Captain Thinking
Captain Thinking® Elevated Thinking. Grounded Decisions.
Captain Thinking® Legal

Privacy Policy

How Captain Thinking® collects, uses, stores and protects personal information.

← Back to Captain Thinking

Effective Date: 21/07/2025
Last Updated: 21/07/2025

Captain Thinking Ltd. ("Captain Thinking", "we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose and safeguard your personal information when you visit www.captainthinking.com or www.captainthinking.co.uk, or use our educational services and digital content (collectively referred to as the "Services"). By using our Services, you agree to the terms of this Privacy Policy.

Captain Thinking Ltd. is the data controller responsible for the personal data described in this Privacy Policy.

1. Information We Collect

We collect various types of information depending on your interaction with our Services. This information may include the following.

1.1 Personal Information

For parents, guardians and adult users: when you register an account, purchase products, contact us, or otherwise interact with our Services, we may collect personal information such as:

  • Name
  • Email address
  • Billing information, including credit or debit card details
  • Postal address
  • Phone number
  • Account login credentials

For children: we may collect personal information relating to children where this is necessary for the delivery of our Services and where appropriate consent or authorisation has been obtained from a parent or legal guardian. This information may include:

  • Name
  • Age or date of birth
  • Educational data, such as completed courses or quizzes
  • Usage data, such as pages viewed or course progress

1.2 Automatically Collected Information

We may collect certain information automatically when you interact with our website or Services, such as:

  • IP address
  • Device type and browser information
  • Cookies and similar technologies used to track preferences and improve user experience
  • Usage statistics, such as time spent on our website and pages visited

1.3 User Generated Content

If you provide feedback, comments, reviews, or other user generated content, we may collect and store that information.

2. How We Use Your Information

We use the information we collect for the following purposes.

2.1 To Provide Our Services

  • To create and manage user accounts
  • To process transactions and payments
  • To provide and deliver educational materials, courses and resources
  • To monitor and improve the quality, performance and safety of our Services
  • To track progress in educational content where relevant

2.2 Communication

  • To send updates, newsletters or promotional material where you have opted in to receive such communications
  • To respond to enquiries, support requests and feedback

2.3 Legal and Compliance

  • To comply with applicable laws, including data protection and child protection requirements
  • To detect, investigate and prevent fraud, misuse, or unauthorised access to our Services
  • To establish, exercise or defend legal claims where necessary

3. Lawful Bases for Processing

We process personal data under one or more lawful bases under the UK General Data Protection Regulation, depending on the circumstances.

  • Consent – where you have given us clear consent to process your personal data for a specific purpose
  • Contract – where processing is necessary to provide the Services you have requested, or to take steps before entering into a contract with you
  • Legal obligation – where processing is necessary for us to comply with the law
  • Legitimate interests – where processing is necessary for our legitimate interests, provided those interests are not overridden by your rights and freedoms

Where we rely on consent, you may withdraw that consent at any time.

4. Children’s Privacy and Parental Consent

Captain Thinking is committed to complying with applicable child protection and data protection laws.

Where we rely on consent in connection with online services offered directly to children, children aged 13 or over may in some circumstances provide their own consent. For children under 13, we require consent or authorisation from a person holding parental responsibility, and we will make reasonable efforts to verify that this is the case where required.

We do not knowingly collect personal information from a child under 13 without appropriate parental consent where such consent is required. If we become aware that personal information has been collected without the necessary consent, we will take steps to delete it.

If you are a parent or guardian and wish to review, correct, or delete your child’s personal information, or if you believe we have collected such information without proper consent, please contact us immediately.

5. Sharing Your Information

We do not sell or rent your personal information to third parties. However, we may share your information in the following situations.

5.1 With Service Providers

We may share your information with trusted third party service providers who help us operate our Services, such as payment processors, IT providers, website hosting providers, analytics providers, and email service providers. These providers may only use your personal data in accordance with our instructions and must protect it appropriately.

5.2 With Legal Authorities

We may disclose your information to law enforcement agencies, regulators, courts, or other authorities where required by law, legal process, or where necessary to protect our rights, property, users, or Services.

5.3 In Business Transfers

In the event of a merger, acquisition, restructuring, or sale of assets, personal data may be transferred as part of that transaction. If that happens, we will take appropriate steps to protect your information and will notify you where required.

6. International Transfers

Some of our service providers may process personal data outside the United Kingdom. Where personal data is transferred internationally, we will take steps to ensure that appropriate safeguards are in place, such as contractual protections or other lawful transfer mechanisms required under UK data protection law.

7. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including to provide our Services, comply with legal obligations, resolve disputes, and enforce our agreements.

Where we do not have a fixed retention period, we determine retention by considering the nature of the data, why it was collected, the sensitivity of the information, and any legal, accounting, safeguarding or reporting requirements.

8. Data Security

We take appropriate technical and organisational measures to protect personal information, including access controls, secure systems, and other reasonable safeguards designed to reduce the risk of loss, misuse, unauthorised access, disclosure, or alteration.

However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

9. Your Rights Under UK GDPR

Subject to applicable law, you may have the following rights in relation to your personal data.

9.1 Right of Access

You may request access to the personal data we hold about you.

9.2 Right to Rectification

You may request that inaccurate or incomplete personal data be corrected.

9.3 Right to Erasure

You may request deletion of your personal data in certain circumstances.

9.4 Right to Restrict Processing

You may request that we restrict the way we process your personal data in certain circumstances.

9.5 Right to Object

You may object to certain types of processing, including direct marketing and, where applicable, processing based on legitimate interests.

9.6 Right to Data Portability

You may request a copy of certain personal data in a structured, commonly used and machine readable format.

9.7 Right to Withdraw Consent

Where we rely on consent, you may withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing carried out before withdrawal.

9.8 Right to Complain

If you believe that we have not handled your personal data correctly, you have the right to complain to the Information Commissioner’s Office in the United Kingdom.

To exercise any of these rights, please contact us using the contact details below.

10. Cookies

We use cookies and similar technologies to enhance your experience, remember preferences, understand how visitors use our Services, and improve website functionality and performance.

These may include:

  • Essential cookies – necessary for core website functionality
  • Analytics cookies – used to understand how visitors use our website and Services
  • Preference cookies – used to remember settings and improve your experience

You can control cookies through your browser settings. Please note that disabling certain cookies may affect the operation of some parts of our Services.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the Services we provide. When we make material changes, we will post the updated version on this page and update the “Last Updated” date above.

12. Contact Us

If you have any questions, concerns or requests regarding this Privacy Policy or our data practices, please contact us at:

Captain Thinking Ltd. Offices of ESDG 44 Royal Parade Mews London SE3 0TN United Kingdom

Email: helpdesk@captainthinking.com

By using our Services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use and processing of your personal data as described in it.