Privacy Policy

Last updated: 7 July 2026

This privacy policy explains how Janine Jenkins Coaching (“I”, “me”, “Janine Jenkins”) collects, uses, and protects your personal information when you visit undotheglue.com (the “Site”) or get in touch with me through it. It is written to comply with the EU General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA), and the California Privacy Rights Act (CPRA).

1. Who I am

The Site is operated by Janine Jenkins, a sole trader based in California, United States, doing business as Janine Jenkins Coaching.

If you have any questions about this policy or want to exercise your privacy rights, you can reach me at:

Email: [email protected]

I am the data controller for the personal information described in this policy.

2. What personal information I collect, and why

I collect only the information needed to run my coaching practice and respond to your enquiries. Specifically:

a) Contact form

Every coaching page on the Site has a contact form, powered by Jetpack. When you use it I collect:

  • Your name
  • Your email address
  • Whatever you write in the message field

Why: so I can read your message and reply personally. I read every message myself; nothing on this site routes your details through an automated booking system.

b) Newsletter signup

The footer of every page has a newsletter signup that connects to my mailing-list provider, Listmonk, hosted at listmonk.undotheglue.com. When you subscribe I collect:

  • Your email address

Why: so I can send you the occasional update or reflection. You can unsubscribe at any time using the link in any email I send, or by emailing [email protected].

c) Automatic technical data

When you visit the Site, certain information is created automatically by the systems that deliver it to you. This typically includes:

  • Your IP address
  • Browser type and version
  • Operating system
  • Pages visited and approximate time of visit

Why: for site security (Cloudflare CDN), spam protection (Akismet and Jetpack), and aggregate analytics (Google Site Kit). I do not use this information to identify you personally, and I do not share it with advertisers.

3. Cookies

The Site uses a small number of cookies. A cookie is a tiny text file stored on your device by your browser.

The cookies set by the Site fall into these categories:

  • Essential cookies — required for the Site to work (for example, your newsletter subscription state, or Cloudflare’s bot-detection cookie). These are set automatically and cannot be turned off.
  • Analytics cookies — set by Google Site Kit (Google Analytics) to measure how visitors use the Site. You can opt out at any time using your browser’s privacy settings or by installing the Google Analytics Opt-out Browser Add-on.

I do not use advertising or retargeting cookies.

4. Who I share your information with

I do not sell, rent, or trade your personal information. I share it only with the service providers I use to run my practice, and only the minimum they need to do their job:

  • Automattic / Jetpack — processes contact form submissions on my behalf (privacy policy: automattic.com/privacy).
  • Listmonk (self-hosted at listmonk.undotheglue.com) — stores newsletter subscribers and sends emails.
  • Cloudflare — provides the content delivery network, DNS, and email routing that keeps the Site online and routes my email. Cloudflare may process IP addresses as part of its security services.
  • Google (Site Kit / Google Analytics) — provides aggregate traffic analytics only.
  • Akismet — spam filtering for form submissions.

Some of these providers are based in the United States. Where required by GDPR / UK GDPR, I rely on the European Commission’s Standard Contractual Clauses (SCCs) to transfer your information lawfully.

5. How long I keep your information

  • Contact form messages: kept for 12 months after our last conversation, then deleted.
  • Newsletter subscribers: kept until you unsubscribe, after which your email is removed from my active list within 30 days.
  • Server logs and analytics: kept for the standard retention period set by each provider (typically 13–26 months for analytics, 7–30 days for security logs).

6. Your rights

If you are in the EU, UK, or another jurisdiction covered by GDPR

You have the right to:

  • Access the personal information I hold about you
  • Correct any information that is wrong or incomplete
  • Delete your information (“right to be forgotten”)
  • Restrict or object to certain types of processing
  • Port your information to another service in a machine-readable format
  • Withdraw consent at any time, where processing is based on consent (for example, newsletter signup)
  • Lodge a complaint with your local data protection authority

If you are a California resident (CCPA / CPRA)

You have the right to:

  • Know what personal information I collect, use, share, or sell (I do not sell personal information)
  • Delete personal information I have collected from you
  • Correct inaccurate personal information
  • Limit the use of sensitive personal information (I do not collect sensitive personal information)
  • Non-discrimination for exercising your rights

How to exercise any of these rights

Email [email protected] with the subject line “Privacy request” and tell me what you’d like me to do. I will respond within 30 days. To protect your information, I may ask for proof of identity before acting on a request.

7. Children

The Site is intended for adults. I do not knowingly collect personal information from anyone under the age of 16. If you believe I have collected information from a child under 16, please email [email protected] and I will delete it.

8. Changes to this policy

I may update this policy from time to time. When I do, I will revise the “Last updated” date at the top. Material changes will be highlighted on the home page for at least 30 days.

9. Contact

Janine Jenkins
Janine Jenkins Coaching
Email: [email protected]