top of page

Privacy policy

Last updated: January 2025

1. Introduction

Kathryn Borg Nutrition (“we”, “us”, “our”) is committed to protecting and respecting your privacy.
This Privacy Policy explains how we collect, use, store, and protect your personal data when you engage with our naturopathic nutrition, supplement, lifestyle, and sports therapy services, whether in person or online.

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

2. Data Controller

For the purposes of data protection law, the data controller is:

Business Name: Kathryn Borg Nutrition
Practitioner Name: Kathryn Borg
Email: info@kathrynborgnutrition.com
Location: United Kingdom

 

3. What Personal Data We Collect

We may collect and process the following categories of personal data:

a) Personal Identification Data

  • Name

  • Address

  • Email address

  • Telephone number

  • Date of birth

b) Health and Special Category Data

  • Medical history and health concerns

  • Diagnoses disclosed by you

  • Prescription medications, over-the-counter medications, supplements, and herbal products

  • Lifestyle information

  • Test results and reports you choose to share

  • Consultation notes, nutrition plans, and supplement recommendations

c) Technical and Communication Data

  • Email correspondence

  • Online consultation details (e.g. Zoom or Microsoft Teams)

  • Appointment records

Health data is classified as special category data under UK GDPR and is handled with enhanced safeguards.

 

4. How We Use Your Personal Data

We use your personal data to:

  • Provide personalised naturopathic nutrition, supplement, lifestyle, and sports therapy services

  • Maintain accurate professional records

  • Communicate with you regarding appointments, programmes, and services

  • Meet legal, regulatory, and insurance obligations

We do not use your data for automated decision-making or profiling.

 

5. Lawful Basis for Processing

Under UK GDPR, we process your data on the following lawful bases:

  • Consent – where you have given explicit consent, particularly for health-related data

  • Contract – to fulfil our agreement to provide services

  • Legal obligation – where record keeping is required by law or professional standards

You may withdraw consent at any time, although this may limit or prevent the continuation of services.

 

6. Online Consultations (Zoom / Microsoft Teams)

Where consultations are conducted online:

  • We may use secure third-party platforms such as Zoom or Microsoft Teams.

  • These platforms process data in accordance with their own privacy policies.

  • We do not record consultations unless explicitly agreed in advance with your consent.

Clients are responsible for ensuring they access online consultations from a private and secure location.

 

7. International Clients and Data Transfers

Where clients are located outside the UK:

  • Personal data may be transferred or accessed internationally as part of providing services.

  • We take reasonable steps to ensure that appropriate safeguards are in place to protect your data in accordance with UK GDPR requirements.

By engaging our services, you acknowledge that your data may be processed in the UK or other jurisdictions where appropriate safeguards apply.

 

8. Data Storage and Security

We take appropriate technical and organisational measures to protect your personal data, including:

  • Secure digital storage systems

  • Password protection and restricted access

  • Secure handling of paper records where applicable

Your data is only accessible to those who need it for professional purposes.

 

9. Data Retention

We retain personal data only for as long as necessary to:

  • Provide services

  • Meet professional, legal, and insurance requirements

Once data is no longer required, it is securely deleted or destroyed.

 

10. Sharing Your Data

We do not sell or share your personal data with third parties.

Data will only be disclosed:

  • With your explicit consent

  • Where required by law

  • Where there is a serious concern regarding risk of harm

 

11. Your Rights Under UK GDPR

You have the right to:

  • Access your personal data

  • Request correction of inaccurate or incomplete data

  • Request erasure of your data (where legally permissible)

  • Restrict or object to processing

  • Withdraw consent at any time

Requests can be made by contacting us using the details above.

 

12. Cookies and Website Data

If applicable, our website may use essential cookies to ensure functionality.
Further details are provided in our Cookie Policy (if applicable).

 

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.
The most current version will always be available on our website.

 

14. Contact

If you have any questions about this Privacy Policy or how your data is handled, please contact:

Kathryn Borg

Kathryn Borg Nutrition
info@kathrynborgnutrition.com

bottom of page