Who we are
Our website address is: https://healthoutfit.co.uk.
WHO WILL HOLD YOUR INFORMATION?
WHAT INFORMATION DO WE COLLECT AND HOW?
2.1 We may collect, store and use the following kinds of personal data:
Identity Data: name, title, username or other identifier;
Contact Data: email address and telephone numbers;
Technical Data: internet protocol (IP) address, your login data, browser type and version, timezone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website;
Profile Data: your preferences, feedback and survey responses;
Usage Data: information about how you use our sites and services;
Marketing and Communications Data: your preferences in receiving marketing from us and our third parties and your communication preferences; and
Other: any other information you chose to send or otherwise make available to us.
2.2 We use different methods to collect personal data from and about you as follows:
Direct Interactions: You may give us your personal data directly by filling in forms on our sites or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:
create an account on our sites;
subscribe to our booking services;
subscribe to our newsletter and other publications;
enter a competition, promotion or survey; or
give us feedback, report a problem with our sites or otherwise contact us.
Automated Technologies or interactions: As you interact with our sites, we will automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies and other similar technologies.
Third parties or publicly available sources: We may receive personal data about you from various third parties and public sources as set out below:
Technical Data, for example from:
analytics providers such as Google;
search information providers
2.3 We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offenses.
2.4. We may keep a record of correspondence, telephone calls or communications if you contact us.
2.5. We may monitor or record your communications with us to assist us with the development of our sites and services; to train our staff; and if so requested by order of a court, regulatory body or law enforcement organization.
HOW DO WE USE YOUR PERSONAL DATA?
3.2 We may use your personal information to:
verify your identity;
provide and administer the sites and our related services and manage internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes, and to develop the sites and our services to improve your experience;
perform a contract we may have with you including to provide booking services you have subscribed for;
send you general (non-marketing) commercial communications including relating to booking services you have subscribed for from us;
send you email notifications which you have specifically requested;
send you our newsletter and other marketing communications relating to our business which we think may be of interest to you where you have specifically agreed to this, by email or similar technology; and
deal with enquiries and complaints made by you;
MARKETING AND CONSENT
4.1 We may use your personal data to form a view on what products, services and offers may be of interest to you (“marketing”).
4.2 We will not share your personal data with any third party for marketing purposes.
4.3 You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you at any time or emailing email@example.com
5. LAWFUL BASIS FOR USING YOUR PERSONAL DATA
5.1 We process your personal data based on the lawful bases set out below. We may process information you provide based on more than one lawful basis depending on the specific purpose for which we are using it.
Legal Obligation: Where processing is necessary to comply with legal or statutory requirements on us. This may include cooperating with police in relation to their investigations.
Legitimate interest: Where processing is necessary for our legitimate interests (or those of a third party) provided that these do not conflict with your interests or fundamental rights. This may include, to improve our sites and services, understand how visitors and customers use our sites and services, undertake market research and inform our marketing, to run our business and maintain the security of our sites and services for you, us and other sites visitors and customers.
DISCLOSING YOUR PERSONAL DATA
6.3 We may disclose your personal data to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006 (“Group Companies”).
6.4 We may also use or disclose your personal data as follows:
to provide third parties with statistical information about our users but this information will not be used to identify you personally.
6.5 In addition, we may disclose your personal data:
to the extent that we are required to do so by law, or in connection with any legal proceedings or
to establish, exercise or defend our legal rights (including providing information to others for the purpose of fraud prevention); and
in the event that we sell or buy any business or assets, to the prospective buyer or seller of such business and assets and their advisers. If our business is sold your details will be passed onto the new owner of the business.
6.6 We may share any information that we collect with parties including: our legal and professional advisors, the police, other public or private sector agencies, governmental or representative bodies (which may include insurance companies, finance companies and/or other agencies) in accordance with the relevant legislation for the purposes of the prevention or detection of offenses, and/or the apprehension organization prosecution of offenders
STORING AND TRANSFERRING YOUR DATA
7.1 We share your personal data with our Group Companies. This will not involve transferring your data outside the European Economic Area (EEA).
SECURITY OF YOUR PERSONAL DATA
8.1 Data transmission over the Internet is inherently insecure and we cannot guarantee the security of data sent over the Internet.
8.2 We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
8.3 We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
9.1 We will process personal data for as long as necessary to fulfil the purpose we collected it for, including the purpose of legal, accounting and reporting requirements, and for as long as necessary for the prevention and detection of criminal activity. The period for which we process and store the personal data for varies depending on the use you make of the sites and services we offer. Where you register an account or subscribe for our services we will retain your personal data for as long as your account is live or as necessary to continue to provide you with our services and for a further period thereafter to enable us to satisfy our legal, accounting and reporting requirements.
9.2 In some circumstances you can ask us to delete your data: see Right to be forgotten below for further information.
9.3 In some circumstances we may anonymize your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice.
10.1 At any point while we are in possession of or processing your personal data, you, the data subject, have the following rights:
Right of access – you have the right to request a copy of the information that we hold about you. In the event that we refuse your request under rights of access, we will provide you with a reason as to why;
Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete;
Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records;
Right to restriction of processing – where certain conditions apply to have a right to restrict the processing;
Right of portability – in certain circumstances you have the right to have the data we hold about you transferred to another organization;
Right to object – you have the right to object to certain types of processing such as direct marketing, automated processing or profiling; and
Right to complain to the supervisory authority – you have the right to complain as outlined in section 14 below
Please email firstname.lastname@example.org if you have any queries regarding your rights. You can exercise your rights as set out above by emailing us.
11.1 Please let us know if the personal information which we hold about you needs to be corrected or updated.
THIRD PARTY WEBSITES
CONTACT AND COMPLAINTS
14.1 If you wish to make a complaint about how your personal data is being processed by Healthoutfit Ltd (or third parties as described above), or how your complaint has been handled, in the first instance please email your concerns to email@example.com. You also have the right to lodge a complaint directly with the UK supervisory authority which is the Information Commissioner’s Office and can be contacted via the details at www.ico.org.uk.
42, Queens Road,