Privacy Policy

Last updated: 11/03/2026

1. Overview

This Privacy Policy explains how we collect, use, disclose, and protect personal data when you visit our Site, apply for an OS Diagnosis, or contact us. We aim to comply with applicable privacy laws, including UK GDPR and the Data Protection Act 2018 and the UAE Personal Data Protection Law (PDPL).

2. What data we collect

Depending on how you interact with us, we may collect:

  • Identity & contact data: name, email, phone, company name, role.

  • Business context data: revenue stage, lead sources, tools used (e.g., CRM), process details you share in the OS Diagnosis.

  • Communications data: messages, call notes, support requests.

  • Technical data: IP address, device/browser info, pages visited, approximate location (from IP), cookies (see Cookie Policy).

  • Marketing preferences: opt-in/opt-out choices.

3. How we collect data

We collect data when you:

  • fill out forms (OS Diagnosis questionnaire, contact forms);

  • book or attend calls/meetings;

  • email or message us;

  • browse our Site (via cookies and analytics).

4. Why we use your data (purposes)

We use personal data to:

  • deliver OS Diagnosis and related services;

  • communicate with you about your application, scheduling, and service delivery;

  • improve our Site and user experience;

  • maintain security and prevent fraud/abuse;

  • comply with legal obligations.

5. Legal bases (UK)

Where UK GDPR applies, our lawful bases may include:

  • Consent (e.g., certain cookies; optional marketing);

  • Contract / steps prior to contract (e.g., responding to your application and providing services);

  • Legitimate interests (e.g., improving services, security, preventing abuse), balanced against your rights ;

  • Legal obligation (e.g., tax or compliance where applicable).

6. Sharing your data

We may share data with:

  • Service providers (e.g., CRM, email, scheduling, analytics) acting as processors;

  • Professional advisers (legal/accounting) where necessary;

  • Authorities where required by law.
    We do not sell personal data to third parties.

7. International transfers

We may transfer data between the UK, UAE, and other countries where our providers operate. Where required, we use appropriate safeguards (e.g., contractual protections and vendor due diligence).

8. Retention

We retain data only as long as needed for the purposes above, including:

  • OS Diagnosis records: typically [12–24 months] unless you become a client or request deletion (subject to legal retention obligations).

  • Analytics: per tool settings.

9. Security

We use reasonable technical and organizational measures to protect your data, including access controls, limited permissions, and secure tooling. No system is 100% secure; you use online services at your own risk.

10. Your rights

Depending on jurisdiction, you may have rights to:

  • access, correct, delete, or restrict processing;

  • object to processing;

  • data portability (where applicable);

  • withdraw consent (where processing relies on consent).
    To exercise rights, contact help@winyourclients.com.

UK users may also complain to the Information Commissioner’s Office (ICO).

11. Marketing

We only send marketing where we have consent or another lawful basis. You can opt out at any time using the unsubscribe link or by contacting us.

12. Contact

Email: help@winyourclients.com.

Create a free website with Framer, the website builder loved by startups, designers and agencies.