Privacy Policy.

Healing Through Yoga LTD trading as Esme Alexandra Winterflood
Website: embodiedtraumatherapies.com
Company registration: 13026334
Registered address: Landon Seamer, 335 City Road, London, EC1V 1LJ
Contact: esme@embodiedtraumatherapies.com

1. Introduction
Healing Through Yoga LTD (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store and share your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller
The data controller for your personal data is Healing Through Yoga LTD.

3. Data We Collect
We may collect and process the following information:

  • Identity information (name, date of birth)

  • Contact details (email address, postal address, telephone number)

  • Payment information (bank/credit card details) – via our secure payment processor

  • Health and wellbeing information relevant to providing services (e.g., medical history, trauma history)

  • Usage information (IP address, browsing behaviour via cookies)

  • Marketing/communication preferences

4. How We Use Your Data
We use your personal data for:

  • Providing and managing our services (bookings, sessions, courses)

  • Communicating with you (email, SMS, phone)

  • Processing payments and refunds

  • Marketing and offering new services (only where you have opted in)

  • Legal and regulatory compliance
    We rely on lawful bases including consent, contract performance, and legitimate interests where appropriate.

5. Sharing Your Data
We will not sell your personal data. We may share your data with:

  • Payment processors and banks for the purpose of processing transactions

  • IT and cloud service providers who assist with storing and processing data

  • Legal and regulatory authorities if required by law

6. International Transfers
If we transfer your personal data outside the UK/EEA, we will ensure adequate safeguards are in place (such as standard contractual clauses) to protect your data.

7. Cookies & Tracking
We use cookies and similar tracking technologies to enhance your user experience and for analytics. For more details, please refer to our Cookie Policy [insert link if you have one]. You can manage your cookie preferences via your browser settings.

8. Your Rights
You have the following rights under the UK GDPR:

  • Right to access your personal data

  • Right to rectify inaccurate data

  • Right to erase your data (“right to be forgotten”)

  • Right to restrict processing

  • Right to object to processing

  • Right to data portability

  • Right to withdraw consent at any time, where processing is based on consent
    To exercise any of these rights, please contact us at [insert email]. We will respond within one month.

9. Data Retention
We will retain your personal data only for as long as necessary to fulfil the purposes set out in this policy and in accordance with legal and regulatory obligations. We review our retention periods periodically.

10. Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised or unlawful processing, accidental loss, destruction or damage.

11. Changes to this Policy
We may update this Privacy Policy from time to time. We will post any changes on our website and indicate the date of the latest revision.

Last updated: 3/11/2025