Privacy Policy

Last updated: 25 May 2026

This Privacy Policy explains what information The Body Engineer ("we", "us") collects when you visit our website and how we use it. We're based in the United Kingdom and follow the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Short version: right now this website is a simple brochure site. We don't run forms, analytics, or advertising pixels on it. The only data anyone sees is what our hosting provider's server logs capture automatically (IP address, browser type) for security and uptime. We don't sell your data. We don't share it for advertising. If that changes, we'll update this page first.

1. Who runs this site

The Body Engineer
Coach: Mikey
Operating area: Leeds, Morley, Batley, Wakefield (in-person) and online worldwide
Contact: [ADD CONTACT EMAIL]

If you'd like to update or amend this, replace the bracketed placeholder with your registered business contact details before publishing.

2. What data we collect

2.1 Information you give us directly

Currently this website does not contain any forms or sign-up mechanisms. If you contact us by email or social media using links on this site, you give us your email address or social-network identifier voluntarily, and we use it only to reply to you.

2.2 Information our hosting provider captures automatically

Like every website on the internet, our hosting provider (Cloudflare Pages) records technical information about each visit:

Your IP address (briefly, for security and DDoS protection)
Your browser type and operating system
The page you visited and when
The page that referred you (if any)

This is standard server-log activity needed to deliver the site, protect it from abuse, and keep it online. We do not link these logs to individual people. Cloudflare's own privacy policy explains how they handle this data: cloudflare.com/privacypolicy.

2.3 Cookies

We do not currently set any of our own cookies on your device. We don't run analytics or advertising trackers. If we add features that need cookies in future, we'll show you a cookie banner with a clear choice before any non-essential cookies are set.

3. Why we process this data

The lawful basis under UK GDPR for the server-log data we receive is legitimate interests (Article 6(1)(f)) — specifically the legitimate interest in delivering the website securely and keeping it online. The data is held briefly by our hosting provider and is not used for marketing.

If you email us, the lawful basis for processing your message is legitimate interests (replying to a person who has reached out to us).

4. Who we share data with

We don't sell or share your data for advertising. The only third party that sees the technical data described above is:

Cloudflare, Inc. — our hosting provider. They process server-log data on our behalf.

If you click an external link on our site (such as our Instagram profile), the destination site will process data according to its own privacy policy, which we don't control.

5. How long we keep data

Server logs: retained by Cloudflare for a short period (typically days, not months) and then deleted.
Email correspondence: we keep emails you send us for as long as the conversation is active, plus a reasonable period after that for our records. You can ask us to delete your messages at any time.

6. Your rights under UK GDPR

You have the following rights regarding any personal data we hold about you:

Right of access — ask us what data we hold about you
Right to rectification — correct inaccurate data
Right to erasure ("right to be forgotten") — ask us to delete data we hold
Right to restrict processing — ask us to limit how we use your data
Right to data portability — receive your data in a portable format
Right to object — object to processing based on legitimate interests

To exercise any of these rights, email us at the address in section 1. We'll respond within one month.

7. Complaints

If you're unhappy with how we've handled your data, you can complain to the UK Information Commissioner's Office (ICO):

Website: ico.org.uk
Helpline: 0303 123 1113

8. International transfers

Our hosting provider (Cloudflare) is a US-based company with infrastructure worldwide. Where data leaves the UK or EEA, it is protected by standard contractual clauses or equivalent transfer mechanisms approved under UK GDPR.

9. Changes to this policy

If we add forms, analytics, payments, or any feature that collects more personal data than the current site does, we'll update this Privacy Policy first and update the "Last updated" date at the top. Material changes will also be flagged on the homepage where reasonable.

10. Contact

Privacy questions: [ADD CONTACT EMAIL]