top of page

Cake No Mistake:

Privacy Policy

Last updated: 15 June 2025

At Cake No Mistake, we are committed to protecting your personal data and respecting your privacy in line with the UK GDPR and the EU General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, and safeguard your information when you use our website or services.

1. Who We Are

Cake No Mistake is based in the United Kingdom. If you have questions about how we handle your data, you can contact us via our contact form.

2. What Data We Collect

We may collect and process the following types of personal data:

  • Website Analytics: Basic usage data and browsing behaviour collected via Wix Analytics. This may include personal data such as IP addresses, which are processed by Wix to generate anonymised reports. We do not have access to individual IP addresses in these reports.

  • Newsletter Sign-Up: Name, email address, and preferences such as class interests and experience level.

  • Class Bookings: Name, email address, and phone number.

  • Contact Form: Any information you voluntarily provide, such as your name, email, and message.

  • Online Classes: Audio, video, and display name information if you participate in a recorded session (with prior consent).

  • Email Communications: If you contact us directly or via the contact form, your email address and any information you include in your message will be stored in our Gmail account for correspondence purposes.

  • Email Campaigns: Interaction data such as email opens, click-throughs, unsubscribes, and bounce rates, recorded via our email marketing provider.

  • Blog Comments: Username (which may be a pseudonym), email address, and any message you post.

Note: All payments are processed securely through PayPal. We do not store or have access to your payment details. More details can be found in Section 6.

3. How We Collect Your Data

We collect your data through the following methods:

  • Website Forms: When you sign up for the newsletter, book a class, submit a contact form, or leave a blog comment.

  • Email Correspondence: When you contact us directly via email or reply to messages we've sent, your information is stored in our Gmail account.

  • Participation in Online Classes: When you join a recorded session, your audio, video, and display name may be collected with your prior consent.

  • Cookies and Tracking Technologies: Usage data is collected via Wix Analytics to help us understand how visitors interact with our website. While this may include personal data such as IP addresses, the information is processed by Wix and presented to us in anonymised, aggregate form only. We do not have access to individual IP addresses.

4. Why We Collect Your Data

We collect and use your data for the following purposes:

  • To respond to enquiries submitted via our contact form or sent directly by email.

  • To process and manage class bookings.

  • To send email updates and marketing communications (if you've signed up).

  • To understand website usage and improve our services (via anonymised analytics, with consent).

  • To record online classes (with your consent) for internal use, safeguarding, and dispute resolution.

  • To allow users to comment on blog posts and engage with site content.

5. Legal Basis for Processing

Under the GDPR, we rely on the following lawful bases to process your personal data:

  • Consent: For email marketing, cookies, and class recordings.

  • Contract: To process class bookings and respond to your enquiries.

  • Legitimate Interests: For analytics and improving our website experience, and for recording classes for internal use and safeguarding.

We may use limited segmentation based on user preferences (such as class type interest or class subject interest) to send relevant information via email. We do not use any automated decision-making or profiling processes that have a legal or significant effect on you. All decisions involving your personal data are made by humans.

6. Third-Party Services

We are the data controller for the personal data you provide. We use trusted third-party data processors to help us deliver specific services.
 

The services we use include:

  • Wix – for website hosting, analytics, managing class bookings via Wix Bookings, and collecting newsletter sign-ups via Wix Forms.

  • PayPal – for secure payment processing.

  • Zoom – for delivering online classes and managing class participation.

  • Mailchimp – for sending newsletters and marketing emails, and tracking engagement (such as opens and clicks). Subscriber data may be manually imported from Wix to Mailchimp for this purpose.

  • Google Workspace (Gmail) – for managing email communications securely.

  • PayPal – All payments made through our website are processed securely via PayPal. We do not collect or store your payment card details on our website or servers. When you complete a transaction, certain personal information necessary to process the payment—such as your name, email address, billing address, and purchase details—will be securely shared with PayPal. This is done solely for the purpose of completing your transaction. PayPal acts as a separate data controller for this information and processes your data in accordance with its own Privacy Policy.

  • Consentik – provides the cookie consent management system used on our website to obtain and store your cookie preferences securely. Consentik processes limited data related to your consent choices.

These providers are required to comply with data protection laws and maintain appropriate security measures. Some may store or process data outside the UK/EEA, but only where adequate protections are in place (such as standard contractual clauses or adequacy decisions).

7. Data Sharing and Transfers

We do not sell or share your personal data with any third parties for their own marketing purposes.

Some data may be transferred outside the UK/EEA by third-party services (e.g. Zoom, or Mailchimp), but only to countries with adequate data protection measures in place.

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with legal obligations. Specifically:

  • Personal data related to class bookings, payments, and financial records will be kept for a minimum of 5 years in accordance with UK tax and accounting laws.

  • Newsletter subscription data will be retained until you unsubscribe or withdraw consent.

  • Contact form submissions and enquiry data will be retained for up to 6 years unless further retention is required to resolve ongoing matters.

  • Website analytics data collected via Wix Analytics is retained in anonymised form as per the service provider’s policies.

  • Recorded class sessions are retained for a maximum of two years, usually much less.

​After these periods, your personal data is securely deleted or anonymised to protect your privacy.

9. Your Rights

Under the GDPR, you have the following rights:

  • Right to access your data

  • Right to correct inaccurate data

  • Right to request erasure (“right to be forgotten”)

  • Right to restrict or object to processing

  • Right to data portability

  • Right to withdraw consent at any time

To exercise any of these rights, please contact us via our contact form.

10. Children’s Privacy

Our website is publicly accessible and may be viewed by users of all ages (children will require parental consent). However, our services—including class bookings and online sessions (free or paid)—are strictly intended for adults only and are not available to individuals under the age of 18.

We do not knowingly collect personal data from anyone under 18. If we become aware that we have collected personal information from a minor without appropriate consent, we will take steps to delete that information. If you believe we may have collected such data, please contact us via our contact form.

11. Recorded Classes

Most of our online classes are recorded for internal use, including quality improvement, safeguarding, and dispute resolution. Recordings may capture your image, voice, display name, or other identifying information if you participate.

Students are informed of this in our Class Terms and Conditions, (these will be published in line with class launch dates), before joining a session. Recordings are stored securely and are not shared with class participants.

Recordings are only used for the purposes outlined above, and on occasion, for marketing (with additional notice or consent where appropriate). Recordings are retained for a maximum of two years, though usually much less. You may withdraw your consent at any time, and we will take reasonable steps to delete or anonymise your data from future use where feasible.

12. Cookies

Our website uses cookies to support essential site functionality and to collect anonymised analytics data through Wix Analytics. When you first visit the site, you will be asked to provide your consent for cookies.
You can view our Cookie Policy here.
You can manage or delete cookies at any time through your browser settings.

13. Data Breach Notification

We take the security of your personal data seriously. In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority and affected individuals without undue delay, in accordance with legal requirements.

14. Your Data Protection Rights

If you have concerns about how your data is handled, you can also contact the UK’s Information Commissioner’s Office (ICO) for guidance or to raise a complaint.

15. Updates to This Policy

We may update this Privacy Policy occasionally. Any changes will be posted on this page, with the updated effective date.

16. Contact Us

For questions about this policy or to exercise your data rights, please contact us via our contact form.

bottom of page