What we doThe Nutrigenetics Coach provides nutritional and lifestyle support to clients to help them improve their health and well-being. We hold data for the following purposes:
Special categories of data include - ethnic origin, genetics, biometrics.
The Nutrigenetics Coach complies with the following principles of data protection:
What data we collect about you
We collect personal information from you to fulfil your service request in the following ways:
This may include the following information:
We use this information in order to provide you with coaching services. This means that the legal basis of our holding your personal data is for legitimate interest.
Storing data securely
Sharing of information, or information we get from other sourcesWe may obtain sensitive personal information in the form of test results from other companies. We use this information to provide you with health care. This means that the legal basis of holding your personal data is for legitimate business.
We keep information about you confidential. We only disclose information about you with your express consent with the exception of the following:
We will seek your consent before sharing your information with other health care providers. If we believe that your life is in danger then we may pass information onto an appropriate authority using the legal basis of vital interests.
We do not share payment details, nor sell, rent customer details with third parties for commercial reasons.
What are your rights?Every individual has a right to see, amend, delete, or have a copy of data that can identify you. You do not need to give a reason to see your data.
If you want to see your data you must make a subject access request in writing to firstname.lastname@example.org.
Under certain circumstances some information may be withheld. We shall respond within 20 working days from the point of receiving the request and all necessary information from you.
Our response will include the personal details we hold on you including:
What safeguards are in place to ensure that your data is secure?We only use information that identifies you in accordance with UK GDPR. This requires us to process personal data only if there is a legitimate basis for doing so and any processing must be fair and lawful.
Within the health sector, we also have to follow the common law duty of confidence, which means that where identifiable information about you has been given in confidence, it should be treated as confidential and only shared for the purpose of providing direct healthcare. We will protect your information, inform you of how your information will be used and allow you to decide if and how your information can be shared.
We will ensure that the information we hold is kept in secure locations, restrict access to information to authorised personnel only and protect personal and confidential information held on equipment such as computers and memory sticks with encryption (which masks data so that unauthorised users cannot see or make sense of it).
Website technical detailsWe use electronic forms on our website which have several built-in features to help ensure privacy.
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org
Contact and complaints
If you have any complaint regarding the use of your personal data then please contact us by emailing email@example.com and we will do our best to help you.
If your complaint is not resolved to your satisfaction and you wish to make a formal complaint to the Information Commissioner’s Office (ICO), you can contact them at 01625 545745 or 0303 1231113
Effective date: April 20th 2023