top of page

Privacy Policy – A Good Day VA

 

Introduction

A Good Day VA (“we”, “us”, or “our”) is committed to protecting personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect personal information in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

Who We Are

A Good Day VA provides virtual assistant services to business clients.

 

What Personal Data We Collect

We may collect and process the following personal data:

  • Names and contact details

  • Postal addresses

  • Records of meetings and decisions

  • Call recordings

  • Information relating to compliments or complaints


We do not intentionally collect special category data unless it is voluntarily provided and strictly necessary for service delivery.

 

Why We Collect Personal Data

We collect and use personal information for the following purposes:

  • To provide virtual assistant services

  • To communicate with clients and manage working relationships

  • To deliver service updates and marketing communications (where consent has been given)

  • To improve and shape our services for current and future clients

 

Lawful Bases for Processing

We process personal data under one or more of the following lawful bases:

  • Consent – where you have given clear permission

  • Contract – where processing is necessary to deliver agreed services

  • Legitimate interests – where processing supports service delivery, business administration, and service improvement, and does not override your rights or freedoms

 

Legitimate Interests

Our legitimate interests include maintaining effective client relationships, delivering services efficiently, and reviewing feedback to improve future offerings. Only the minimum data necessary is processed, and appropriate safeguards are applied.

 

Where Personal Data Comes From

Personal data is collected directly from individuals, typically clients or prospective clients, through email, calls, or service communications.

 

Sub-Processors and Systems

We use trusted third-party systems to support our operations. These act as data processors and are required to handle data securely and lawfully:

  • Xero / Monzo – accounting and financial management

  • Gmail – email communications

  • WhatsApp – client communications

  • Flodesk (planned) – email marketing

  • Notion – task and project management

  • Linktree – link management for online presence

  • Stripe – payment processing

  • Calendly – scheduling and appointment booking

 

Data Sharing

We do not routinely share personal data with third parties. Data is only shared where necessary to deliver services, comply with legal obligations, or with your explicit consent. We do not sell personal data.

 

Data Retention

Personal data is retained only for as long as necessary to provide services, meet contractual obligations, or comply with legal and accounting requirements. Data is securely deleted or anonymised when no longer required.

 

International Data Transfers

Some of the systems we use may process data outside of the UK. Where international transfers occur, appropriate safeguards are in place, such as:

  • UK adequacy decisions

  • Standard Contractual Clauses (SCCs)

  • Other lawful transfer mechanisms recognised under UK GDPR

 

Data Security

We take appropriate technical and organisational measures to protect personal data, including:

  • Secure devices and accounts

  • Password protection and multi-factor authentication where available

  • Access limited to what is necessary for service delivery

Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request erasure (where legally permitted)

  • Restrict or object to certain processing

  • Withdraw consent at any time

  • Lodge a complaint with the supervisory authority


Requests can be made using the contact details above.

How to Complain

If you have concerns about how your personal data is handled, please contact us first so we can resolve the issue.


You also have the right to complain to the Information Commissioner’s Office (ICO):

Policy Review

This Privacy Policy is reviewed periodically and updated where required to reflect changes in law or business practices.

bottom of page