Privacy Policy

Last updated: 14 April 2026

1. Who we are

Navigate Through ("we", "our", "us") operates the website at navigate-through.com. We provide online group therapy sessions for people navigating difficult life challenges. You can contact us at hello@navigate-through.com.

2. What data we collect

We collect the following personal data when you use our service:

  • Account data: your name and email address when you register or book a session.
  • Payment data: your booking reference and payment status. Full card details are processed by Revolut and are never stored on our servers.
  • Session data: questions you submit before sessions, messages you send through the platform, and session attendance records.
  • Technical data: your IP address, browser type, and pages visited (via server logs), used for security and debugging only.

3. Legal basis for processing (GDPR)

We process your data under the following legal bases:

  • Contract performance: to deliver sessions you have booked and paid for.
  • Legitimate interest: to operate a secure service, send transactional emails (booking confirmations, reminders), and prevent fraud.
  • Consent: for newsletter emails and non-essential cookies. You may withdraw consent at any time.

4. How we use your data

  • To deliver your booked sessions and send your personal join link.
  • To send booking confirmations and session reminders.
  • To allow therapists to read pre-submitted questions before sessions.
  • To respond to messages you send through your dashboard.
  • To send our newsletter, if you have opted in.

5. Who we share data with

We do not sell your data. We share it only with:

  • Revolut — for payment processing.
  • Brevo (Sendinblue) — for transactional and marketing emails.
  • Zoom — your first name (or anonymous handle) is shared when you join a session.
  • Our hosting provider — servers based in the EU.

6. Data retention

We retain your account and booking data for 3 years after your last session, or until you request deletion. Payment records are kept for 7 years as required by EU financial regulations. Newsletter preferences are retained until you unsubscribe.

7. Your rights (GDPR)

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data ("right to be forgotten").
  • Object to or restrict certain processing.
  • Data portability — receive your data in a machine-readable format.
  • Withdraw consent at any time (this does not affect processing already done).

To exercise these rights, email us at hello@navigate-through.com. We will respond within 30 days.

8. Cookies

We use a single session cookie to keep you logged in. We do not use advertising or tracking cookies. If you sign up to our newsletter, we may use an analytics pixel in emails to see if they were opened — you can disable this by blocking remote images in your email client.

9. Security

Your data is protected by TLS encryption in transit and stored on access-controlled servers. Passwords are hashed using bcrypt and are never stored in plain text. Join links are single-use tokens that expire after use.

10. Changes to this policy

We may update this policy. If changes are significant, we will notify you by email. The current version is always at navigate-through.com/privacy.