← Back

Privacy Notice

Last updated: 15 May 2026

1. Who we are

The Clinic Standard is operated by Denita Lim, a sole proprietor (the "data controller"). We are responsible for the personal data we collect about you through the Service.

2. What we collect & why

  • Booking data (name, email) — to confirm your purchase, send your booking link, and contact you about your session. Legal basis: contract.
  • Session content (notes, materials shared during your call, optional recording) — to deliver and follow up on your engagement. Legal basis: contract.
  • Support communications (messages you send us) — to respond and improve the Service. Legal basis: legitimate interest.
  • Usage & device data (IP address, browser, pages viewed) — for security, fraud prevention, and product improvement. Legal basis: legitimate interest.
  • Marketing email (only if you opt in) — to send occasional updates. Legal basis: consent (you can withdraw at any time).

Payment-card details are collected and processed directly by Stripe, our payment processor. We never see or store your full card number.

3. Who we share data with

  • Stripe — payment processor, handles checkout, billing, and card data.
  • Hosting & infrastructure providers — to operate the Service securely.
  • Email delivery providers — to send transactional and (if you opted in) marketing email.
  • Analytics providers — to understand product usage in aggregate.
  • Professional advisers (legal, accounting) and authorities where required by law.

We do not sell personal data.

4. International transfers

Some of our service providers are located outside your country. Where data is transferred internationally we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

5. Retention

We keep your account and learning data for as long as your account is active and for a reasonable period afterwards to handle support and legal obligations. Billing records are retained as required by tax law (typically 5–7 years). When data is no longer needed it is deleted or anonymised.

6. Your rights

Subject to your local law, you have the right to:

  • access the personal data we hold about you;
  • correct inaccurate data;
  • request deletion of your data;
  • restrict or object to certain processing;
  • request a portable copy of your data;
  • withdraw consent for marketing at any time;
  • lodge a complaint with your local data-protection authority.

To exercise these rights, email d.lucaslim@gmail.com. We aim to respond within 30 days.

7. Security

We use appropriate technical and organisational measures including encryption in transit, hashed passwords, role-based access controls, and database row-level security. No system is perfectly secure; please use a strong, unique password.

8. Cookies

We use essential cookies to keep you signed in and to remember preferences. We may use limited analytics cookies to understand how the Service is used. You can clear or block cookies in your browser, but some features may not work without them.

9. Changes

We may update this notice. Material changes will be communicated via the Service or email. The "Last updated" date above reflects the current version.

10. Contact

Privacy questions: d.lucaslim@gmail.com.