Privacy Policy

Last updated: 14th September 2025

This Privacy Policy explains how Tinnihush Ltd (“we”, “us”, “our”) collects, uses, and protects your personal data when you use our website (tinnihush.com) and the Tinnihush mobile application (“App”). We are committed to protecting your privacy and complying with the UK GDPR and Data Protection Act 2018.

1. Information We Collect

  • Account information: email address and password (if applicable) when you register an account.
  • Programme usage data: progress through the audio hypnotherapy programme, session completion, feedback.
  • Device data: device type, operating system, unique identifiers, app version, crash logs.
  • Payment data: payments are processed via secure third-party providers (e.g. Stripe, Apple App Store, Google Play). We do not store full payment card details.
  • App permissions:
    • Microphone: only if you choose to record feedback or use in-app audio tools. Audio is not accessed without consent.
    • Local storage: to save session progress and preferences offline.
    • Notifications: optional push notifications to remind you of sessions.

2. How We Use Your Information

  • To deliver the audio hypnotherapy programme through the App.
  • To track your progress and personalise your experience.
  • To process payments and manage subscriptions.
  • To provide customer support and respond to enquiries.
  • To improve the App, Website, and overall user experience.
  • To send service updates, reminders, or important notices (you can opt out of marketing communications).

3. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contract: to provide the Programme you purchase.
  • Consent: where you agree to optional features such as notifications, microphone use, or marketing.
  • Legitimate interests: to improve our services and ensure security.
  • Legal obligations: where we must retain data for tax or regulatory purposes.

4. Sharing of Information

We do not sell your personal data. We may share data only with:

  • Service providers: hosting, analytics, email, and payment processors (all bound by data protection agreements).
  • Legal authorities: if required by law or to protect rights, safety, or prevent fraud.

5. Data Storage & Retention

Your data is stored securely on servers within the UK or EEA. We retain your data only as long as necessary to provide the Programme or comply with legal obligations. You may request deletion of your account at any time.

6. International Transfers

If data is transferred outside the UK/EEA, we ensure adequate safeguards (e.g. standard contractual clauses).

7. Security

We implement technical and organisational measures to protect your data, including encryption and secure access controls. However, no online system is 100% secure.

8. Your Rights

Under UK GDPR you have rights to:

  • Access your data
  • Correct inaccuracies
  • Request deletion
  • Restrict or object to processing
  • Data portability
  • Withdraw consent (where applicable)

To exercise these rights, contact us at support@tinnihush.com.

9. Children’s Privacy

The Programme is intended for adults aged 18 and over. We do not knowingly collect data from children.

10. Mobile App Store Terms

If you download the App from the Apple App Store or Google Play, please note:

  • Apple and Google are not responsible for the App or its content.
  • Payments made through the App Store are subject to Apple or Google’s terms of service.
  • App Store providers may process limited data for account and purchase purposes in accordance with their privacy policies.

11. Changes to This Policy

We may update this Privacy Policy to reflect changes in law or our practices. We will notify you through the App or Website when updates are made.

12. Contact

If you have questions or complaints, please contact:

Tinnihush Ltd.
Email: support@tinnihush.com

You also have the right to complain to the UK Information Commissioner’s Office (ICO): ico.org.uk.