1. Introduction
High Net Worth Health and Performance Ltd ("we", "us", "our") is committed to protecting and respecting your privacy.
This Privacy Policy explains how we collect, use, and safeguard your personal data when you engage with our services, visit our website, or communicate with us.
We comply fully with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and all other applicable UK data protection laws.
Contact and Application Form Data
When you complete an application or contact form on our website, we collect the personal information you provide (such as name, email address, location, role, responses and contact preferences). We use this information to review your enquiry and contact you regarding potential next steps.
The lawful basis for processing this data is your consent and our legitimate interests in responding to enquiries and evaluating potential engagements. We will retain form submissions for no longer than is necessary to review applications and manage communications, after which the data will be securely deleted or anonymised.
You have the right to withdraw consent, access your data, request correction, restriction or erasure, and lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been infringed.
2. Who We Are
Business name: High Net Worth Health and Performance Ltd
Registered address: Manufactory House, Bell Lane, Hertford, Hertfordshire, SG14 1BP
Email: max@highnetworthhealth.com
Data controller: High Net Worth Health and Performance Ltd
We are the "data controller" for the purposes of data protection law, which means we determine how and why your personal information is processed.
3. The Personal Data We Collect
We may collect and process the following types of personal data:
a. Information you provide directly
- Name, contact details (email address, phone number, postal address)
- Date of birth
- Relevant health information
- Notes from online or other assessment sessions
- Payment information (for billing purposes)
b. Information collected automatically
- Technical information (IP address, browser type, operating system)
We will only collect and process health-related information with your explicit consent, and only where it is necessary to provide our services.
4. How We Use Your Personal Data
We use your personal data to:
- Provide and manage our services
- Personalise sessions and track progress
- Communicate with you regarding appointments, billing, and updates
- Maintain business and financial records
- Comply with legal or regulatory obligations
- Improve our website, services, and client experience
We will never sell your personal information or share it with third parties for marketing without your explicit consent.
5. Legal Bases for Processing
We rely on one or more of the following lawful bases under the UK GDPR:
- Contract: To perform our obligations under our agreement with you
- Consent: When processing special category data (e.g. health information)
- Legal obligation: To comply with legal or regulatory requirements
- Legitimate interests: For efficient business operation, provided this does not override your rights
6. How We Store and Protect Your Data
We take the security of your personal information seriously. Measures we take include:
- Secure, password-protected and encrypted data storage
- Restricted access to authorised personnel only
- Regular data protection and confidentiality training for staff
We retain personal data only as long as necessary for the purposes collected, typically:
- Client records: up to 7 years after your final session (for legal and insurance reasons)
- Marketing contacts: until you withdraw consent
After these periods, your data will be securely deleted or anonymised.
7. Sharing Your Data
We may share your personal data with:
- Professional advisers (e.g. accountants, insurers, IT service providers)
- Regulatory or legal authorities, if required by law
Any third party we engage to process your data is required to comply with strict confidentiality and data protection standards and acts only under our instruction.
8. International Data Transfers
If we transfer personal data outside the UK (for example, through third-party service providers such as cloud platforms), we ensure that it is protected through one of the following:
- The destination country has an adequacy decision from the UK government, or
- We have implemented Standard Contractual Clauses approved under UK data protection law
9. Your Data Protection Rights
Under the UK GDPR, you have the following rights:
- Right to access – to request a copy of your personal data
- Right to rectification – to correct inaccurate or incomplete data
- Right to erasure – to request deletion of your personal data
- Right to restrict processing – to limit how your data is used
- Right to data portability – to receive your data in a structured, machine-readable format
- Right to object – to object to certain types of processing
- Right to withdraw consent – where processing is based on your consent
To exercise any of these rights, please contact us using the details in Section 2.
If you are dissatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Website: https://ico.org.uk/concerns
Telephone: 0303 123 1113
10. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. The most recent version will always be available on our website, with the date of the latest update clearly shown at the top.
11. Contact Us
If you have any questions or concerns about this Privacy Policy or how we process your personal data, please contact:
Data Protection Contact:
High Net Worth Health and Performance Ltd
Manufactory House, Bell Lane, Hertford, Hertfordshire, SG14 1BP
Email: max@highnetworthhealth.com