​

Last Updated: [June 3rd 2026]

​

1. Introduction

Be At One Healing (“we”, “us”, “our”) is committed to protecting your privacy and handling your personal information responsibly.

​

This Privacy Policy explains how we collect, use, store, protect, and process your personal information when you:

• Visit our website;

• Contact us with an enquiry;

• Purchase a service or product;

• Attend a consultation, coaching session, programme, workshop, or event;

• Subscribe to our newsletter;

• Interact with us online.
   

This Privacy Policy is intended to comply with the UK General Data Protection Regulation (“UK GDPR”), the Data Protection Act 2018, and other applicable privacy laws.
 

2. Data Controller

The Data Controller responsible for your personal information is:

Be At One Healing Email: beatonehealing@gmail.com

If you have any questions regarding this Privacy Policy or how your information is handled, please contact us using the details above.

​

3. Information We Collect

Depending on how you interact with us, we may collect the following information.

​

Personal Information

• Name

• Email address

• Telephone number

• Postal address (where relevant)

• Date of birth

• Time zone and country of residence

• Billing and payment information

• Communication preferences
   

Health and Wellbeing Information
 

Where relevant to the services provided, we may collect:

• Health history

• Medical information voluntarily disclosed by you

• Breathing assessment information

• Lifestyle information

• Information relating to symptoms or wellbeing concerns

• Coaching notes and session records
   

Some of the information we collect about your health and wellbeing is considered sensitive personal information under data protection law. We take appropriate steps to protect this information and only use it for the purposes described in this Privacy Policy.
 

Technical Information

When you visit our website, we may automatically collect:

• IP address

• Browser type

• Device information

• Operating system

• Website usage information

• Cookie data
   

4. How We Collect Information

​

Information may be collected through:

• Website contact forms

• Online questionnaires

• Intake and consent forms

• Appointment booking systems

• Email communications

• Zoom sessions

• Workshop registrations

• Newsletter sign-up forms

• Purchases made through our website

• Direct communications with us
   

5. How We Use Your Information
 

We use your information to:

• Provide coaching and wellbeing services;

• Schedule appointments;

• Deliver programmes and resources;

• Maintain client records;

• Respond to enquiries;

• Process payments;

• Improve our services;

• Send service-related communications;

• Send newsletters where consent has been provided;

• Comply with legal and regulatory obligations.
   

We do not sell personal information to third parties.
 

6. Lawful Basis for Processing

​

Under UK GDPR, we rely on the following lawful bases:

​

Contract

Where processing is necessary to:

• Provide requested services;

• Manage bookings;

• Deliver programmes;

• Process payments.
   

Legitimate Interests

Where processing is necessary for:

• Responding to enquiries;

• Managing our business operations;

• Maintaining records;

• Improving services.
   

Consent

Where you have provided consent for:

• Marketing communications;

• Collection and processing of health-related information;

• Participation in certain services.
   

You may withdraw consent at any time.
 

Legal Obligations

Where processing is required by law, including accounting, tax, and regulatory requirements.
 

7. Processing Health Information
 

Certain services require us to process health-related information.

​

We process this information only:

• With your explicit consent;

• To assess suitability for services;

• To provide personalised coaching and support;

• To maintain accurate client records.
   

You may withdraw consent at any time, although doing so may affect our ability to provide services.

​

8. Marketing Communications

We will only send newsletters, promotional emails, or marketing communications where:

• You have actively opted in; or

• We are otherwise legally permitted to do so.
   

You may unsubscribe at any time by:

• Clicking the unsubscribe link in any marketing email; or

• Contacting us directly.
   

9. Third-Party Service Providers

We use trusted third-party providers to help deliver our services.

​

These may include:

• Wix (website hosting and payments)

• Zoom (video conferencing)

• Google Workspace and Google Drive (document storage)

• Eventbrite (event registrations)

• Email marketing platforms

• Payment processing providers

• Scheduling software
   

These providers process information only as necessary to deliver their services and are required to maintain appropriate security measures.
 

10. International Data Transfers

Some of our service providers may store or process personal information outside the United Kingdom.

Where international transfers occur, we take reasonable steps to ensure appropriate safeguards are in place, including:

• Adequacy regulations;

• Standard Contractual Clauses;

• Other legally recognised transfer mechanisms.
   

11. How Long We Keep Information

We retain personal information only for as long as necessary.

​

Client records will generally be retained:

• During the period services are provided; and

• For between two (2) and three (3) years following the client’s final session.
   

Records may be retained longer where:

• Required by law;

• Necessary for legitimate business purposes;

• Required for dispute resolution.
   

Records are reviewed periodically and securely deleted when no longer required.
 

12. Session Notes and Recordings

Session notes may be retained as part of the client record.

​

Where sessions are recorded:

• Recordings may be shared with the client;

• Clients are responsible for downloading recordings within the stated time period;

• Recordings may be permanently deleted after that period;

• Recordings remain confidential and are not shared without consent unless required by law.
   

13. Data Security

We take reasonable technical and organisational measures to protect personal information.

These measures include:

• Password-protected systems;

• Secure cloud storage;

• Restricted access to records;

• Encrypted platforms where available;

• Regular security monitoring.
   

While we take reasonable precautions, no method of internet transmission or electronic storage can be guaranteed completely secure.
 

14. Your Rights

​

Under UK GDPR, you have the right to:

• Be informed about how your data is used;

• Access your personal information;

• Correct inaccurate information;

• Request deletion of information;

• Restrict processing;

• Object to processing;

• Request transfer of your data;

• Withdraw consent where processing relies on consent.
   

To exercise any of these rights, please contact:

Email: beatonehealing@gmail.com
 

We will normally respond within one month.
 

15. Complaints

If you are unhappy with how your information has been handled, please contact us first so that we can attempt to resolve the issue.

​

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO).

Information about making a complaint can be found on the ICO website.

​

16. Cookies

Our website may use cookies and similar technologies to:

• Improve website functionality;

• Analyse website usage;

• Enhance user experience.

You may manage cookie preferences through your browser settings.

​

A separate Cookie Policy may be provided where required.

​

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Any changes will be posted on our website and will become effective immediately upon publication.

The latest version will always be available on our website.

​

18. Contact Us

If you have any questions regarding this Privacy Policy or the handling of your personal information, please contact:

Be At One Healing Email: beatonehealing@gmail.com