PRIVACY POLICY

WELLNEST PRIVACY POLICY

Last Updated: 24/10/2024

At WellNest, we are committed to protecting your privacy and ensuring that your personal data is handled securely and responsibly. This Privacy Policy explains how we collect, use, share, and protect your personal information when you visit our website, use our services, or interact with us in any other way.

By using WellNest services, you consent to the practices outlined in this policy. If you do not agree with this policy, please do not use our services.

1. Who We Are

WellNest is a wellness hub offering spa services, fitness classes, and wellness events in London. We act as the data controller for the personal information you provide to us.

  • Company Name: WellNest (Social WellNest Ltd)

  • Registered Address: 7-9 Crucifix Lane

  • Contact Email: contact@wellnest.london

2. What Information We Collect

We collect and process the following categories of personal data:

2.1 Personal Information You Provide

When you sign up for membership, book a service, or engage with us, we may collect:

  • Name: First name and surname.

  • Contact Information: Email address, phone number, and home address.

  • Payment Details: Credit/debit card information (processed securely via third-party providers).

  • Date of Birth: For age verification.

  • Health Information: Any relevant health information (e.g., medical conditions or injuries) that may be necessary for participation in activities or spa services.

  • Preferences and Interests: Your preferences for services, classes, and products.

2.2 Automatically Collected Data

When you visit our website or use our mobile app, we may collect:

  • IP Address: Your device’s internet protocol (IP) address.

  • Device Information: Information about the device you are using (e.g., mobile phone, tablet).

  • Cookies: We use cookies to enhance your experience and improve our services. You can control your cookie settings in your browser.

3. How We Use Your Information

We use your personal information for the following purposes:

3.1 Service Delivery

  • To process membership applications, bookings, and purchases.

  • To provide the services you request (e.g., spa sessions, yoga classes, café orders).

3.2 Customer Support

  • To respond to your inquiries and provide customer support.

  • To notify you about any changes to your membership, class schedule, or services.

3.3 Marketing and Communications

  • With your consent, we may send you promotional emails about new services, offers, or events.

  • We may personalise marketing content based on your preferences and previous interactions with WellNest.

  • You can opt-out of marketing communications at any time by clicking the “unsubscribe” link in our emails or by contacting us.

3.4 Legal Obligations

  • To comply with legal obligations, such as maintaining records for tax purposes.

  • To prevent fraud or other unlawful activities.

4. Legal Basis for Processing Personal Data

Under UK GDPR, we must have a legal basis to process your personal data. The legal bases we rely on include:

  • Consent: You have provided clear consent for us to process your personal data for specific purposes (e.g., marketing communications).

  • Contract: The processing is necessary for the performance of a contract (e.g., managing your membership).

  • Legal Obligation: We are required by law to process your data (e.g., for financial records).

  • Legitimate Interest: Processing is necessary for our legitimate business interests (e.g., improving our services), provided these are not overridden by your rights.

5. Sharing Your Information

We do not sell your personal data to third parties. However, we may share your data with:

  • Service Providers: Third-party companies that assist us with payment processing, email marketing, or IT services. These companies only process your data in accordance with our instructions and UK data protection laws.

  • Legal Authorities: We may disclose your information if required by law, court order, or government regulation.

6. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting purposes.

  • Membership Data: Retained for the duration of your membership and for a period of [X] years thereafter, unless a longer retention period is required by law.

  • Health Information: Only stored for as long as necessary for the service provided (e.g., spa sessions or fitness classes).

7. Data Security

We take the security of your personal data seriously. We have implemented appropriate technical and organisational measures to protect your information from unauthorised access, loss, or misuse.

  • Encryption: All payment data is encrypted and processed by third-party providers in compliance with PCI DSS standards.

  • Access Control: Personal data is only accessible to authorised personnel who need it to perform their job functions.

8. Your Data Protection Rights (UK GDPR)

Under the UK GDPR, you have the following rights regarding your personal data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.

  • Right to Rectification: You have the right to request correction of any inaccurate or incomplete personal data.

  • Right to Erasure: You have the right to request the deletion of your personal data, subject to legal retention requirements.

  • Right to Restrict Processing: You can request that we limit how we process your personal data.

  • Right to Data Portability: You can request that we transfer your data to another organisation.

  • Right to Object: You can object to certain types of data processing, such as marketing communications.

To exercise any of these rights, please contact us at privacy@wellnest.com. We aim to respond to all requests within one month.

9. Cookies and Tracking Technologies

We use cookies and similar technologies to provide functionality, improve performance, and analyse usage. You can manage your cookie preferences through your browser settings.

For more information, please refer to our Cookie Policy.

10. International Data Transfers

In some cases, your personal data may be transferred to and processed in countries outside of the UK and European Economic Area (EEA). Where such transfers occur, we ensure they are protected by appropriate safeguards, such as Standard Contractual Clauses (SCCs) or UK adequacy decisions.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you via email or a notice on our website.

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

  • Email: contact@wellnest.london

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues, if you believe we have not handled your data in accordance with the law.

By using WellNest services, you acknowledge that you have read and understand this Privacy Policy and agree to its terms.