top of page

Privacy & Data Notice

Reflexology with Stella
Findon Valley, Worthing
Email: stellacpaourou@gmail.com
Last updated: February 2026

 

1. Introduction

At Reflexology with Stella, I am committed to protecting your privacy and handling your personal information with transparency and care.
This notice explains:

  • what information I collect,

  • how I use and store it,

  • who I share it with,

  • how long I keep it, and

  • your rights under UK GDPR.

By booking an appointment, completing a consultation form, or contacting me, you agree to the practices described in this notice.

​

2. What Personal Data I Collect

I may collect the following types of personal data:

​

2.1 Basic Contact Information

  • Name

  • Email address

  • Phone number

  • Address (for invoicing only)

  • Appointment details

​

2.2 Health & Consultation Information

To provide safe and effective treatments, I collect relevant medical and lifestyle details, including:

  • Medical history

  • Relevant conditions or injuries

  • Medications

  • Treatment notes and progress observations

 

2.3 Financial / Billing Information

If an invoice is created, Bookipi may store:

  • Name

  • Email

  • Address

  • Services purchased

  • Payment amount

 

2.4 Booking Information

Goldie may store:

  • Appointment dates and times

  • Client contact details

 

2.5 Marketing Preferences

  • Your email address (if you subscribe voluntarily to my MailChimp mailing list)

I do not collect or store payment card details.

 

3. How I Collect Your Data

I collect your personal information through the following methods:

  • When you complete an online form via JotForm

  • When you contact me by email, phone, or social media

  • When you book an appointment through Goldie

  • When you receive an invoice via Bookipi

  • When you subscribe to marketing emails via MailChimp

  • Through paper consultation forms completed in person

Paper notes and treatment records are stored securely in a locked filing cabinet.

 

4. Lawful Basis for Processing Your Data

Under UK GDPR, I rely on the following lawful bases:

 

4.1 Consent

For collecting health information and sending marketing emails.

 

4.2 Contract

To provide treatments and manage bookings.

 

4.3 Legal Obligation

To keep financial records for HMRC for 7 years.

 

4.4 Legitimate Interests

To run my business safely and efficiently (e.g., appointment reminders).

 

5. How Your Data Is Stored

Your data may be stored securely in:

  • Paper form (consultation records) in a locked filing cabinet

  • Bookipi (invoicing)

  • Goldie (appointment booking)

  • JotForm (online forms)

  • Google Docs (administrative notes)

  • MailChimp (marketing subscribers)

  • Wix (website contact form submissions)

All third-party platforms are password protected.
Paper records are kept safely in secure, restricted storage.

 

6. How Long I Keep Your Data

  • Consultation records and treatment notes: 7 years

  • Invoices and financial documents: 7 years (HMRC requirement)

  • Emails and enquiries: up to 1 year

  • JotForm submissions: deleted when no longer needed

  • Marketing emails: until you unsubscribe

You may request deletion of your data at any time, except where legal obligations prevent it (e.g., financial records).

 

7. Sharing Your Data with Third-Party Processors

I never sell your data.
However, I do share information with trusted service providers who help run my business:

  • Wix – website hosting

  • JotForm – form submissions

  • Goldie – appointment booking

  • Bookipi – invoicing

  • MailChimp – marketing emails

  • Google – cloud storage

These services may store your data securely on servers inside or outside the UK.
They each operate under GDPR-compliant privacy safeguards.

Your information will only be shared with legal authorities if required by law.

 

8. Your Rights Under UK GDPR

You have the right to:

  • Access the personal data I hold about you

  • Correct inaccurate or incomplete data

  • Request deletion of your data (where legally allowed)

  • Withdraw consent at any time

  • Restrict how your data is used

  • Object to processing

  • Request a copy of your data (data portability)

To exercise your rights, email: stellacpaourou@gmail.com

 

9. Cookies

My website uses essential cookies only, which are required for the website to function properly.
I do not use advertising or tracking cookies unless Wix has enabled standard analytics features.

If analytics are active, they are used only to measure website performance and do not identify individuals.

 

10. Contact

For any questions or GDPR requests, please contact:
stellacpaourou@gmail.com

bottom of page