1. Introduction
Greg Ritter Massage Therapy (“we”, “our”, “us”) is committed to protecting your privacy and handling your personal data in a transparent and secure manner.
This Privacy Policy explains how we collect, use, store and protect your personal information when you:
Visit our website (grittermassage.co.uk)
Book an appointment
Contact us
Receive massage therapy treatment
We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Who We Are
Data Controller:
Greg Ritter Massage Therapy
6 The Fairway
London UB5 4SL
United Kingdom
Phone: 07772 120427
Website: https://grittermassage.co.uk
Greg Ritter Massage Therapy is the data controller responsible for your personal data.
3. What Information We Collect
A. Contact Information
Full name
Email address
Phone number
B. Appointment & Booking Information
Appointment date and time
Treatment type
Booking history
C. Health Information (Special Category Data)
Where relevant and voluntarily provided, we may collect limited health-related information necessary for safe treatment, such as:
Areas of tension or discomfort
Relevant injury history
Medical conditions that may affect treatment
Health data is handled with additional safeguards in accordance with UK GDPR.
D. Website Usage Data
IP address
Browser type
Pages visited
Cookies and analytics data
4. How We Use Your Information
We use your personal data to:
Manage and confirm appointments
Provide massage therapy services safely
Respond to enquiries
Maintain accurate treatment records
Improve our services
Comply with legal and insurance obligations
We do not sell, rent, or trade your personal data.
5. Legal Basis for Processing
We rely on the following lawful bases:
Contract – to provide booked services
Legitimate Interests – for business administration and service improvement
Consent – for health information and optional communications
Legal Obligation – where required by UK law
Health information is processed only where necessary for treatment and with your explicit consent.
6. Data Sharing
We may share your data with:
Online booking system providers
Payment processors
Website hosting providers
Professional advisers or regulatory authorities if legally required
All third parties are required to process data securely and lawfully.
7. Data Retention
We retain personal data only for as long as necessary:
Booking and contact data: up to 3 years after last appointment
Treatment notes: retained in line with professional insurance requirements
Financial records: retained as required by HMRC
Data is securely deleted when no longer required.
8. Data Security
We take reasonable technical and organisational measures to protect your data, including:
Secure website hosting
Encrypted website connection (SSL)
Restricted access to records
Secure storage of client notes
While no system can be completely secure, we take appropriate precautions to protect your information.
9. Your Rights
Under UK GDPR, you have the right to:
Access your personal data
Request correction of inaccurate data
Request deletion (where legally permitted)
Restrict or object to processing
Withdraw consent at any time
Lodge a complaint with the Information Commissioner’s Office (ICO)
ICO website: https://ico.org.uk
To exercise your rights, contact:
📞 07772 120427
10. Cookies
Our website may use cookies to:
Ensure proper website functionality
Improve user experience
Analyse website traffic
You may disable cookies in your browser settings.
11. Third-Party Links
Our website may contain links to external websites. We are not responsible for their privacy practices.
12. Changes to This Policy
We may update this Privacy Policy periodically. The most recent version will always be published on our website.
13. Contact
If you have any questions regarding this Privacy Policy or your personal data, please contact:
Greg Ritter Massage Therapy
6 The Fairway
London UB5 4SL
Phone: 07772 120427
Website: https://grittermassage.co.uk