Privacy Policy

Nutrition Diets Clinic

Last updated: 07.01.2026

Nutrition Diets Clinic (“we”, “us”, “our”) is committed to protecting your privacy and handling your personal data responsibly and transparently. This Privacy Policy explains how we collect, use, store and protect your personal information, including health-related data, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are (Data Controller)

Nutrition Diets Clinic is the data controller for the personal data we process.

Contact details:
Email: info@nutritiondiets.co.uk
Website: https://nutritiondiets.co.uk

If you have any questions about this policy or how we use your data, you can contact us using the details above.

2. What Personal Data We Collect

Depending on how you interact with us, we may collect and process the following types of personal data:

a) Contact & Identity Data

  • Name

  • Email address

  • Telephone number

b) Health & Special Category Data

  • Health questionnaires and intake forms

  • Medical history, symptoms and lifestyle information

  • Laboratory test results

  • Consultation notes and personalised reports

c) Transaction & Service Data

  • Appointment details

  • Services purchased

  • Invoices and payment records

d) Technical & Website Data

  • IP address

  • Browser type and device information

  • Pages visited and site usage data

  • Cookies (see Cookie section below)

3. How We Collect Your Data

We collect personal data in the following ways:

  • When you complete forms on our website

  • When you book a consultation (free or paid)

  • When you purchase a service or health test

  • During consultations and follow-up communications

  • Automatically through cookies and analytics tools when you use our website

4. How We Use Your Data & Lawful Basis

Under UK GDPR, we must have a lawful basis for processing your personal data.

a) To Provide Our Services

Purpose:

  • Deliver consultations, testing, reports and ongoing support

  • Communicate with you about your care

Lawful basis:

  • Contractual necessity

  • Explicit consent (for health data)

b) Health & Special Category Data

We process health-related data only where necessary to provide our services.

Lawful basis:

  • Explicit consent

  • Necessary for the provision of health and wellbeing services requested by you

Consent is obtained through our intake forms, booking processes and purchase checkouts, and can be withdrawn at any time.

c) Payments & Administration

Purpose:

  • Process payments

  • Issue invoices

  • Maintain financial records

Lawful basis:

  • Contractual necessity

  • Legal obligation (accounting requirements)

d) Marketing & Communications

Purpose:

  • Send newsletters or updates (where opted in)

Lawful basis:

  • Consent

You can unsubscribe at any time using the link in our emails or by contacting us.

e) Website Analytics

Purpose:

  • Improve website performance and user experience

Lawful basis:

  • Legitimate interests

  • Consent (where required via cookies)

5. How We Store & Protect Your Data

We take appropriate technical and organisational measures to protect your data, including:

  • Secure storage using Google Workspace

  • Access controls restricting data to authorised personnel only

  • Dedicated client folders created only once a paid service has been purchased

  • Minimisation of data stored outside client-specific folders

Client health information and reports are stored securely and are not shared publicly.

6. Who We Share Your Data With

We only share your data where necessary and appropriate, including with:

  • Google Workspace (for secure storage and internal administration)

  • Automation platforms for workflow processing

  • Payment providers for transaction processing

  • Accredited laboratories (only where tests are ordered and with your consent)

We do not sell your personal data.

All third-party providers we use are required to handle your data securely and in compliance with data protection laws.

7. International Data Transfers

Some of our service providers may process data outside the UK or EEA. Where this occurs, appropriate safeguards (such as standard contractual clauses) are in place to ensure your data remains protected.

8. Data Retention

We retain personal data only for as long as necessary:

  • Client health records: retained for up to 7 years after the last service

  • Financial records: retained for up to 7 years (legal requirement)

  • Marketing data: retained until you unsubscribe

  • Inactive lead data: reviewed and deleted periodically

You may request deletion of your data at any time, subject to legal and professional obligations.

9. Your Rights Under UK GDPR

You have the right to:

  • Access your personal data

  • Correct inaccurate or incomplete data

  • Request deletion of your data

  • Restrict processing in certain circumstances

  • Request data portability

  • Withdraw consent at any time

  • Object to certain types of processing

To exercise your rights, please contact us at info@nutritiondiets.co.uk

10. Automated Decision-Making

We do not use automated decision-making or profiling that has a significant legal or personal effect on you.

11. Cookies

Our website uses cookies to improve functionality and analyse usage. You can control cookie preferences through your browser settings. Further details may be provided in a separate Cookie Policy.

12. Complaints

If you have concerns about how we handle your data, please contact us first so we can address them.

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO):

Website: https://ico.org.uk
Telephone: 0303 123 1113

13. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date.

Subscribe to Our Newsletter

BOOK A FREE DISCOVERY CALL

This website is using cookies More InfomationThat's Fine