Privacy Policy

Who we are

Our website address is: http://melanierossiter.com.

What personal data we collect and why we collect it

Contact forms

To assist with sending you requested information, we use Mailchimp to collect and store your email address. Mailchimp outlines their use of your personal data and anonymized data here https://mailchimp.com/legal/privacy. You may opt out of the collection of your data by unsubscribing (we will remove your data) and contacting them using the instructions on their privacy page.

Cookies

From time to time, the Website may engage in remarketing efforts with third-party companies, such as Google, Facebook, or Instagram, in order to market the Website. These companies use cookies to serve ads based on someone’s past visits to the Website.
Facebook: Opt-out of Facebook remarketing here: https://www.facebook.com/help/568137493302217

Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:

(a) https://support.google.com/chrome/answer/95647?hl=en (Chrome);

(b) https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences(Firefox);

(c) http://www.opera.com/help/tutorials/security/cookies/ (Opera);

(d) https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies (Internet Explorer);

(e) https://support.apple.com/kb/PH21411 (Safari); and

(f) https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy (Edge).

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We use Google analytics to record information about the pages a user has seen, for example the URL of the page, time of day, device used, etc. The information that we collect is anonymized and sent to Google Analytics for analysis.

Google Analytics also collects Internet Protocol (IP) addresses to provide and protect the security of the service, and to give website owners a sense of which country, state, or city in the world their users come from (also known as “IP geolocation”). Find out more about the data collected and it’s uses here: https://support.google.com/analytics/answer/6004245

Google Analytics mainly uses first-party cookies to report on visitor interactions on this website. Users may disable cookies or delete any individual cookie(https://policies.google.com/technologies/cookies).

Who we share your data with

Service Providers and others who help with our business operations and assist in the delivery of our products and services including, but not limited to, application development, site hosting, maintenance, data analysis, infrastructure provision, IT services, customer service, email delivery services, payment processing, marketing, analytics, and enforcement of our Terms of Service Agreement and other agreements;

Other users of the site to identify you to anyone to whom you send messages or make comments through the Services;
Persons or entities with whom you consent to have your Personal Data shared; Third parties in order to prevent damage to our property (tangible and intangible), for safety reasons, or to collect amounts owed to us; Merchants and payment processors; and
Third parties as we believe necessary or appropriate, in any manner permitted under applicable law, including laws outside your country of residence to: comply with legal process; respond to requests from public and government authorities, including public and government authorities outside your country of residence; enforce our Terms of Service Agreement and other agreements; protect our operations; protect our rights, privacy, safety or property, and/or that of our affiliates, you, or others; and allow us to pursue available remedies or limit the damages that we may sustain.

We will never sell, rent, or lease your Personal Data to a third party.

Additional information

How we protect your data

Information Asset Register

• I hold personal information about my clients that they have given me.
• This includes name, address, contact details, and, where appropriate, age. I also hold health and wellbeing information about them which I collect from them at their first consultation.
• I hold information about each treatment that they receive from me.
• I don’t share this information with anyone.
• I use the information I have to inform my treatments and provide them with any appropriate advice within the realms of the treatment, my professional experience and qualifications.
• I keep all data for:

1. claims occurring insurance: for which I am required to keep my records for 7 years after the last treatment – please see
2. law regarding children’s records: for which I am required to keep my records until the child is 25, or if 17 when treated then until they are 26.

3.The lawful bases for me to process personal data and special categories of data.

I process the personal data under:

• Legitimate interest: I am required to retain the information about my clients in order to provide them with the best possible treatment options and advice.
• Special Category Data – Health Related: I process under special category data, therefore the additional condition under which I hold and use this information is for me to fulfil my role as a healthcare practitioner, bound under the AoR Confidentiality as defined in their Codes of Practice and Ethics.

What data breach procedures we have in place

A personal data breach means a breach of security leading to the destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.

I understand that I only have to notify the ICO of a breach where it is likely to result in a risk to the rights and freedoms of individuals.

Where a breach is likely to result in a high risk to the rights and freedoms of individuals, I will notify those concerned directly and without undue delay.

In all cases I will maintain records of personal data breaches, whether or not they were notifiable to the ICO.

Industry regulatory disclosure requirements

Our Services are not directed to and we do not knowingly collect Personal Data from children under the age of 13. If we become aware that a child under the age of 13 has provided us with Personal Data, we will take steps to remove such data. If you become aware that your child has provided us with Personal Data without your consent, please contact us at melsreflexology@gmail.com. By using the Services, you are representing to us that you are not under the age of 13.

Changes to this Privacy Policy

We may change this Privacy Policy at any time. The most recent version of the Privacy Policy is indicated by the “Last Updated” date at the top of the Privacy Policy. All changes are effective immediately upon posting. Please review this Privacy Policy frequently to stay updated on changes that may affect you. Your continued use of this website signifies your continuing consent to be bound by this Privacy Policy.

Protection of Personal Data

We use reasonable and appropriate physical, electronic, and administrative safeguards to protect personal data from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the nature of the Personal Data and risks involved in processing that information.