Privacy Policy & GDPR Statement
NKM Therapies
he***@**********es.com
www.nkmtherapies.com
Telephone: 07399 646953
At NKM Therapies, your privacy, confidentiality, and wellbeing are extremely important to us. We are committed to handling your personal information with care, transparency, and in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
NKM Therapies provides wellbeing, mindset, and supportive therapeutic services including:
• Clinical hypnotherapy
• Relaxation and visualisation therapy
• Talking therapy and wellbeing support
• Mindset and wellbeing coaching
• Menopause support
• One-to-one sessions (online and in person)
• Workshops, webinars, and group wellbeing sessions
• The Calm & Reset Hub
• Digital wellbeing products including audio recordings, video programmes, downloadable resources, and guided focus sessions
2. What Information We Collect
Depending on the services you use, we may collect:
• Name, address, email address, and telephone number
• Emergency contact details
• Relevant health and wellbeing information
• GP details where appropriate
• Session notes and brief progress summaries
• Appointment, booking, and payment information
• Website enquiries and email communications
• Digital platform usage information relating to online programmes, memberships, webinars, or purchased content
• Marketing preferences where you have opted in to receive updates or resources
3. Special Category Health Data
Some information shared during therapy or wellbeing support may be classed as special category health data under UK GDPR. This information is collected only where relevant to providing safe and appropriate support and is handled with strict confidentiality.
4. Why We Collect Your Data
We collect and use your information to:
• Provide wellbeing and therapeutic services safely and effectively
• Communicate regarding appointments, programmes, purchases, or support services
• Provide access to digital products, online programmes, and membership content
• Process bookings and payments securely
• Maintain professional and legal records
• Send marketing communications where consent has been given
• Improve services and understand client and customer needs
• Respond to enquiries and support requests
5. Lawful Basis for Processing
Under UK GDPR, the lawful bases we rely upon may include:
• Consent
• Contractual necessity
• Legitimate interests
• Legal obligations
• Provision of health or wellbeing support where applicable
6. Marketing Communications
If you choose to opt in, we may send emails relating to wellbeing resources, workshops, programmes, updates, offers, or relevant content. You can unsubscribe or withdraw consent for marketing communications at any time using the unsubscribe link provided in emails or by contacting NKM Therapies directly.
7. Third-Party Platforms & Data Processors
To support the running of our services, we may use trusted third-party providers including website platforms, email systems, booking systems, webinar platforms, payment processors, membership platforms, and secure cloud storage providers.
These may include platforms such as:
• Stripe
• Mailchimp
• Podia
• Zoom
• WordPress
• Amelia Booking
• Dropbox or secure cloud storage systems
These providers process data securely and are expected to comply with applicable data protection standards.
8. How We Store Your Data
Your information is stored securely using appropriate technical and organisational safeguards.
This may include:
• Password protected and encrypted devices
• Secure digital platforms
• Restricted practitioner-only access
• Locked storage for paper records where applicable
• Secure webinar and online meeting systems
9. International Data Transfers
Some third-party providers used by NKM Therapies may process data outside of the UK. Where this occurs, appropriate safeguards and GDPR-compliant protections are expected to be in place.
10. Data Retention
We retain data only for as long as reasonably necessary.
Typical retention periods may include:
• Therapy and client records: up to 7 years after support ends
• Financial and accounting records: 6 years
• General enquiries: up to 12 months
• Marketing information: until consent is withdrawn or unsubscribed
11. Sharing Your Data
Your data is never sold to third parties.
Information may only be shared:
• Where legally required
• For safeguarding reasons
• Where there is serious risk of harm to yourself or others
• Where necessary for secure payment or booking processing
12. Confidentiality
All therapy and wellbeing sessions are treated confidentially.
Confidentiality may only be broken where:
• There is concern regarding serious harm or safeguarding
• Disclosure is legally required
• There are concerns relating to terrorism, money laundering, or serious criminal activity
Where appropriate and safe to do so, this would normally be discussed with you first.
13. Your Rights Under GDPR
Under UK GDPR, you have the right to:
• Access your personal information
• Request corrections to inaccurate data
• Request deletion of information where legally permissible
• Restrict or object to processing
• Request data portability
• Withdraw consent for marketing at any time
• Lodge a complaint with the Information Commissioner’s Office (ICO)
14. Cookies & Website Tracking
The NKM Therapies website may use cookies, analytics tools, or similar technologies to improve website performance, understand visitor usage, and support marketing activity.
You can manage or disable cookies through your browser settings.
15. Digital Products & Online Content
Where you purchase or access online programmes, audio recordings, video sessions, memberships, or downloadable resources, limited account and usage information may be processed to manage purchases, provide access, and maintain platform security.
Digital content is intended for personal use only in accordance with the NKM Therapies Terms & Conditions.
16. Contact Information
Data Controller: NKM Therapies / Nicola Munson
Email: he***@**********es.com
Website: www.nkmtherapies.com
Telephone: 07399 646953
If you have concerns regarding how your data is handled, you also have the right to contact the Information Commissioner’s Office (ICO).
Website: www.ico.org.uk
