top of page

Privacy Policy

PRIVACY STATEMENT

Tash Natrins Yoga is committed to protecting your personal data and respecting your privacy. This Privacy Notice explains how your personal data is collected, used, stored, and protected in line with the UK General Data Protection Regulation (UK GDPR).

Who I am

Tash Natrins Yoga is owned and operated by Natasha Natrins, an HCPC-registered physiotherapist and yoga teacher.

For the purposes of data protection law, I am the data controller of your personal data and am registered with the Information Commissioner’s Office (ICO).

If you have any questions about this Privacy Notice or how your data is handled, you can contact me at: hello@tashnatrinsyoga.com

What data I collect

I may collect and store the following personal data:

Personal information

  • Name

  • Email address

  • Contact details

  • Booking and payment information

Special category (health) data

  • Medical history and health information provided by you for the purpose of determining suitability for Physio Flow classes

How your data is collected

Your data may be collected when you:

  • Book a class or create an account via my website or booking platform

  • Complete a medical history and consent form

  • Contact me by email or message

Medical and health data is collected via a secure third-party form provider and is not stored directly within the Wix website platform.

Why I collect your data (lawful basis)

Under UK GDPR, I rely on the following lawful bases:

  • Performance of a contract – to manage bookings, payments, and access to classes

  • Explicit consent – to collect and process health (special category) data

  • Legitimate interests – to ensure classes are delivered safely and appropriately

You may withdraw your consent for the use of your health data at any time, though this may mean you are unable to participate in classes.

In addition to GDPR obligations, I am required under HCPC and Chartered Society of Physiotherapy (CSP) professional standards to:

  • maintain accurate records

  • ensure client safety

  • retain information where required for legal, professional, or insurance purposes

This informs how long certain data is retained and how it is protected.

How your data is used

Your data is used to:

  • Manage class bookings and payments

  • Communicate with you about classes

  • Determine suitability and safety for participation

  • Meet professional, insurance, and legal obligations

Your data is not used for marketing purposes unless you have explicitly opted in.

How your data is stored and protected

  • Booking and account data is stored securely via Wix and related booking systems

  • Medical and health data is stored securely via a third-party form provider with appropriate security measures

  • Communication is via Proton mail with end-to-end encryption

  • Access to your data is restricted to Natasha Natrins only

Reasonable technical and organisational measures are in place to protect your data from unauthorised access, loss, or misuse.

How long your data is kept

  • Booking and payment records are retained in line with legal and accounting requirements

  • Medical and health data is retained only for as long as necessary for professional and insurance purposes, and is reviewed periodically

You may request deletion of your data where appropriate.

Sharing your data

Your data will not be shared with third parties except where required by law, insurance providers, or professional regulators.

Your rights

Under UK GDPR, you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion of your data

  • Restrict or object to processing

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

Changes to this Privacy Notice

This Privacy Notice may be updated from time to time. The most current version will always be available on my website.

bottom of page