Privacy Policy

Hilarious-ish GDPR Privacy Policy (with serious intent!)

Welcome to our delightfully quirky, yet legally compliant, GDPR Privacy Policy, provided by Mrs. Speech Online. We're committed to protecting your data with the seriousness of a seasoned SLP tackling a tricky articulation goal. So, grab a cup of tea, sit back, and prepare to have your privacy protected with both a smile and proper procedure.

1. Introduction

Here at Mrs. Speech Online, we take your privacy as seriously as a penguin trying to fly, but with much more success! Rest assured, we’re not here to sell your data to aliens or spam you with cat memes (unless you've explicitly signed up for them, and then, only the best ones!). As an SLP, I am committed to treating your privacy with the utmost seriousness, in line with my professional obligations, including HIPAA training where applicable.

2. What Data We Collect & Why (The Nitty-Gritty)

We collect only the most essential data needed to provide you with our fabulous services and operate our website legally and effectively. This may include:

• Identity Data: Your name, email address.
  • Purpose: To deliver newsletters you've subscribed to, send you freebies, respond to your inquiries, and manage your account.
  • Legal Basis: Consent (for subscriptions/freebies), Legitimate Interest (for responding to inquiries).
• Technical Data: Internet protocol (IP) address, browser type and version, time zone setting and location, operating system and platform, and other technology on the devices you use to access this website.
  • Purpose: To ensure our website functions correctly, analyze website traffic to improve user experience, and protect against security threats.
  • Legal Basis: Legitimate Interest (for website administration, security, and analysis).
• Usage Data: Information about how you use our website, products, and services (e.g., pages visited, time spent on pages, links clicked).
  • Purpose: To understand how our content is used, improve our offerings, and personalize your experience.
  • Legal Basis: Legitimate Interest (for website improvement and marketing analysis).
• Marketing & Communications Data: Your preferences in receiving marketing from us and your communication preferences.
  • Purpose: To manage your preferences and send you relevant communications.
  • Legal Basis: Consent (for direct marketing).

We do not collect sensitive data (like health information, race, religious beliefs, etc.) through our website forms or analytics, unless explicitly provided by you for a specific, pre-agreed service where we have a legal basis to do so (e.g., if you become a client and provide such information directly and securely for therapy services, which would be covered by a separate, specific client agreement). We absolutely do not need to know your favorite flavor of ice cream... unless you're offering!

3. How We Use Your Data (The Purposeful Part)

We promise to use your data only for legitimate, transparent purposes, not for plotting world domination or training squirrels to do our bidding (unless they consent, of course). Specifically, we use your data for:

• Providing and delivering services: Fulfilling your requests for freebies, or information.
• Website management: Ensuring our website is stable, secure, and user-friendly.
• Communication: Responding to your questions, sending important updates, and managing subscriptions.
• Improvement: Analyzing how our services are used to make them even more fabulous.
• Marketing: Sending you relevant news, offers, and content only if you have opted in.

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

• Where we have your clear consent.
• Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
• Where we need to comply with a legal obligation.

4. Cookies (The Digital Kind, Not Grandma's Recipe)

We love cookies! But not the kind that gets stuck in your computer and steals your grandma’s secret recipe (we promise!). Our website uses cookies and similar tracking technologies (like pixels or web beacons) to enhance your Browse experience, analyze site traffic, and understand user behavior.

• What are cookies? Small text files placed on your device.
• What do they do? They help our website remember your preferences, track site usage, and serve relevant content.
• Your Control: You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

5. Third Parties (Our Trusted Sidekicks & The Giants They Work With)

We might share your data with third-party service providers, but only the ones we trust more than our office cactus – and who are contractually obligated to keep your data safe and not use it for anything nefarious, like inventing a robot army. These third parties help us operate our website, deliver services, and understand how our site is used. They generally act as "data processors" on our behalf.

Common types of third parties we might share data with include:

• Website Hosting & Platform Providers: We use Google Blogger for our website platform. Google collects data related to your use of the platform (as the blog administrator) and, as the host, collects basic server log data from visitors.
• Domain Management: We use Cloudflare for domain management, including DNS services and security features. Cloudflare may process network traffic data (including IP addresses) to provide these services and protect our website from malicious activity. You can review Cloudflare's privacy policy at https://www.cloudflare.com/privacypolicy/.
• Email Service & Freebie Hosting: We use MailerLite to manage our email subscriptions, send newsletters, and host our freebie files. When you subscribe or access a freebie, your name and email address (and potentially other data you provide) are processed by MailerLite. You can review MailerLite's privacy policy at https://www.mailerlite.com/legal/privacy-policy.
• Analytics Providers: We use Google Analytics to understand how users interact with our website. Google Analytics collects data such as your IP address (often anonymized), browser type, pages visited, and time spent on pages. This helps us improve our site and content. You can learn more about how Google uses data collected via Google Analytics here: https://policies.google.com/technologies/partner-sites.
• Advertising Partners (Future): In the future, we may use advertising services like Google AdSense or other ad networks. When these services are implemented, they may collect data through cookies and similar technologies (e.g., Browse activity, demographics, interests) to serve personalized ads. Google's use of advertising cookies enables it and its partners to serve ads to your users based on their visit to your sites and/or other sites on the Internet. You can find more information on Google's advertising policies here: https://policies.google.com/technologies/ads.
• E-commerce Platforms/Payment Processors (Future): If we introduce direct product sales on this site in the future, we would use e-commerce platforms and payment processors (e.g., Teachers Pay Teachers, Amazon, PayPal, Square. These services would collect data necessary for processing transactions.

We only share the minimum necessary data with these trusted third parties for them to perform their specific functions, and they are required to protect your data in accordance with GDPR standards.

6. International Transfers (Your Data's Passport)

We operate globally, so your personal data may be stored and processed in countries outside of your own, including the United States, where data protection laws may be different from those in your jurisdiction.

Whenever we transfer your personal data out of the European Economic Area (EEA), we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

• We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
• Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
• Where providers are based in the US, we may transfer data to them if they are part of the EU-US Data Privacy Framework (or equivalent successor framework) which requires them to provide similar protection to personal data shared between the EU and the US.

7. Your Rights (You're the Boss!)

You have mighty rights when it comes to your data. Just don't ask us to delete that embarrassing photo from the office holiday party – we promise not to share it with anyone... probably. You have the right to:

• Request access to your personal data.
• Request correction of your personal data.
• Request erasure of your personal data.
• Object to processing of your personal data.
• Request restriction of processing your personal data.
• Request transfer of your personal data.
• Withdraw consent at any time where we are relying on consent to process your personal data.

To exercise any of these rights, please contact us using the details in Section 10. We will respond to all legitimate requests within one month.

8. Data Security (Our Digital Fort Knox)

We’ve employed the finest team of cybernetic ninjas (okay, no actual ninjas, but serious security measures!) to protect your data from accidental loss, unauthorized access, alteration, or disclosure. We implement robust technical and organizational measures to protect your personal data from hackers, trolls, and overly curious squirrels. Any data collected is kept safe by our trusted third-party service providers who have their own robust security protocols in place (see Section 5).

9. Data Retention (Not Forever, We Promise!)

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

10. Contact Us (We're Here for You!)

If you have any questions, concerns, or hilarious jokes you want to share, feel free to reach out to our friendly support team. We promise to respond faster than a cheetah chasing a gazelle (unless it’s a really lazy cheetah).

You can contact us using the form in the side gadgets.

You also have the right to make a complaint at any time to the relevant supervisory authority for data protection issues (e.g., the Information Commissioner's Office in the UK). We would, however, appreciate the chance to deal with your concerns before you approach the supervisory authority, so please contact us in the first instance.

11. Changes to this Policy (Keeping You in the Loop)

We reserve the right to change this policy at any time, but rest assured, we’ll notify you faster than you can say “supercalifragilisticexpialidocious” (or "puttikuh" in my line of work!). Any changes will be posted on this page with a revised "Last Updated" date. We encourage you to review this policy periodically.

By using our services, you agree to be bound by this delightfully humorous-yet-compliant GDPR Privacy Policy. Thanks for trusting us with your data – we promise to do our very best to protect it!

Last Updated: June 13, 2025