Privacy Policy

Privacy Policy

Privacy Policy

Last updated: 25 May 2026

Thank you for choosing to be part of our community at Lore So What LTD ("Company", "we", "us", or "our"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our websites loresowhat.com and analyticsautomation.academy (collectively, the "Sites"), purchase our online courses or coaching services (the "Services"), opt in to our SMS messaging program, or otherwise interact with us.

If you do not agree with the terms of this Privacy Policy, please do not access the Sites or use our Services.

1. CONTROLLER INFORMATION

Data Controller: Lore So What LTD

Registered address: 27 Old Gloucester Street, London WC1N 3AX, United Kingdom

Contact email: loresowhat@gmail.com

We are registered in England & Wales and subject to UK data-protection law (UK GDPR and the Data Protection Act 2018). We are also subject to the EU GDPR for users in the European Economic Area (EEA). For users in the United States, our SMS program is operated in accordance with the Telephone Consumer Protection Act (TCPA) and CTIA messaging guidelines.

2. WHAT PERSONAL DATA WE COLLECT

Identity Data — Full name, job title, company/organisation (if provided).

Contact Data — Email address, postal address, mobile phone number (when you opt in to SMS or provide it on a booking/application form).

Transaction Data — Course or coaching purchases, order numbers, payment status.

Payment Data — Last four digits of card, expiry date, billing address (processed by Stripe Payments UK Ltd; we do not store full card numbers).

Usage Data — Pages viewed, time spent, clicks, referring URLs.

Technical Data — IP address, browser type, device type, operating system.

SMS Consent Data — Date, time, source, and IP address of opt-in; opt-out records; STOP/HELP keyword history; message content and metadata.

User-Generated Content — Forum posts, comments, assignment uploads, testimonials, profile photo (if you choose to provide one).

Marketing Preferences — Opt-in/opt-out status for email and SMS updates.

We do not intentionally collect special-category data (e.g., health or biometric data).

3. HOW WE COLLECT DATA

Direct interactions — when you register, purchase a course, complete a form, opt in to our SMS program, post in our community, or email us.

Automated technologies — via cookies and similar technologies (see Section 4).

Third parties — payment details from Stripe; analytics information from Google Analytics; SMS delivery and consent metadata from Twilio Inc.

4. COOKIES & SIMILAR TECHNOLOGIES

We use cookies and similar tracking technologies to keep you logged in to your account, analyse site traffic and performance through Google Analytics, and remember your preferences (e.g., cookie consent selection).

You can set your browser to refuse all or some browser cookies. If you disable cookies, some parts of the Sites may become inaccessible or not function properly.

5. HOW & WHY WE USE YOUR DATA

Provide and manage the Services (including processing payments, delivering content, issuing certificates) — Lawful basis: Contract.

Respond to enquiries, provide customer support — Lawful basis: Legitimate Interests.

Send administrative emails (purchase confirmations, password resets) — Lawful basis: Contract / Legitimate Interests.

Send SMS messages (sales-call reminders, cohort updates, onboarding, payment confirmations, promotional offers) — Lawful basis: Consent (you opted in to receive SMS messages; you may withdraw at any time by replying STOP).

Showcase testimonials on the Sites or marketing materials — Lawful basis: Consent.

Send marketing emails about new courses, offers — Lawful basis: Consent.

Analyse site usage, improve our content and UX — Lawful basis: Legitimate Interests.

Detect and prevent fraud or security issues — Lawful basis: Legitimate Interests / Legal Obligation.

We will only use your personal data for the purposes listed above unless we reasonably consider that we need to use it for another reason that is compatible with the original purpose.

5A. SMS / TEXT MESSAGING PRIVACY

If you opt in to receive SMS messages from us (the "SMS Program"), the following privacy terms apply in addition to the rest of this Privacy Policy. Full SMS terms are set out in our Terms and Conditions, Section 2A.

Mobile Information Sharing. No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. Information sharing with subcontractors in support services, such as customer service or compliance recordkeeping, is permitted. All other categories of personal information exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.

What We Collect via SMS. When you opt in to our SMS Program we collect: your mobile phone number, the date and time you opted in, the source of your opt-in (form, sales call, or keyword), the IP address used to submit consent (where applicable), and a record of the messages exchanged between you and us.

How We Use SMS Data. We use mobile phone numbers and SMS data to: send the messages described in our SMS Terms; process opt-outs; respond to HELP requests; maintain consent records as required by US telecommunications law and the TCPA; and prevent fraud and abuse.

How to Opt Out. You may opt out of SMS messages at any time by replying STOP to any message we send. We retain a record of your opt-out request for compliance purposes after you opt out.

SMS Retention. We retain SMS opt-in consent records for a minimum of four (4) years after your last interaction with our SMS Program, or as otherwise required by law. Message content and metadata is retained for 18 months and then deleted.

SMS Service Providers. We use Twilio Inc. as our SMS service provider. Twilio processes message delivery under its own privacy policy and a data-processing agreement with us. Twilio is not authorised to use your mobile information for its own marketing purposes.

6. DISCLOSURES & INTERNATIONAL TRANSFERS

We share data only when necessary:

Stripe Payments UK Ltd — Secure payment processing. Safeguards: UK & EU Standard Contractual Clauses (SCCs).

Google LLC (Analytics) — Site analytics. Safeguards: SCCs + IP-anonymisation.

Twilio Inc. — SMS message delivery and consent recordkeeping. Safeguards: SCCs + Data Processing Agreement.

Professional advisers (lawyers, auditors) — Compliance, accounting. Safeguards: confidentiality agreements.

Regulators, courts, law-enforcement — Legal obligations. Data disclosed only when required.

Some partners are based outside the UK/EEA. Where we transfer data internationally, we rely on an adequacy decision or approved safeguards such as SCCs.

7. DATA RETENTION

Student records & purchases: 7 years after your last transaction (tax/accounting obligations).

Marketing emails: until you unsubscribe or withdraw consent.

SMS opt-in consent records: 4 years after your last interaction (TCPA/compliance obligation).

User-generated content: retained while your account is active; you may delete content or request deletion.

Analytics logs: 26 months (Google Analytics default).

We will securely delete or anonymise data that is no longer required.

8. YOUR PRIVACY RIGHTS

Under the UK GDPR/EU GDPR you have rights to:

Access the personal data we hold about you.

Request correction of inaccurate data.

Request erasure ("right to be forgotten") in certain circumstances.

Restrict or object to processing.

Port your data to another provider.

Withdraw consent at any time (for marketing, SMS, or testimonials).

Lodge a complaint with the UK Information Commissioner's Office (ICO).

To exercise any rights, email loresowhat@gmail.com.

9. SECURITY

We use industry-standard technical and organisational measures, including HTTPS encryption, secure server infrastructure, access controls, and regular backups. However, no online service is fully secure, so we cannot guarantee absolute security.

10. CHILDREN'S PRIVACY

Our Sites and Services are intended for users aged 18 and over. We do not knowingly collect data from minors. If we learn that we have collected personal data from a person under 18, we will delete it.

11. THIRD-PARTY LINKS

Our Sites may contain links to external websites. We do not control, and are not responsible for, the privacy practices of third-party sites. We encourage you to read their privacy policies.

12. CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time. Any changes will be posted on this page with a revised "Last updated" date. Your continued use of the Sites after we post changes constitutes acceptance of those changes.

13. CONTACT US

Questions or requests concerning this Privacy Policy:

Lore So What LTD, 27 Old Gloucester Street, London WC1N 3AX, UK

Email: loresowhat@gmail.com

© 2024 Lore So What LTD. All rights reserved.

Analytics & Automation Academy

A 6-week, live cohort experience that hands you the proven technical, business, and automation systems to build a strong professional brand – so you can land offers and get paid to do work you love.

© 2026 Analytics & Automation Academy | All Rights Reserved

Analytics & Automation Academy

A 6-week, live cohort experience that hands you the proven technical, business, and automation systems to build a strong professional brand – so you can land offers and get paid to do work you love.

© 2026 Analytics & Automation Academy | All Rights Reserved

Analytics & Automation Academy

A 6-week, live cohort experience that hands you the proven technical, business, and automation systems to build a strong professional brand – so you can land offers and get paid to do work you love.

© 2026 Analytics & Automation Academy | All Rights Reserved