Privacy Policy

1. Who We Are

Your Little Self is a CQC-registered wellness clinic operated by Marianne, a Registered Nurse. We offer ozone therapy, IV infusion treatments, and related wellness services from our clinic at:

 Unit 3, 2A Wrentham Avenue, London, NW10 3HA

Email: hello@yourlittleself.com

Website: yourlittleself.com

 For the purposes of UK data protection law, Your Little Self is the data controller responsible for your personal information.

 

2. What This Policy Covers

This privacy policy explains how we collect, use, store, and share your personal data when you:

•       Visit our website at yourlittleself.com

•       Contact us via email, phone, or social media

•       Book a consultation or treatment

•       Subscribe to the blog/newsletter

•       Interact with us on Instagram or other platforms

 

3. What Information We Collect

3.1 Information you give us

•       Name, email address, and phone number

•       Health and medical information relevant to your treatment

•       Consultation notes and clinical records

•       Payment details (processed securely — we do not store card data)

•       Any information you share with us via email, DMs, or forms

 

3.2 Information collected automatically

•       IP address and browser type

•       Pages visited and time spent on our website

•       Cookies and similar tracking technologies (see Section 8)

 

4. How We Use Your Information

We use your personal data to:

•       Book and manage your appointments and treatments

•       Maintain your clinical records in line with our CQC registration

•       Communicate with you about your care

•       Send you our newsletter (only with your consent)

•       Respond to enquiries and provide client support

•       Improve our website and marketing

•       Comply with our legal and regulatory obligations

 We will never use your health information for marketing purposes without your explicit consent.

 

5. Our Legal Basis for Processing

We rely on the following lawful bases under UK GDPR:

•       Contract: to deliver the treatments and services you have booked

•       Legal obligation: to maintain clinical records as required by CQC and professional nursing standards

•       Legitimate interests: to improve our services and communicate with existing clients

•       Consent: for marketing emails and newsletter sign-ups — you can withdraw this at any time

•       Vital interests or explicit consent: for processing special category health data

 

6. Who We Share Your Data With

We do not sell your personal data. We may share it with:

•       Our remote prescriber, solely for clinical oversight purposes

•       Phlebotomy or testing partners (e.g. Medicheck) where relevant to your treatment

•       Booking and payment systems that process data on our behalf

•       Email marketing platforms used to send our newsletter (where you have opted in)

•       Regulatory bodies (e.g. CQC, NMC) if legally required

All third parties we work with are required to handle your data securely and in accordance with UK data protection law.

 

7. How Long We Keep Your Data

•       Clinical records: retained for a minimum of 8 years from the date of your last treatment, in line with NHS and NMC guidance

•       Contact and enquiry data: held for up to 2 years if no ongoing relationship develops

•       Newsletter subscribers: held until you unsubscribe

•       Website analytics: anonymised after 26 months

 

8. Cookies

Our website uses cookies to help it function properly and to understand how visitors use it. These may include:

•       Essential cookies: required for the website to work

•       Analytics cookies: help us understand site usage (e.g. Google Analytics)

•       Marketing cookies: used if you have given consent for targeted advertising

You can manage your cookie preferences through your browser settings or our cookie consent tool when you first visit the site.

 

9. Your Rights

Under UK GDPR, you have the right to:

•       Access the personal data we hold about you

•       Correct any inaccurate or incomplete information

•       Request deletion of your data (subject to our legal obligations to retain clinical records)

•       Restrict or object to certain types of processing

•       Withdraw consent at any time for marketing communications

•       Data portability — receive your data in a structured, machine-readable format

•       Lodge a complaint with the Information Commissioner's Office (ICO)

To exercise any of these rights, contact us at hello@yourlittleself.com. We will respond within one month.

 

10. How We Keep Your Data Safe

We take the security of your personal and health data seriously. Measures include:

•       Password-protected and encrypted systems for storing clinical records

•       Restricted access to health information on a need-to-know basis

•       Secure email communication for sensitive correspondence

•       Regular review of our data handling practices as part of our CQC governance framework

 

11. Transfers Outside the UK

Where we use third-party services that may transfer data outside the UK (such as email platforms), we ensure appropriate safeguards are in place, including UK adequacy decisions or standard contractual clauses.

 

12. Changes to This Policy

We may update this policy from time to time. The most current version will always be available on our website. Where changes are significant, we will notify existing clients directly.

 

13. Contact Us

If you have any questions about how we use your data, or wish to exercise your rights, please get in touch:

 

Your Little Self

Unit 3, 2A Wrentham Avenue, London, NW10 3HA

hello@yourlittleself.com

yourlittleself.com

 

If you are not satisfied with our response, you can contact the ICO at ico.org.uk or call 0303 123 1113.

 

 

Look after your little self.