Privacy Policy

 

Heritage Nutrition is committed to protecting your privacy and confidentiality at all times, and complies with the principles of the relevant regulations including the Data Protection Act (DPA) and the General Data Protection Regulation (GDPR). The following document outlines how clients’ information is used, who we may share that information with, and how we keep your information secure. Please note that our privacy policy may not provide exhaustive detail, however,  if you have any questions, concerns or need further clarification, please contact Hanna Haile via email at info@heritagenutrition.co.uk 

 
Scope

Our privacy statement governs any kind of processing where we are acting as a data controller or co-controller (including collection, use, transfer, storage and deletion) of personally identifiable information (any information that may be used to identify a physical person, and any other information associated therewith) about natural persons. This statement applies to our processing of data collected through any means, actively as well as passively, from persons located anywhere in the world.

Heritage Nutrition is guided by the following principles when processing data:

  1. We will only collect your personal information for specific and specified purposes; this will be made clear at the point of requesting such information, including what we are collecting it for and how we are going to use your information;
  2. We only collect relevant data that is necessary to provide the services for which you have signed up;
  3. We will only collect and use your personal information when there are sensible reasons for doing so, such as circulating nutrition-related resources and/or providing you with relevant offers;
  4. We will not use your data for purposes other than those for which it was collected, accepted as stated within our policy, or with your prior consent;
  5. We will seek to verify and/or update your data periodically and we will fulfil requests from you for amendment of the data held;
  6. We will apply high technical standards and precautions so that our processing of your data is secure;
  7. Except otherwise stated, we will not store your information in identifiable form longer than is necessary to accomplish its purpose or as required by law;
  8. We will never, under any circumstances, sell or share your personal information with third parties
1. How We Obtain Your Personal Data

Information provided by you

  • Your personal data may be provided to us in the following ways:
  • By completing an intake form
  • By signing the terms of engagement document
  • During a nutrition consultation
  • Through email, video consultation, the telephone or by post
  • By signing up to our email subscription
  • By taking credit card and online payment

 This information may include the following

  • Your basic personal details such as name, address, and contact details
  • Health information such medical history, dietary and medicinal details, medical test results, GP or other medical provider notes
  • GP or other medical/care provider contact information
  • Bank details

2. How we use your personal data

We use your personal information in order to provide you with direct nutrition-related services.  This means that the legal basis of our holding your personal data is for legitimate interest.

We act as a data controller for use of your personal data to provide you with direct nutrition counselling services. We also act as a data controller and processor in regard to the processing of credit card and online payments.

We undertake at all times to protect your personal data, including any health and contact details, in a manner which is consistent with our duty of professional confidence and the requirements of the General Data Protection Regulation (GDPR) concerning data protection. 

We may use your personal data where there is an overriding public interest in using the information e.g. in order to safeguard an individual, or to prevent a serious crime.  Also where there is a legal requirement such as a formal court order.

We may use information collected in order to

  • Allow you to book for a service we provide
  • Provide you with information, product, or services that you have either requested or have consented to by signing up to receive them
  • Provide you with the service you have signed up for
  • Notify you about changes to our products or services
3. Legal basis for processing your data

The General Data Protection Regulation (GDPR) provides that processing of your data shall only be lawful if and to the extent that at least one of the following applies:

  1. You have consented
  2. For the performance of a contract
  3. For compliance with a legal obligation which we must perform
  4. To protect vital interests of your or another person
  5. It is in the public interest
  6. It is in the legitimate interests pursued by us or a third party

We collect data for the purposes set out above. Data is managed to ensure that it is either erased from our system when it is no longer required for the purpose for which it was collected, retained for legal reasons. Any health data collected from you has special protection and is limited to that permissible by law. In all instances where special category data is collected we will obtain your express consent.

4. What are your rights? 

You have the right to see, amend, delete or have a copy, of data held that can identify you, with some exceptions You do not need to give a reason to see your data. If you want to access your data you must make a subject access request in writing to Hanna Haile via email at info@heritagenutrition.co.uk. We shall respond within two weeks from the point of receiving the request and all necessary information from you.  Our response will include the details of the personal data we hold on you including:

  • Sources from which we acquired the information
  • The purposes of processing the information
  • Persons or entities with whom we are sharing the information

You have the right, subject to exemptions, to ask to:

  • Have your information deleted
  • Have your information corrected or updated where it is no longer accurate
  • Ask us to stop processing information about you where we are not required to do so by law or in accordance with our professional association guidelines.
  • Receive a copy of your personal data, which you have provided to us, in a structured, commonly used and machine readable format and have the right to transmit that data to another controller, without hindrance from us.
  • Object at any time to the processing of personal data concerning you

If you would like to invoke any of the above rights then please contact Hanna Haile via email at info@heritagenutrition.co.uk 

5. What safeguards are in place to ensure data that identifies me is secure?

We only use information that may identify you in accordance with GDPR. This requires us to process personal data only if there is a legitimate basis for doing so and that any processing must be fair and lawful.

Within the health sector, we also have to follow the common law duty of confidence, which means that where identifiable information about you has been given in confidence, it should be treated as confidential and only shared for the purpose of providing direct services. We will protect your information, inform you of how your information will be used, and allow you to decide if and how your information can be shared.

We also ensure the information we hold is kept in secure locations, restrict access to information to authorized personnel only, protect personal and confidential information held on equipment such as laptops with encryption (which masks data so that unauthorized users cannot see or make sense of it). We ensure external data processors that support us are legally and contractually bound to operate and prove security arrangements are in place where data that could or does identify a person are processed.

6. Links from our site

Our site may contain links to and from other websites which are operated by individuals and companies over which we have no direct control. If you follow a link to any of these websites, please note that these websites have their own privacy and terms of use polices. Heritage Nutrition do not accept any responsibility or liability for these policies. We advise you to check the policies for third party sites before you submit any personal data to the website.

7. Marketing emails

We will make it as easy as we can for you to opt out of unwanted processing, providing it does not restrict our ability to provide you with the primary service you have requested.

Please note if you wish to unsubscribe from any marketing emails that you have signed up for, you can do so by emailing info@heritagenutrition.co.uk or clicking onto the unsubscribe link on the marketing email that was sent to you. It may take 24 hours for this to become effective.

8. Website analytics & targeted marketing

We use website analytics to provide the best user experience and service to you and to evaluate and improve our site. We utilize third party data analytics service providers e.g. Google Analytics to improve our visibility and to monitor website browser behavior and navigation across our website.

These third-party data analytics service providers collect this information on our behalf in accordance with our instructions and in line with their own privacy policies. Our service providers may collect the following data about the way you use our site, which will almost always be anonymized and aggregated before reporting back to us:

  1. Number of visitors to our site
  2. Pages visited whilst using the site and time spent per page
  3. Page interaction information, such as scrolling, clicks and browsing methods
  4. Source location and details about where users go when they leave the site
  5. Page response times and any download errors
  6. Other technical information relating to end user device, such as IP address or browser plug-in

From time to time we may use the information collected about you to present you with targeted advertisements using platforms such as Facebook, Twitter, Google and/or Instagram.

9. Changes to our policy & future processing

We do not intend to process your personal information except for the reasons stated within this privacy notice. If this changes, this privacy notice will be amended and placed on our website at www.heritagenutrition.co.uk 

10. Policy details

This privacy notice was published on 02 August 2022. We continually review our privacy practices and may change our policy and privacy statement from time to time. When we do this an amended privacy statement will be placed on our website at www.heritagenutrition.co.uk

If you are concerned about anything related to the privacy policy, please contact Hanna Haile via email info@heritagenutrition.co.uk 

©2021 Heritage Nutrition. All Rights Reserved.

Menu