Privacy Policy
Effective Date: 10 January 2026
Privacy Policy for Eden Holistic Health
Eden Holistic Health ("we", "our", or "us") is committed to protecting your privacy and handling your personal information fairly, lawfully and transparently. This Privacy Policy explains how we collect, use, store and protect your personal information when you visit our website, contact us or use our services.
We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and other applicable data protection legislation.
1. Who We Are
Eden Holistic Health
Website: https://www.edenholistichealth.co.uk
Email: genelva@edenholistichealth.co.uk
Data Controller: Eden Holistic Health
2. Personal Information We Collect
Depending on how you interact with us, we may collect:
Your name
Postal address
Email address
Telephone number
Appointment and booking information
Payment information (payments are processed securely by third-party payment provider Sum-up and we do not store your full payment card details)
Information you provide through contact forms or emails
Information relevant to your treatment or wellbeing where necessary to provide our services
Emergency contact details where appropriate
Website usage information through cookies and analytics
3. Special Category Data
Some of our services require us to process health-related information. This is classed as Special Category Personal Data under UK GDPR. We will only collect information that is necessary to provide safe and appropriate holistic treatments. This may include:
Medical conditions
Allergies
Current medications
Previous injuries
Pregnancy status where relevant
Lifestyle information relevant to treatment
We process this information only where permitted by law and where you have provided explicit consent or another lawful basis applies.
4. How We Use Your Information
We use your information to:
Respond to enquiries and arrange appointments
Deliver holistic therapy services and maintain treatment records
Communicate before and after appointments
Process payments
Send appointment reminders
Improve our services
Meet legal, insurance and regulatory obligations
Prevent fraud and protect our business
We will only send marketing communications where you have chosen to receive them. You may unsubscribe at any time.
5. Lawful Basis for Processing
We process personal information under one or more of the following lawful bases:
Your consent
Performance of a contract
Compliance with legal obligations
Our legitimate interests in operating and improving our business
Where we process health information, we rely on the relevant UK GDPR conditions for processing Special Category Data.
6. How Long We Keep Your Information
We only keep personal information for as long as necessary. Typical retention periods are:
Enquiries that do not result in treatment: up to 12 months
Client records: normally up to 7 years after your last appointment unless a longer retention period is required by law, insurance or professional obligations
Financial records: as required by HM Revenue & Customs, and information is securely destroyed when no longer required.
7. Sharing Your Information
We will never sell your personal information. We may share your information where necessary with:
Payment providers
Booking system providers
Website hosting providers
IT service providers
Professional advisers
Insurers
Regulatory or legal authorities where required by law
Any third parties processing information on our behalf are required to keep it secure and confidential.
8. International Transfers
Where any service provider stores data outside the United Kingdom, we ensure appropriate safeguards are in place in accordance with UK GDPR.
9. Website Cookies
Our website may use cookies to:
Ensure the website functions correctly and improve performance
Analyse website traffic and enhance your browsing experience
Where required, we will ask for your consent before placing non-essential cookies on your device. Please refer to our Cookie Policy for further information.
10. Data Security
We take appropriate technical and organisational measures to protect your personal information from unauthorised access, loss, misuse or disclosure. These measures include secure systems, password protection and restricted access to personal information.
11. Your Rights
Under UK GDPR you have the right to:
Access your personal information
Request correction of inaccurate information
Request deletion of your information in certain circumstances
Restrict processing
Object to processing
Request transfer of your data where applicable
Withdraw consent at any time where processing is based on consent
Lodge a complaint with the Information Commissioner's Office (ICO)
Further information is available from the Information Commissioner's Office at www.ico.org.uk.
12. Children's Privacy
Our services are generally intended for adults. Where services are provided to children or young people, parental or guardian consent will be obtained where required.
13. Third-Party Links
Our website may contain links to other websites. We are not responsible for the privacy practices or content of external websites.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The latest version will always be published on our website with the effective date shown at the top of this document.
15. Contact Us
If you have any questions about this Privacy Policy or how your personal information is handled, please contact: genelva@edenholistichealth.co.uk