Privacy Policy

Effective date: November 1, 2025

This Privacy Policy describes how Open Introvert Ltd, trading as Sabrina Ahmed, collects, uses and protects your personal data when you use our websites, newsletters, coaching, workshops or digital products (together, the “Service”).

This includes:

  • our website (e.g. sabrinaahmed.com)

  • our Squarespace and Payhip shop and product pages

  • our newsletters (including Substack)

  • online workshops and events

  • coaching enquiry and booking forms

Personal Data means any information that identifies or could identify an individual.

By using the Service, you agree to the practices described in this policy.

1. Who We Are

The Service is operated by:

Open Introvert Ltd, trading as Sabrina Ahmed

Registered in England & Wales

Company No: 12173677

Registered office: Brookfield Court, Selby Road, Leeds, LS25 1NB

Open Introvert Ltd is the Data Controller for the personal data processed through this Service.

We may also operate under the trading name “Moving Forward After Loss” for certain coaching and digital services. Open Introvert Ltd remains the Data Controller.

2. What Data We Collect

Depending on how you interact with us, we may collect:

Contact and identity data

  • Name

  • Email address

  • Country or region

  • Postal or billing address (for paid products)

Service and booking data

  • Workshop or product purchases

  • Booking and scheduling details (e.g. TidyCal bookings)

  • Coaching enquiries, goals and availability

  • Basic notes relating to coaching sessions (kept confidential)

Payment data

  • Payment confirmations, amounts and method (via Stripe, PayPal or similar)

  • We do not store your full card details. These are processed directly by payment providers.

Newsletter and marketing data

  • Subscription status

  • Email engagement (opens, clicks, unsubscribes)

  • Your communication preferences

Technical and usage data

  • IP address

  • browser type and version

  • pages visited and time spent on the site

  • device type

  • cookie data and similar identifiers

We do not collect or hold clinical health records. Any sensitive disclosures in coaching or workshops are treated with care and kept confidential within the limits set out below.

3. How We Use Your Data

We use personal data to:

  • process purchases of digital products and workshops

  • manage access to online content

  • schedule and deliver coaching sessions

  • respond to enquiries and provide support

  • send newsletters or updates if you have subscribed

  • share educational content about grief, resilience and related topics

  • improve our resources, services and user experience

  • maintain the security and performance of our website and platforms

  • comply with legal, tax and accounting obligations

We do not sell your personal data or use it for third-party advertising.

4. Legal Bases for Processing

We process personal data under the following lawful bases:

  • Contract – to provide products, workshops or coaching you have purchased or requested.

  • Consent – for email newsletters or marketing you actively opt into.

  • Legitimate Interests – for basic analytics, service improvement, platform security and running our business in a proportionate way that respects your rights.

  • Legal Obligation – where required for tax, accounting, safeguarding or other legal duties.

You can withdraw consent at any time via unsubscribe links or by contacting us.

5. Service Providers (Data Processors)

To deliver the Service, we use trusted third-party providers who process data on our behalf. These may include:

  • Squarespace – for hosting and delivering digital products and workshops, and managing checkouts.

  • Payhip – for hosting and delivering digital products and workshops, and managing checkouts.

  • Substack – for publishing newsletters and managing email subscribers.

  • Email automation / mailing platforms – to send email sequences and updates.

  • TidyCal – for scheduling and managing bookings.

  • Stripe and PayPal – for secure payment processing.

  • Website hosting and analytics providers – to host the site and understand how it is used.

These Service Providers only process your data on our instructions and are required to keep it secure and confidential. Payment data is handled directly by payment processors and is not stored by us.

Where required, appropriate contracts or safeguards are in place to ensure compliance with UK GDPR and EU GDPR.

6. Safeguarding, Limits of Confidentiality & Crisis Boundaries

Our work focuses on grief, resilience and personal growth. It is coaching and education, not therapy, diagnosis or emergency mental health care.

Information you share in coaching or workshops is treated as confidential. However, we may need to act or share limited information if:

  • we believe there is a serious risk of harm to you or someone else

  • we are required to do so by law or a court order

We will always aim to discuss this with you where possible.

If you are in crisis or at immediate risk, you should contact local emergency services or crisis support organisations. Our Service is not designed for urgent or emergency support.

7. International Transfers

Some Service Providers may process data outside the UK or EEA. Where this happens, we ensure appropriate safeguards (such as adequacy decisions or Standard Contractual Clauses) are in place to protect your data.

8. Data Retention

We keep personal data only for as long as needed for the purposes described above, including:

  • the duration of your coaching relationship or access to products

  • legal, tax and accounting requirements

  • resolving disputes or enforcing agreements

Coaching-related notes are kept only as long as reasonably necessary for your support and our legitimate interests, and may be deleted after the coaching relationship ends unless we are required to retain them longer.

9. Your Rights

Under UK GDPR and EU GDPR, you have the right to:

  • request access to your personal data

  • request correction of inaccurate or incomplete data

  • request deletion of your data in certain circumstances

  • object to or restrict certain types of processing

  • request a portable copy of your data (where applicable)

  • withdraw consent where processing is based on consent

To exercise these rights, contact us using the email below. We may need to verify your identity before processing your request.

You also have the right to complain to the Information Commissioner’s Office (ICO) or your local supervisory authority if you are unhappy with how your data is handled.

10. Children’s Privacy

Our services and content are aimed at adults. We do not knowingly collect personal data from anyone under 18. If you believe a child has provided us with personal data, please contact us so we can remove it.

11. Security

We use reasonable technical and organisational measures to protect your personal data. However, no system is completely secure. We cannot guarantee absolute security but we do take data protection seriously and strive to protect your information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Effective date”. Your continued use of the Service after changes have been made will mean you accept the updated policy.

13. Contact

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact me here.