top of page

Privacy Policy (POPIA)

Nourish & Navigate YOU (Navigating and Nurturing You Coaching – sole proprietor)

Last updated: 13 January 2026

 

This Privacy Policy explains how Nourish & Navigate YOU (“we”, “us”, “our”) collects, uses, stores, shares, and protects personal information in line with South Africa’s Protection of Personal Information Act, 2013 (POPIA).

 

1. Responsible Party and Information Officer

Business: Navigating and Nurturing You Coaching (trading as “Nourish & Navigate YOU”)

Information Officer: Yolande Marsh

Email: nnyou.info@gmail.com

WhatsApp: +27 67 578 4833

 

2. What we collect

We may collect the following categories of personal information:

Identity and contact details

  • Name, email address, phone/WhatsApp number, city/country.

Service and account details

  • Bookings, package purchased, session history, membership status, correspondence and support requests.

Billing and payment details

  • Invoice details, payment references, transaction confirmations.

  • If you pay by EFT, we may process your banking/payment reference details to reconcile payment.

  • We do not store full card details where payments are handled by PayFast/PayPal.

Coaching notes and progress information

  • Intake forms, goals, habits, reflections, action plans, session notes.

Website and device data (Wix)

  • Cookies and similar technologies,

  • IP address, browser/device information,

  • pages viewed, referral/traffic source,

  • basic analytics data provided through Wix tools.

Health-related information you choose to share

  • For example: menopause symptoms, diagnoses, medication/supplements, lifestyle details relevant to coaching.

 

3. Special personal information (health) — extra care

Health information is treated as special personal information. We only process it when:

  • you choose to share it, and

  • we have a lawful basis (usually your explicit consent) and a clear coaching purpose.

You can share as little or as much as you want. We do not provide medical diagnosis or prescribe treatment, and we do not advise you to start/stop medication. If a concern needs medical care, we will encourage you to consult a qualified healthcare provider.

4. How we collect your information

We collect information when you:

  • Complete website forms, intake forms, or support forms (via Wix or connected Wix tools).

  • Contact us by email or WhatsApp.

  • Book a service, buy a product, or join a membership.

  • Participate in sessions (including Zoom sessions) and follow-ups.

  • Use our website (cookies and Wix analytics).

 

5. Why we process your information (purposes)

We process personal information to:

  • Deliver coaching services and digital products.

  • Manage bookings, communication, and client administration.

  • Process payments and keep financial records.

  • Provide customer support and respond to enquiries.

  • Improve our services, content, and website performance.

  • Comply with legal obligations and respond to lawful requests.

 

6. Lawful bases for processing

Depending on the situation, we process information because it is necessary for:

  • Performing a contract (delivering what you booked/bought),

  • Your consent (especially for special personal information and optional marketing),

  • Legal obligations (e.g., record-keeping),

  • Legitimate interests (running and improving the business, fraud prevention), provided your rights are not overridden.

Where processing is based on consent, you may withdraw consent at any time (see Section 13).

 

7. Marketing and newsletters

We may send:

  • Service messages (booking confirmations, receipts, membership emails, policy notices). These are necessary to deliver what you requested/paid for.

  • Marketing messages (new offers, workshops, openings). We send these only if you opt in, or where allowed for existing customers, and you can opt out anytime.

Opt-out: use the unsubscribe link (where provided), reply “STOP” on WhatsApp, or email nnyou.info@gmail.com.

 

8. WhatsApp, email, and Zoom (communication + risks)

We communicate with clients via WhatsApp, email, and Zoom where applicable (for scheduling, reminders, session delivery, and support).

 

Privacy note: WhatsApp and email are not guaranteed secure channels. Avoid sending highly sensitive medical information via WhatsApp. Zoom is a third-party service with its own terms and privacy practices.

 

9. Sharing with operators (service providers)

We share personal information only with trusted operators as needed to run the business:

Website, hosting, forms, and email

  • Wix (website hosting, forms, and Wix Email / Wix email marketing tools)

Payments

  • PayFast (payment processing)

  • PayPal (payment processing)

  • EFT (bank transfer) (we process payment confirmations/references for reconciliation)

Meetings

  • Zoom (online sessions)

Operators process information under our instruction and are expected to apply appropriate safeguards.

 

10. International transfers

Some service providers (for example PayPal, and sometimes infrastructure used by Wix or Zoom) may process or store data outside South Africa. Where this happens, we take reasonable steps to ensure appropriate safeguards consistent with POPIA.

 

11. Security safeguards

We take reasonable steps to protect personal information, including:

  • Access controls (limited access), strong passwords, and device protection.

  • Secure storage and review of who has access.

  • Data minimisation (we collect what we need).

No system is 100% secure, but we actively reduce risk.

 

12. Retention

We keep personal information only as long as necessary for the purposes in this Policy, unless longer retention is required or permitted by law (for example, financial/tax record-keeping). We then delete or anonymise it where appropriate.

 

13. Your POPIA rights

You may request (subject to lawful limits):

  • Access to the information we hold about you,

  • Correction/updating of your information,

  • Deletion of information (where we are not legally required to keep it),

  • Objection to certain processing,

  • Withdrawal of consent (where processing is based on consent).

To exercise your rights, email [your email] with the subject “POPIA Request”. We may need to verify your identity before responding.

 

14. Security compromises (data breach notification)

If there are reasonable grounds to believe personal information has been accessed or acquired by an unauthorised person, we will take steps required by POPIA, which may include notifying affected individuals and the Information Regulator where applicable.

 

15. Children

Our services and products are not intended for children under 18. We do not knowingly collect children’s information. If you believe a child has provided us personal information, contact us and we will address it.

 

16. Complaints

If you believe your information has been handled unlawfully, contact us first so we can try to resolve it.

You may also lodge a complaint with the Information Regulator (South Africa):

 

17. Changes to this Policy

We may update this Privacy Policy from time to time. The latest version will be posted on this page with the updated date.

bottom of page