Privacy Policy

Effective Date: March 2025
Website: www.theresetproject.co.uk
Owner: Sara Nilsson / The Reset Project

This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website or engage with our services. We are committed to safeguarding your privacy and complying with data protection laws, including the General Data Protection Regulation (GDPR).

What Information We Collect
We may collect the following types of information:

  • Personal identification details (name, email address, phone number)

  • Health-related information (only when voluntarily provided in forms or assessments)

  • Payment information (processed securely via third-party providers like Stripe or PayPal)

  • Website usage data (via cookies or analytics tools like Google Analytics)

How We Use Your Information
Your data may be used for:

  • Provide safe and effective care

  • Responding to enquiries or scheduling discovery calls

  • Delivering coaching or consulting services

  • Sending newsletters or updates (only if you’ve opted in)

  • Improving our website and service delivery

  • Maintaining records for internal and legal purposes

We will never sell, rent, or share your personal information for marketing purposes without your explicit consent.

Lawful Basis for Processing

We process your personal data under the following lawful bases:

  • Contract: to provide you with agreed naturopathic services

  • Legitimate interests: to maintain records and manage my business safely and professionally.

  • Consent: for processing sensitive health information. You may withdraw your consent at any time.

  • Legal obligation: to comply with legal or insurance record-keeping requirements.

Online Consultations and Electronic Communication

Online consultations are conducted using reputable platforms with appropriate security measures in place. Although all reasonable steps are taken to protect your information, no internet-based communication system can be guaranteed to be completely secure.

If you choose to communicate via email, please be aware that standard email is not fully encrypted.

How Long Records Are Kept

In line with professional standards and insurance requirements, clinical records are retained for: •

  • 7 years from the date of last consultation

  • For children: until age 25 (or 26 if aged 17 at end of treatment)

    After this period, records are securely deleted or destroyed. In certain cases, such as where records may be relevant to an insurance claim or legal proceeding, they may be retained for longer.

Storing and Securing Your Data
We take data protection seriously. Your personal information is stored securely using trusted platforms (e.g. Google Workspace or similar), and access is limited to authorised personnel only. We implement suitable measures to prevent unauthorised access, alteration, or disclosure of your data.

Cookies and Analytics
Our website may use cookies to enhance user experience and collect anonymous usage data. You can choose to disable cookies through your browser settings.

Your Rights
You have the right to:

  • Access the personal data we hold about you

  • Request correction or deletion of your data

  • Withdraw consent at any time

  • Lodge a complaint with the Information Commissioner’s Office (ICO): www.ico.org.uk

Please note that clinical records cannot be deleted where retention is required by law, insurance, or professional standards.

Third-Party Links
Our website may include links to external websites. We are not responsible for the privacy practices or content of those sites.

Changes to This Policy
This policy may be updated occasionally to reflect changes in regulations or business practices. The updated version will be posted on this page with a revised effective date.

Contact
If you have any questions or concerns about this privacy policy or how your data is handled, please contact:

Sara Nilsson
Email: sara@theresetproject.co.uk
Website: www.theresetproject.co.uk