top of page

Privacy Policy

Last updated: 1st October 2025

​

Rooted Healing is committed to protecting your privacy and handling your personal data with care, transparency, and respect.

​

This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website or contact us.

 

Data Controller

The data controller responsible for your personal information is:

Rooted Healing Data Controller. Email: info@rootedhealing.co.uk

If you have any questions about this policy or how your data is handled, please contact us using the details above.

​

1. What information we collect

We may collect and process the following types of personal information:

  • Name

  • Email address

  • Phone number (if provided)

  • Any information you choose to share when contacting us (for example via contact forms or email)

  • Technical data such as IP address, browser type, device information, and pages visited (through cookies and analytics)

We may collect billing and transaction information when you book or purchase services through this website. Payments are processed securely by third-party payment providers. Rooted Healing does not store or have access to your full card details.

We do not intentionally collect sensitive personal data through the website. If you choose to share personal or sensitive information when contacting us, this will be treated as confidential.

 

2. How we collect your information

We collect information when you:

  • Fill in a contact form

  • Email us directly

  • Browse the website (via cookies and analytics tools)

 

3. Why we use your information

We use your information only where necessary, including to:

  • Respond to enquiries

  • Provide information about our services

  • Arrange or manage appointments

  • Improve the website and user experience

  • Maintain website security

We do not sell, rent, or trade your personal data.

 

4. Legal basis for processing (UK GDPR)

Under UK GDPR, we rely on the following lawful bases:

  • Consent – where you choose to contact us

  • Legitimate interests – to operate and improve our website and services

  • Contract – where processing is necessary to provide a requested service

  • Legal obligation – where required by law

 

5. How we store and protect your data

We take reasonable technical and organisational measures to protect your personal information from loss, misuse, unauthorised access, or disclosure.

Your data is stored securely and only accessed by those who need it for legitimate business purposes.

No method of online transmission or storage is completely secure, but we work to maintain appropriate safeguards.

 

6. How long we keep your data

We keep personal information only for as long as necessary. Typical retention periods include:

  • General enquiries: up to 2 years from last contact

  • Client service records: up to 7 years (or as required by professional regulations)

  • Financial records: up to 6 years (for accounting and tax purposes)

When data is no longer required, it is securely deleted.

 

7. Sharing your information

We do not share your personal data with third parties except where necessary to:

  • Operate the website (e.g. hosting providers, email services, analytics tools)

  • Comply with legal obligations

All service providers are required to handle your data securely and lawfully.

7a. Third-Party Service Providers

We use the following third-party service providers to operate our website and services:

  • Wix

  • Google Analytics

  • Payment processing via Wix

  • Email services to include Outlook, Mailchimp, Google Workspace.

International Data Transfers

Some of our service providers may store or process your data outside the United Kingdom. Where this occurs, we ensure appropriate safeguards are in place, such as:

  • Adequacy decisions (countries approved by the UK Government as providing adequate protection)

  • Standard Contractual Clauses approved by the UK ICO

  • Other appropriate safeguards as required by UK data protection law

 

8. Cookies

This website uses cookies and similar technologies to:

  • Understand how visitors use the site

  • Improve performance and functionality

We will ask for your consent before using non-essential cookies (such as analytics cookies). Essential cookies necessary for the website to function are used automatically. You can control cookies through your browser settings, though disabling essential cookies may affect how the site functions.

A separate Cookie Policy may be provided if required.

8a. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.

 

9. Your rights

Under UK data protection law, you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion of your data

  • Restrict or object to processing

  • Withdraw consent at any time

To exercise these rights, please contact: info@rootedhealing.co.uk

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO): https://ico.org.uk

 

10. Children's data

This website is not intended for children under 18. We do not knowingly collect personal data from anyone under 18.

 

11. Updates to this policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date.

bottom of page