Call: +44 7938 771355
EMAIL US

Data Protection (GDPR)

How we approach data protection and information handling.

Effective date: March 2026

The Wellness Matrix Health Care Limited (“we”, “us”, “our”) is committed to protecting personal information and handling it responsibly. This page outlines our approach to data protection in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Our commitment

We aim to ensure that personal data is:

  • Processed lawfully, fairly, and transparently
  • Collected for specific, legitimate purposes and not used in ways that are incompatible with those purposes
  • Adequate, relevant, and limited to what is necessary
  • Accurate and kept up to date where appropriate
  • Kept securely and retained only as long as needed

What personal data we process

Through this website, we typically process personal data that you choose to provide, such as:

  • Name, email address, and telephone number
  • Enquiry details and message content
  • Service preferences (e.g., which service you are enquiring about)
  • Basic technical data such as IP address and browser information (via standard server logs)

Lawful basis for processing

We process personal information under one or more lawful bases, depending on the context, including:

  • Consent: where you submit a form and ask us to contact you
  • Legitimate interests: to respond to enquiries and operate our services responsibly
  • Legal obligation: where we must comply with applicable laws or regulatory requirements

How we use your information

We use personal data to:

  • Respond to enquiries, requests for information, and call-back requests
  • Discuss care and support options and next steps
  • Maintain appropriate records of communications
  • Improve website performance, usability, and service information
  • Support safeguarding and compliance obligations where relevant

Data minimisation

We only request and store information that is necessary to respond to your enquiry or to progress an appropriate discussion about care and support.

Security and confidentiality

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. Measures include:

  • Secure form handling with server-side validation and sanitised inputs
  • Spam protection controls such as honeypots and rate limiting (where implemented)
  • Controlled email delivery via authenticated SMTP for form notifications
  • Restricted access to stored enquiry information (authorised access only)

Data sharing

We do not sell personal information. We may share information only where necessary, for example:

  • With trusted service providers supporting website hosting or email delivery, under confidentiality obligations
  • Where required by law, regulation, or safeguarding responsibilities

International transfers

We aim to keep personal data processed within the UK. If any service provider processes data outside the UK, we will take steps to ensure appropriate safeguards are in place in accordance with applicable data protection law.

Retention

We retain personal data only for as long as necessary for the purpose it was collected for, or as required by law. Enquiries that do not progress are periodically reviewed and securely removed where appropriate.

Your rights

Under UK GDPR, you have rights in relation to your personal data, including:

  • The right to access your personal data
  • The right to request correction of inaccurate or incomplete data
  • The right to request erasure (where applicable)
  • The right to restrict processing in certain circumstances
  • The right to object to processing based on legitimate interests
  • The right to withdraw consent where processing is based on consent

How to make a request

To exercise your rights or ask a question about data protection, please contact us using the Contact form on this website. We may need to verify your identity before responding. We aim to respond within applicable statutory timeframes.

Complaints

If you are concerned about how your personal information has been handled, you have the right to raise a complaint with the Information Commissioner’s Office (ICO). We encourage you to contact us first so we can try to resolve your concern.

Updates to this page

We may update this page to reflect changes to our practices or legal requirements. The latest version will always be available here.