top of page

Privacy Policy

Effective Date: 01stJanuary 2026
Company Name: Thai Therapy Body & Mind
Location: United Kingdom

Thai Therapy Body & Mind is committed to protecting your privacy and handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Thai Therapy Body & Mind is the data controller responsible for your personal data.

If you have any questions about this Privacy Policy or how we handle your data, please contact:
Email: [Insert Email Address]
Phone: [Insert Phone Number]
Address: [Insert Business Address]

2. What Personal Data We Collect

We may collect and process the following information:

  • Full name

  • Contact details (phone number and email address)

  • Appointment and booking details

  • Relevant health information (e.g. injuries, medical conditions, pregnancy status)

  • Payment information (processed securely via third-party providers)

  • Website usage data (via cookies and analytics tools)

We only collect data necessary to provide safe and effective massage treatments and manage our business operations.

3. Lawful Basis for Processing

Under UK GDPR, we rely on the following lawful bases:

  • Contract – To provide booked treatments and manage appointments.

  • Legal Obligation – To comply with tax, insurance, or regulatory requirements.

  • Legitimate Interests – To manage our business operations and improve services.

  • Explicit Consent – For processing health-related information and for marketing communications where applicable.

You may withdraw your consent at any time.

4. How We Use Your Data

We use your information to:

  • Provide massage treatments safely and effectively

  • Maintain confidential treatment records

  • Manage bookings and communicate with you

  • Process payments

  • Comply with legal and insurance requirements

  • Improve our website and services

We do not sell or rent your personal data.

5. Special Category Data (Health Information)

Health information you provide is classified as “special category data” under UK GDPR. This information is:

  • Collected only where necessary for your treatment

  • Kept strictly confidential

  • Stored securely

  • Accessed only by authorised personnel

6. Data Sharing

We may share your information with:

  • Booking system providers

  • Payment processors

  • Accountants or professional advisers

  • Legal or regulatory authorities where required

All third parties are required to keep your data secure and process it in accordance with the law.

7. Data Retention

We retain client records only for as long as necessary for legal, insurance, and professional requirements. When no longer required, your data will be securely deleted or destroyed.

8. Data Security

We take appropriate technical and organisational measures to protect your personal data from unauthorised access, loss, misuse, or disclosure.

9. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request erasure of your data (where applicable)

  • Restrict processing

  • Object to processing

  • Data portability

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

You can contact the ICO at: https://www.ico.org.uk

10. Cookies

Our website may use cookies to improve user experience and analyse traffic. You can manage cookie preferences through your browser settings.

11. Updates to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.

bottom of page