Please take the time to read through this information carefully.
GB massage respects and protects your privacy. This notice sets out the different areas where user privacy is concerned and outlines the obligations and requirements of the users, the website ‘gbmassage.me’ and me, the website owner.
The way I use, store and protect any personal data I collect from you, or that you provide to me, will also be detailed within this notice.
Legal basis for storing information.
Information is collected by GB Massage in accordance with the guidelines set out in the General Data Protection Regulation (GDPR) 2018.
Information collected
When you book an appointment directly with me, I collect personal details such as your name, email address and telephone number. This information is used to identify you and contact you about the appointments you have booked.
When you book an appointment with me through Treat-Norwich, Treat collects personal details, as above. Treat-Norwich are GDPR compliant and maintain their own GDPR information.
To provide a safe and effective massage treatment I may also collect some background information regarding your medical history and lifestyle choices. This information is only used to make sure the treatment you receive is suitable.
Whilst you use this website I also receive information about your computer. This information helps provide a better website experience for you.
Security
To protect your personal information, I take reasonable precautions to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
Consent
When you provide me with your personal information in the course of booking an appointment, completing an intake form, making a payment or contacting me, you are giving your consent to the collection of that information and the use of it for that reason.
I do not and will not use your personal information for any secondary reason, for example marketing, unless I have asked you directly for your consent to do so.
Withdrawing consent
I am required to hold the personal information you have given for a minimum of seven years after your last appointment or seven years after your 18th birthday. Seven years after your last treatment I will delete your personal information.
If you withdraw your consent during the seven year retention period, I will archive your data until the seven year period expires.
Whilst your information is archived, I will not access or process it in any way accept if needed for legal protection or if I’m required to do so by law.
Should you wish to withdraw your consent at any time please email george@gbmassage.me with your request.
Updating, amending, accessing personal information
You have the right to review the personal information I store about you and your massage sessions at any time. These can be delivered by email, in a Word document attachment.
You also have the right to request that I update or amend your data if it is incorrect.
To action any of these rights at any time please email george@gbmassage.me with your request.
Disclosure
Unless required by law to do so I will not share information provided to me without consent.
Credit/debit card personal information:
All debit/credit card details are kept secure by SumUp® (Company ID: 07836562) who are GDPR compliant.
Links
Links on the gbmassage.me website may direct you away from this site. I am not responsible for the privacy practices of other sites.
Changes to this policy
This policy may change and so please be prepared to review it occasionally. However, material changes to the policy are highly unlikely.
Complaints
If you are unhappy about how I am handling your personal information, please raise your concern with me first so that I can seek to rectify the situation. If you are not satisfied you may raise your concerns with the Information Commissioners Office (ICO).