top of page

Privacy Policy

Last updated: 23.03.2026

This Privacy Policy explains how we collect, use, store and protect your personal data when you visit this website or work with us. We are committed to protecting your privacy and handling your data transparently, securely and in line with UK GDPR, the Data Protection Act 2018, and professional requirements relevant to nutritional therapy practice in the UK.

 

1. Who We Are

 

Laura Leslie Nutrition Ltd  is a nutritional therapy practice based in the UK and practicing face-to-face and online.

Data Controller: Laura Leslie Nutrition Ltd

Practitioner: Laura Leslie 

Address: Inverurie, Aberdeenshire, Scotland. AB51 5UQ

Email: laura@lauraleslienutrition.co.uk

We are registered with the Information Commissioner’s Office (ICO). Our registration number is ZC103489 

 

2. The Personal Data We Collect

 

We may collect and process the following types of personal data:

a) Website visitors

  • Name (if submitted via forms)

  • Email address

  • IP address

  • Cookie data (see Cookies section)

b) Clients and prospective clients

  • Name, address, email, phone number

  • Date of birth

  • Health, medical and lifestyle information shared via intake forms or consultations

  • Test results (e.g. functional or laboratory testing)

  • Consultation notes and progress records

  • Payment and invoicing information

Health data is classified as special category data under UK GDPR.

 

3. How We Use Your Data

 

We only collect and use personal data where there is a lawful basis. Your data may be used to:

  • Respond to enquiries

  • Provide nutritional therapy services

  • Conduct consultations and create personalised nutrition plans

  • Recommend or interpret functional testing

  • Manage appointments and communications

  • Process payments and issue invoices

  • Send newsletters or educational content (where consent has been given)

  • Meet legal, regulatory and professional obligations

 

4. Lawful Basis for Processing (GDPR)

 

We process personal data under the following lawful bases:

  • Consent – for newsletters, marketing emails and optional data collection

  • Contract – to deliver agreed services

  • Legal obligation – for accounting, record‑keeping and regulatory requirements

  • Legitimate interests – to manage the practice effectively and improve services

  • Explicit consent – for processing special category health data

 

You may withdraw consent at any time.

For the processing of Special Category (health) data, our legal condition for processing is Article 9(2)(h) of the UK GDPR (the provision of health or social care) in addition to your explicit consent.

 

5. How Your Data Is Stored

 

Your data is stored securely using GDPR‑compliant systems, which may include:

  • Practice management software

  • Secure email systems

  • Password‑protected devices

  • Encrypted cloud storage

 

Access to personal data is restricted to authorised individuals only.

International Data Transfers: Some of our service providers (such as our practice management software or email platforms) are located outside the UK or EEA. Where data is transferred internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), to ensure your data remains protected to UK standards.

 

6. How Long We Keep Your Data

 

We retain personal data only for as long as necessary:

  • Client records: typically 7 years after the last consultation (in line with professional and insurance guidance)

  • Financial records: 6 years for HMRC compliance

  • Marketing data: until consent is withdrawn

 

Data is securely deleted when no longer required.

 

7. Sharing Your Data

 

Your data will never be sold.

We may share data only when necessary, for example:

  • With laboratories or testing providers (with your consent)

  • With other healthcare professionals (only with explicit permission)

  • With accountants or software providers under data‑processing agreements

  • With third-party supplement or laboratory providers (e.g., Natural Dispensary, Amrita, or specific testing labs) solely for the purpose of generating an invitation for you to purchase recommended products or kits.

 

All third parties are required to comply with GDPR.

 

8. Your Rights Under UK GDPR

 

You have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion (where applicable)

  • Restrict or object to processing

  • Withdraw consent at any time

  • Request data portability

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

 

ICO website: https://ico.org.uk

 

Please note: While you have the 'Right to Erasure,' this is not an absolute right for clinical health records. We are legally and professionally required by our insurers and professional bodies (BANT/CNHC) to retain your health records for a minimum of 7 years after your last consultation.

 

 

9. Cookies

 

This website uses cookies and similar technologies to improve functionality, security and analytics, such cookies include (but are not limited to) Social Media feed, Google Maps, Testimonial builder. 

You can manage or withdraw your cookie preferences at any time via the cookie banner or your browser settings.

 

10. Email Marketing

 

If you subscribe to our mailing list, we will only send emails you have consented to receive.

You can unsubscribe at any time using the link in the email or by contacting us directly.

 

11. Data Security

 

We take reasonable technical and organisational measures to protect your data from loss, misuse or unauthorised access. However, no system is completely secure, and data is shared at your own risk.

 

We understand the deeply personal and sensitive nature of the information you share regarding your health and your relationship with food. We treat this data with the highest level of professional confidentiality and care.

 

12. Changes to This Policy

 

We may update this Privacy Policy from time to time. The most recent version will always be available on this website.

 

13. Contact Us

 

If you have questions about this Privacy Policy or how your data is handled, please contact:

Laura Leslie Nutrition Ltd
Email: laura@lauraleslienutrition.co.uk

 

 

14. Automated Decision Making 

 

We do not use automated decision-making or profiling that has a legal or significant effect on you.

bottom of page