Privacy Statement of Nutrition and Nurture
To provide our support effectively and safely in accordance with our agreement for services, we will need to request sensitive personal information from you.
In accordance with General Data Protection Regulations 2018 (GDPR) we are required to inform you what Data we will request from you, how we will process that Data and what your rights are in relation to that Data. The special categories of Data that we will hold about you will be in relation to yours and your child’s health and your ethnic origin. We will be both the Data Controller and the Data Processor, solely responsible for your privacy. We will not request information from you that we do not need in order to provide my services to you for legal, contractual and legitimate reasons.
We will retain your consultation Data for a period of 5 years as required for insurance purposes.
The Data we request and will hold about you, may include:
Name; Date of Birth; Address; Telephone numbers; Email
Child(ren) name and date(s) of birth
Medical history (including obstetric and breastfeeding history) of you and your child(ren)
Consultation notes including plans
We receive, collect and store any information you enter on our website or provide us in any other way. In addition, we collect the Internet protocol (IP) address used to connect your computer to the Internet; login; e-mail address; password; computer and connection information and purchase history. We may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page. We also collect personally identifiable information (including name, email, password, communications); payment details (including credit card information), comments, feedback, product reviews, recommendations, and personal profile.
All of your Data is processed by Nutrition and Nurture in the UK (for the reasons indicated below) using:
Paper for your medical history and consultation notes, secured in a locked cabinet.
Gmail professional (Transport Layer Security – TLS) for follow up and marketing (with your consent)
Google Drive for storage of electronic records.
Our website is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.
Note that I may legally be required to share relevant information to the authorities for safeguarding purposes.
Any information (limited to your name and address) we specifically use for marketing purposes where consented to, such as distribution of newsletters, will be retained for that purpose until you withdraw consent.
You have the right to request access to your personal Data that I hold and be provided with that Data free of charge and within a month of your request. You also have the right to correction of that Data and deletion (where appropriate). If you are not happy with how I manage your Data, you have a right to complain to the Information Commissioners Office (www.ICO.org.uk)