this policy.
1. Data Controller
Captain Thinking Ltd. is the data controller for the personal data we collect. We are responsible for deciding how and why your data is processed.
If you have any questions about how we handle your personal data, or if you wish to exercise your rights under this policy, please contact us at:
Captain Thinking Ltd.
Offices of ESDG,
44 Royal Parade Mews,
London,
SE3 0TN,
United Kingdom
or e-mail us:
helpdesk@captainthinking.com
2. What Personal Data We Collect
We collect personal data from you when you interact with our website, create an account, make purchases, or engage with our services. The personal data we collect may include:
2.1 Personal Identifiable Information
- For Users:
- Name
- Email address
- Billing information (credit/debit card details)
- Postal address
- Phone number
- Account login credentials
- For Children:
- Name
- Age/Date of birth
- Educational data (e.g., completed courses, quiz results)
- Usage data (e.g., pages viewed, course progress)
2.2 Automatically Collected Information
- Cookies: We may collect information about how you use the website through cookies, including your IP address, device type, browser information, and time spent on the website.
- Analytics: We may use services like Google Analytics to collect anonymized data about how visitors interact with our website.
2.3 User-Generated Content
- Feedback and Comments: Any feedback, reviews, comments, or user-generated content that you provide through our website or services.
3. How We Use Your Personal Data
We process personal data for the following purposes:
3.1 To Provide and Improve Our Services
- To deliver educational content, courses, and resources that you have requested or purchased.
- To improve and personalize your experience with our website and services.
3.2 Communication
- To communicate with you about your account, purchases, or updates to our services.
- To send you marketing communications, newsletters, or other promotional materials (only if you have opted-in to receive such communications).
3.3 Legal and Compliance
- To comply with applicable legal obligations, including keeping records for financial and tax purposes.
- To prevent fraud, conduct internal audits, and address legal claims or disputes.
4. Legal Basis for Processing Personal Data
Under the GDPR, we process personal data based on the following legal grounds:
- Consent: Where you have given us consent to process your personal data (e.g., for marketing communications).
- Contractual Necessity: To perform our contract with you (e.g., providing the educational services you have purchased).
- Legal Obligation: To comply with legal requirements (e.g., tax and accounting regulations).
- Legitimate Interests: To pursue our legitimate interests in improving our services, preventing fraud, and protecting our business, provided that your rights and freedoms are not overridden.
5. Sharing Your Personal Data
We do not sell or rent your personal data to third parties. However, we may share your data in the following circumstances:
5.1 With Service Providers
- We may share your personal data with trusted third-party service providers who help us run our business and deliver our services (e.g., payment processors, email services, IT support). These third parties are obligated to protect your data and only process it according to our instructions.
5.2 Legal Compliance
- We may disclose your data if required by law, such as in response to a subpoena, court order, or legal process, or to comply with legal obligations, protect our rights, or investigate fraud.
5.3 Business Transfers
- If Captain Thinking is involved in a merger, acquisition, or sale of assets, your personal data may be transferred as part of the transaction. We will notify you of any such change.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy, including legal, accounting, or reporting requirements. After this period, your personal data will be securely deleted or anonymized.
7. Your Rights Under GDPR
As a data subject, you have the following rights under the GDPR:
7.1 Right to Access
- You have the right to request a copy of the personal data we hold about you.
7.2 Right to Rectification
- You can request corrections to any inaccurate or incomplete personal data we hold about you.
7.3 Right to Erasure (Right to be Forgotten)
- You can request that we delete your personal data, subject to certain exceptions.
7.4 Right to Restrict Processing
- You can request that we limit the processing of your personal data under certain conditions.
7.5 Right to Data Portability
- You can request that we provide your personal data in a structured, commonly used, and machine-readable format to transfer to another service provider.
7.6 Right to Object
- You have the right to object to the processing of your personal data based on our legitimate interests, including for direct marketing purposes.
7.7 Right to Withdraw Consent
- If we rely on your consent to process your data, you have the right to withdraw that consent at any time.
7.8 Right to Lodge a Complaint
- If you believe that we are not complying with data protection laws, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) in the UK.
To exercise any of these rights, please contact us using the details provided below.
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, and destruction. However, no data transmission or storage system is entirely secure, and we cannot guarantee the absolute security of your data.
9. Changes to This Policy
We may update this Data Protection Policy from time to time to reflect changes in our practices, legal requirements, or the Services we provide. When we make material changes, we will post an updated version on this page and indicate the date of the last revision.
10. Contact Us
If you have any questions about this Data Protection Policy or how we handle your personal data, please contact us at:
Captain Thinking Ltd.
Offices of ESDG,
44 Royal Parade Mews,
London,
SE3 0TN,
United Kingdom
or e-mail us:
helpdesk@captainthinking.com
By using our Services, you acknowledge that you have read and understood this Data Protection Policy and agree to the collection, use, and processing of your personal data as described herein.