Privacy Policy
Interlude Hypnotherapy
Interlude Hypnotherapy (referred to as “we,” “us,” or “our”) operates the Interlude Hypnotherapy Sheffield Website (the “Service”). We are dedicated to ensuring compliance with the General Data Protection Regulation (GDPR) and upholding your privacy rights as a data processor.
This Privacy Policy outlines how we collect, use, process, and protect your Personal Information when you use our Service. We will not use or share your information with anyone except as described in this Privacy Policy.
By using the Service, you agree to the collection and use of information in accordance with Privacy Policy. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, accessible at https://interludehypnotherapysheffield.com
Information Collection & Use
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information (“Personal Information”). may include, but is not limited to:
- Name
- Address
- Email Address
- Telephone Number
- Delivery Address
Log Data
We collect information that your browser sends whenever you visit our Service (“Log Data”). This Log Data may include information such as your computer’s Internet Protocol (“IP”) address, browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages and other statistics.
Data Storage
Your personal data may be electronically stored on our servers located in the UK. These servers are safeguarded by password protection and antivirus programs, and access is limited to our authorized staff members.
Purpose of Processing Personal Data
We use your data for delivering services you request and as a means of correspondence if necessary. Processing of correspondence data is based on our legitimate interest to fulfil service requests initiated by you.
Your data may also be processed as transaction data, including for financial records such as VAT invoices, which we are legally obligated to retain for six years.
Data Sharing
We do not share your private data with any third party.
Data Deletion
Once your private data is no longer required or relevant, we will permanently delete electronic files.
Data Security
We have standard procedures in place to safeguard your data against breaches. This includes the use of password-protected electronic files, with password changes every three months. We maintain backups by creating electronic copies securely stored on our UK-based server, protected by password and antivirus software.
In compliance with legal requirements, we will promptly report any data breaches to the Information Commissioner’s Office (ICO) within 72 hours of the event. We will also inform all affected individuals in the event of a data breach.
The security of your Personal Information is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.
Policy Amendments
We may update this policy to enhance our data management processes. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Your Rights
- As a data subject, you have the following rights:
- The right to be informed about how and why your information is processed.
- The right to confirm if your information is being processed and obtain access to it and other related information. Subject access requests will be addressed within a maximum of 14 days.
- The right to have your data corrected if it is inaccurate or incomplete.
- The right to request the erasure of your data if it is no longer necessary for its original purpose or if there are no overriding legitimate grounds for processing.
- The right to restrict the processing of your personal information under certain circumstances.
- The right to object to data processing when based on our legitimate interests.
- To exercise any of these rights, please contact our data protection officer.
- This Privacy Policy is subject to updates. Please refer to this page periodically for the latest information.