top of page

Privacy Policy

Last updated: [add date]

Cedar Rose Wellness is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website, make an enquiry, or book a treatment.

This policy is written in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Business name: Cedar Rose Wellness

Location: Urmston, Greater Manchester, United Kingdom

Contact email: [your business email]

Website: [your website URL]

​

Cedar Rose Wellness is the data controller responsible for your personal data.

2. What Personal Data We Collect

2. What Personal Data We Collect

We may collect and process the following information:

a) Information you provide directly

  • Name

  • Email address

  • Phone number

  • Appointment details

  • Health information relevant to your treatment (consultation forms)

  • Messages sent via contact forms, email, or social media

b) Automatically collected information

  • IP address

  • Browser type and version

  • Pages visited and time spent on the website

  • Cookies and similar technologies (see Section 7)

3. How We Use Your Information

We use your personal data to:

  • Respond to enquiries

  • Manage bookings and appointments

  • Provide safe and appropriate treatments

  • Maintain accurate client records

  • Communicate with you about your appointment

  • Improve our website and services

  • Meet legal and insurance requirements

We will never sell your data to third parties.

4. Lawful Basis for Processing

Under UK GDPR, we process your data on the following lawful bases:

  • Consent – where you have given clear permission

  • Contract – to fulfil a booking or service

  • Legal obligation – where required by law

  • Legitimate interests – to operate and improve our business safely and professionally

5. Health & Special Category Data

For treatments, we may collect limited health information (e.g. medical conditions, allergies). This data is:

  • Collected only when necessary

  • Stored securely

  • Accessed only by Cedar Rose Wellness

  • Used solely to ensure your safety and wellbeing

You may withdraw consent at any time, but this may affect our ability to provide treatment.

6. How We Store & Protect Your Data

We take appropriate security measures to protect your personal data, including:

  • Password-protected systems

  • Secure booking platforms

  • Locked physical records (where applicable)

We only keep your data for as long as necessary:

  • Client records: typically up to 7 years (insurance/legal purposes)

  • Enquiry data: up to 12 months if no booking is made

7. Cookies

Our website may use cookies to:

  • Ensure the website functions correctly

  • Understand how visitors use the site

You can control or disable cookies through your browser settings. Continued use of the website implies consent unless cookies are disabled.

8. Third-Party Services

We may use trusted third-party services such as:

  • Online booking systems (e.g. Fresha or similar)

  • Website hosting providers

  • Email services

These providers only process data necessary to deliver their services and are GDPR-compliant.

9. Your Data Protection Rights

You have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion of your data

  • Restrict or object to processing

  • Withdraw consent at any time

To exercise your rights, please contact us at:
[your business email]

10. Complaints

If you are unhappy with how your data is handled, you have the right to complain to the Information Commissioner’s Office (ICO):

Website: https://www.ico.org.uk
Telephone: 0303 123 1113

11. Changes to This Policy

This Privacy Policy may be updated from time to time. Any changes will be posted on this page with an updated revision date.

.

bottom of page