June 2026
1. About This Policy
This privacy policy applies to all personal data collected and processed by Rashad Issa trading as the Q Strategy in connection with the Everything DiSC® Leadership Cohort and any related services, website usage, or communications. By registering for a cohort place or contacting us, you confirm that you have read and understood this policy.
The Q Strategy is operated as a sole trader and acts as the data controller for all personal information processed under this policy. We are based in the United Kingdom.
2. Who We Are
2.1 Trading name: the Q Strategy
2.2 Operated by: Rashad Issa
2.3 Country of establishment: United Kingdom
2.4 Contact for all data matters: via theqstrategy.com/contact-us
3. What Personal Data We Collect
We only collect personal data that is genuinely necessary to deliver our services:
| Category | Examples | Purpose |
|---|---|---|
| Contact information | Name, email address, phone number, job title, organisation | To communicate with you about your cohort place and related services |
| DiSC assessment data | Assessment responses, profile results, style reports | To deliver your Everything DiSC® profile and facilitate the cohort |
| Billing information | Invoice name, billing address, payment confirmation reference | To process payments and meet legal financial obligations |
| Communication records | Emails, session notes, feedback provided | To provide continuity of service and follow-up support |
3.1 We do not collect sensitive special-category data such as health information, racial or ethnic origin, or religious beliefs unless you explicitly share such information in a coaching context, in which case it is treated with the highest level of confidentiality and used solely to support your learning.
3.2 We do not collect or store payment card details. Any payment processing is handled directly by our payment provider.
3.3 Our website is hosted by WordPress.com, which collects basic anonymised visitor data such as page views as part of standard site operation. This data is not personally identifiable and is not accessible to us in individual form. WordPress.com’s own privacy policy governs this activity.
4. Our Legal Basis for Processing
4.1 Contract performance: processing that is necessary to deliver the cohort service you have registered and paid for, including issuing your DiSC profile code and facilitating your session.
4.2 Legal obligation: retaining financial and billing records as required by HMRC and applicable tax authorities.
4.3 Legitimate interests: sending follow-up communications and improving our services based on feedback, where your interests and rights are not overridden.
4.4 Consent: for any marketing communications or optional data uses not covered above. You may withdraw consent at any time by contacting us via the details in clause 11.
5. How We Use Your Data
5.1 Administering your cohort registration and confirming your place.
5.2 Issuing and facilitating your Everything DiSC® Workplace profile assessment.
5.3 Delivering the Leadership Cohort session, whether online, in person, or in hybrid format.
5.4 Sending communications relevant to your booking, including any changes to dates, format, or session content.
5.5 Processing payment and issuing invoices.
5.6 Meeting our legal and regulatory obligations.
5.7 We do not sell, rent, or trade your personal data to any third party. We do not use your data for automated decision-making or profiling that produces legal or similarly significant effects on you.
6. Third Parties and Data Processors
6.1 To deliver our services, we share your contact details with the following trusted providers who are bound by their own data protection obligations:
Titan Email (via WordPress.com): business email communications.
WordPress.com: website hosting and contact form submissions.
6.2 As part of the cohort, you will be issued with an Everything DiSC® profile code which requires you to access Wiley’s platform directly. Your use of that platform is governed by Wiley’s own privacy policy.
7. How Long We Keep Your Data
7.1 Cohort registration and coaching records: up to 3 years after your last engagement with the Q Strategy.
7.2 Financial and billing records: 7 years from the date of the transaction, as required by HMRC.
7.3 Marketing communications: until you withdraw consent or opt out.
When data is no longer required, it is securely deleted or permanently anonymised. We conduct an annual review of all held data.
8. How We Protect Your Data
8.1 Password-protected and encrypted storage for all client files and records.
8.2 Access to personal data is restricted to the sole practitioner only.
8.3 In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner’s Office within 72 hours and inform affected individuals without undue delay.
9. Your Rights
You have the following rights in relation to your personal data. To exercise any of these rights, please contact us using the details in clause 11. We will respond within 30 days and will not charge a fee for reasonable requests.
9.1 Right of access: you may request a copy of the personal data we hold about you.
9.2 Right to rectification: you may ask us to correct any inaccurate or incomplete personal data.
9.3 Right to erasure: you may request deletion of your personal data where there is no compelling reason for us to continue holding it.
9.4 Right to restriction: you may ask us to limit how we process your data in certain circumstances.
9.5 Right to data portability: you may request that we provide your data in a structured, commonly used, machine-readable format.
9.6 Right to object: you may object to processing carried out on the basis of legitimate interests or for direct marketing purposes.
9.7 Right to withdraw consent: where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
9.8 Right to complain: you have the right to lodge a complaint with the Information Commissioner’s Office at ico.org.uk
10. Changes to This Policy
10.1 We may update this policy from time to time to reflect changes in our practices, services, or legal obligations. The date at the top of this page will always reflect the most current version.
10.2 Where changes are material, we will notify active clients by email with a minimum of 14 days’ notice before the updated policy takes effect.
11. Contact
If you have any concerns about our use of your personal information, you can make a complaint to us via theqstrategy.com/contact-us
If you remain unhappy with how we have used your data after raising a complaint with us, you can also complain to the ICO.
Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Helpline: 0303 123 1113
Website: ico.org.uk/make-a-complaint
the Quality strategy 