Privacy Policy

1. Introduction

This Privacy Policy explains how personal information is collected, used, and protected when you book appointments, purchase products, or contact the business.

This business is committed to protecting your privacy and handling your personal data in a safe and responsible way, in line with UK GDPR.

2. Information Collected

Personal information collected may include:

  • Name

  • Contact details (email address, phone number)

  • Appointment and booking information

  • Health and consultation information (where relevant to treatments)

  • Order and payment details

Health-related information is collected only where necessary to provide safe and appropriate treatments.

3. How Your Information Is Used

Personal information is used for the following purposes:

  • Managing appointments and bookings

  • Providing treatments safely and appropriately

  • Processing orders and payments

  • Communicating about appointments, orders, or enquiries

  • Maintaining client records as required for professional and insurance purposes

Your information will never be used for purposes unrelated to the services provided.

4. Legal Basis for Processing

Personal data is processed under the following lawful bases:

  • Consent (e.g. consultation forms)

  • Contractual necessity (e.g. bookings and purchases)

  • Legal obligation (e.g. record-keeping)

  • Legitimate interest (e.g. client communication)

5. Data Storage & Security

All personal information is stored securely. Reasonable measures are taken to protect data from loss, misuse, unauthorised access, or disclosure.

Digital records are password-protected and only accessible to the practitioner.

6. Data Sharing

Personal information will not be shared with third parties except:

  • Where required by law

  • Where necessary to process payments or bookings through secure third-party providers

  • Only essential information is shared, and only with trusted services.

7. How Long Information Is Kept

Client records are retained only for as long as necessary to fulfil legal, professional, and insurance requirements, after which they are securely deleted or destroyed.

8. Your Rights

Under UK GDPR, you have the right to:

  • Access the personal data held about you

  • Request correction of inaccurate information

  • Request deletion of your data (where applicable)

  • Withdraw consent at any time

Requests can be made by contacting the business directly.

9. Cookies & Website Use

If applicable, the website may use basic cookies to improve user experience. No unnecessary tracking cookies are used without consent.

(This can be expanded later if you add analytics.)

10. Contact

If you have any questions about this Privacy Policy or how your information is handled, please contact the business directly.