Legal

Privacy Policy

Data Controller: Fitnessherbtendo
Address: 90–93 Cathedral Walk, The Ridings Centre, Wakefield WF1 1YD, UK
Contact: online@fitnessherbtendo.world
Last Updated:

1. Introduction

Fitnessherbtendo ("we", "our", "us") is committed to protecting the privacy and personal data of all individuals who interact with our website and services. This Privacy Policy explains what data we collect, how we use it, and what rights you hold under applicable UK and EU data protection legislation, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using this website, you acknowledge that you have read and understood this policy. If you do not agree with its terms, please do not use this website.

2. Who We Are

We are Fitnessherbtendo, a provider of outdoor fitness experiences, educational programmes, and personalised guidance based in Wakefield, United Kingdom. We operate solely as an informational and educational service provider. We do not provide medical, clinical, or healthcare services.

Contact details:
90–93 Cathedral Walk, The Ridings Centre, Wakefield WF1 1YD, UK
Phone: +44 1924 382 828
Email: online@fitnessherbtendo.world

3. Data We Collect

3.1 Information You Provide Directly

When you submit an enquiry through our contact form, we collect:

  • Full name
  • Email address
  • The content of your message
  • A record of your GDPR consent

We do not collect payment card details or sensitive personal data (such as health information) through this website. If programme participation involves considerations relevant to physical activity, any related information is gathered separately with explicit consent.

3.2 Data Collected Automatically

When you browse this website, certain data may be collected automatically by our server or analytics systems, subject to your cookie preferences:

  • IP address (anonymised where possible)
  • Browser type and version
  • Pages visited and time spent
  • Referring website address
  • Device type and screen resolution

3.3 Cookie Data

We use cookies on this website. See our Cookie Policy for full details of the cookies we use and how to manage them.

4. How We Use Your Data

We use the personal data we collect for the following purposes:

  • To respond to enquiries submitted through our contact form
  • To provide information about our experiences, programmes, and guidance offerings
  • To confirm bookings and send relevant preparation information
  • To maintain records of communications as required
  • To analyse and improve website performance (analytics data, with consent)
  • To comply with legal obligations

5. Legal Basis for Processing

We process your personal data on the following lawful bases under UK GDPR:

  • Consent: Where you have provided explicit consent (e.g., submitting the contact form with GDPR consent checkbox)
  • Legitimate Interests: For basic website analytics that help us understand how our site is used, balanced against your rights and expectations
  • Legal Obligation: Where we are required to process data to comply with a legal or regulatory requirement

6. Data Retention

We retain personal data only for as long as necessary for the purpose it was collected:

  • Enquiry data: Retained for up to 12 months from the date of your last communication, after which it is securely deleted
  • Booking records: Retained for up to 6 years in accordance with standard business record-keeping requirements
  • Analytics data: Retained in anonymised or aggregated form; individual session data retained for no more than 14 months
  • Consent records: Retained for as long as the consent remains active, plus 12 months thereafter

7. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share your data in the following limited circumstances:

  • Service providers: Third-party providers who assist in website hosting, email delivery, or analytics — engaged under data processing agreements that require them to handle data securely and in accordance with applicable law
  • Legal requirements: Where disclosure is required by law, court order, or regulatory authority
  • Protection of rights: Where disclosure is necessary to protect the rights, property, or safety of Fitnessherbtendo or others

8. International Data Transfers

Where personal data is transferred outside the United Kingdom or European Economic Area, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the Information Commissioner's Office (ICO), or that the recipient country provides an adequate level of data protection.

9. Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

  • Right of Access: To request a copy of the personal data we hold about you
  • Right to Rectification: To request correction of inaccurate or incomplete data
  • Right to Erasure: To request deletion of your data where there is no compelling reason for its continued processing
  • Right to Restrict Processing: To request that we limit how we use your data in certain circumstances
  • Right to Data Portability: To receive your data in a structured, commonly used, machine-readable format
  • Right to Object: To object to processing based on legitimate interests
  • Right to Withdraw Consent: Where processing is based on consent, to withdraw that consent at any time without affecting the lawfulness of prior processing

To exercise any of these rights, contact us at online@fitnessherbtendo.world. We will respond within one calendar month.

10. Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:

  • HTTPS encryption for all data in transit
  • Access controls limiting who can view personal data internally
  • Regular review of data retention and deletion procedures
  • Secure data handling agreements with third-party processors

While we take all reasonable precautions, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of data transmitted to us, but we will notify you and the ICO promptly in the event of a data breach that affects your rights and freedoms, as required by law.

11. Complaints

If you have concerns about how we handle your personal data, please contact us in the first instance. If you remain dissatisfied, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The date of the most recent revision is displayed at the top of this page. Continued use of this website after any changes constitutes your acceptance of the updated policy.