Wellbeing Massage Rochester (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy. This statement explains how we collect, use, store, and protect your information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018
We may collect and process the following information:
Full name
Email address
Phone number
Address (if provided)
When completing our online consultation or booking form, you may provide:
Relevant medical conditions
Injuries
Allergies
Medications
Pregnancy status
Any information necessary to ensure your massage treatment is safe and appropriate
Appointment history
Payment information (no card details are stored by us)
Communications and messages
We only collect data where we have a lawful basis under UK GDPR:
Consent — for processing health information you voluntarily provide.
Legitimate Interests — to manage appointments, provide treatment safely, and operate the business.
Legal Obligation — to maintain treatment records as required by insurance providers and industry regulations.
Your information may be used to:
Assess suitability for massage treatment
Tailor treatments to your needs
Contact you regarding appointments
Maintain accurate treatment records
Respond to queries or complaints
Meet insurance, legal, or regulatory requirements
We do not use your data for automated decision-making or profiling.
Your data is stored securely using industry-standard technical and organisational measures.
Digital records are protected through secure password-protected systems.
Health information is kept separate from general client data where appropriate.
We retain treatment records, including health information, for 7 years after your last appointment (or for 7 years after the age of 18 for minors), in accordance with insurance and regulatory requirements.
After this period, data is securely deleted or destroyed.
We will not sell or pass on your personal data to third parties unless:
We have your explicit consent
We are legally required to do so
It is necessary for insurance or regulatory purposes
It is required to protect your vital interests in an emergency
Payment processors may handle your card payments, but card details are never stored by us.
You have the right to:
Access your personal data
Request correction of inaccurate data
Request erasure of your data (where legally permissible)
Object to or restrict processing
Withdraw consent at any time
Request a copy of your records
Lodge a complaint with the Information Commissioner’s Office (ICO)
ICO website: www.ico.org.uk
Because health information is classified as special category data, we will obtain your explicit consent before collecting it. By submitting our online form or receiving treatment, you confirm that you consent to us holding and processing your health information for treatment and record-keeping purposes.
If you have questions about this statement or wish to exercise your data rights, please contact:
Data Protection Officer
Wellbeing Massage Rochester
118 High Street, Rochester, Kent, ME1 1JT
Email: enquiries@wbmr.co.uk
Phone: 01634 826 081
