Privacy Policy

1. Information We Collect

We may collect the following information

a) Information you provide directly

  • Contact Forms: name, email address, phone number (optional) and your message.

  • Newsletter Sign-Ups: email address.

  • Client Information: limited personal or business details required for invoicing, contracts or service delivery.

  • Payment Information: processed securely by our billing or payment providers - we do not store full payment card details.

b) Information collected automatically

  • Analytics Data (e.g., Google Analytics): IP address, device information, browser type, pages visited, time spent on the site and other usage statistics.

  • Cookies and tracking technologies: used to improve website performance and user experience.

2. How We Use Your Information

We use your data for:

  • Responding to enquiries and providing requested services

  • Sending newsletters or updates (only with your consent)

  • Managing bookings, invoicing and client relationships

  • Improving website performance and user experience

  • Complying with legal or financial obligations

3. Legal Basis for Processing

We process personal data on the following lawful bases:

  • Consent (newsletter sign-ups, optional form fields)

  • Legitimate Interests (responding to enquiries, website analytics)

  • Contractual Necessity (client communication, invoicing)

  • Legal Obligations (tax, accounting and regulatory requirements)

4. Sharing Your Information

We never sell your data.

We may share information with trusted third parties, such as:

  • Email marketing platforms (for newsletters)

  • Payment processors

  • Website hosting and analytics providers

  • Professional advisors (e.g.accountants, legal counsel)

All third parties are required to keep your information secure and confidential.

5. International Transfers

As we operate in the UK and worldwide, your data may be processed outside your country of residence.

When this occurs, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs)

  • Approved adequacy decisions

  • GDPR-compliant service providers

6. Data Retention

We retain your personal data only as long as necessary:

  • Enquiry data: up to 12 months

  • Newsletter data: until you unsubscribe

  • Client and invoicing records: 6–7 years (legal requirement)

  • Analytics data: per provider settings (typically 14–26 months)

7. Your Rights

Depending on your location, you may have the right to:

  • Access your personal data

  • Correct inaccurate information

  • Request deletion (“right to be forgotten”)

  • Restrict or object to processing

  • Request data portability

  • Withdraw consent at any time

  • Lodge a complaint with a supervisory authority (e.g., ICO in the UK)

To exercise your rights, contact:-

claire@theheathsuite.com

8. Cookies

Our website uses cookies to:

  • Improve site performance

  • Understand visitor behaviour through analytics

  • Enable essential website functionality

You can control cookies through your browser settings.

9. Security

We use technical and organisational measures to protect your data, including secure hosting, encryption where necessary and restricted administrative access.

10. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, contact:

The Heath Suite

Emailclaire@theheathsuite.com

Websitewww.theheathsuite.com