UK GDPR

Aug, 5 2023

UK GDPR Compliance

At Massage Health Routes, we are committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR). This page explains how we comply with your rights under UK GDPR and how you can exercise them.

Scope and Applicability

This compliance page applies to all visitors of Massage Health Routes, regardless of location. While we do not collect personal data through user registration or accounts, we may process limited personal data through automated means such as website analytics, server logs, and cookies for legitimate business purposes.

Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights:

  • Right of access – You may request confirmation of whether we hold your personal data and receive a copy of it.
  • Right to rectification – You may request correction of any inaccurate or incomplete personal data we hold about you.
  • Right to erasure – You may request deletion of your personal data where there is no compelling reason for its continued processing.
  • Right to restrict processing – You may request limitation on how we use your data under certain conditions.
  • Right to data portability – Where applicable, you may request your data in a structured, commonly used, and machine-readable format.
  • Right to object – You may object to processing based on legitimate interests, including profiling and direct marketing.
  • Right not to be subject to automated decision-making – We do not use automated decision-making or profiling that produces legal effects or significantly affects you.

How We Comply

We have implemented technical and organisational measures to ensure data protection by design and by default. We do not store personal data in databases or user profiles. Any data collected via cookies or analytics tools is pseudonymised and retained only for as long as necessary for analytical purposes. We conduct regular reviews of our data handling practices to ensure ongoing compliance with UK GDPR.

Data We Process

The personal data we may process includes:

  • IP addresses collected via server logs
  • Browser and device information through analytics cookies
  • Usage patterns and page visits for statistical analysis

This data is not linked to any identifiable individual beyond what is technically necessary for website functionality and security.

Legal Basis for Processing

Our processing of personal data is based on legitimate interest under Article 6(1)(f) of the UK GDPR. This includes improving website performance, ensuring security, and understanding user engagement to enhance content relevance. We balance these interests against your rights and freedoms, and we do not process data for purposes that would override your privacy expectations.

How to Exercise Your Rights

To exercise any of your rights under UK GDPR, please contact us by email at [email protected]. Include your full name, the right you wish to exercise, and any relevant details about your interaction with our website. We will respond without undue delay and within one month.

Response Timeframes

We are required to respond to your requests within one month of receipt. In complex cases, we may extend this period by up to two additional months and will inform you of any delay and the reasons for it.

No Discrimination Policy

We will not discriminate against you for exercising your rights under UK GDPR. You will not be denied access to our services, charged different prices, or receive a different level of service because you have made a request regarding your personal data.

Updates and Changes

We may update this page periodically to reflect changes in law or our practices. Any material changes will be published on this page with an updated effective date. We recommend reviewing this page regularly.

Contact Information

If you have any questions about this compliance page or wish to exercise your rights, please contact our Data Protection Contact:

Max Lowery
The Bluecoat, School Lane, Liverpool, L1 3BX, United Kingdom
Email: [email protected]

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection. Visit ico.org.uk for more information.