Privacy and Data Policy

Last updated: 23 May 2026

These policies are designed for use by Beth Emily Wheeler, a UK-based online nutrition and dietetic coach providing dietetic consultations, nutrition plans, educational programmes, and nutrition and fitness challenges.

These documents are drafted to align with:

UK GDPR and the Data Protection Act 2018;
The standards and guidance issued by the Health and Care Professions Council (HCPC);
Professional expectations commonly applied to HCPC-registered dietitians and members of the British Dietetic Association (BDA).

1.1 Who We Are

Beth Emily Optimal (“we”, “us”, “our”) provides online dietetic consultations, personalised nutrition plans, educational programmes, coaching services, and nutrition and fitness challenges.

For the purposes of UK data protection law, we are the “data controller” of your personal information.

Contact details:

Business Name: Beth Emily Optimal
Website: https://www.bethemilyoptimal.com/
Email: bethemilyoptimal.com

Association for Nutrition registration number: 21437

British Dietetic Association registration number: 1002016

The Health and Care Professions Council registration number: DT035620.

1.2 Professional Standards

We aim to handle all personal information in accordance with:

UK GDPR;
The Data Protection Act 2018;
HCPC Standards of Conduct, Performance and Ethics;
Applicable confidentiality obligations for healthcare professionals.

We treat health information as sensitive personal data and apply enhanced confidentiality protections.

1.3 Information We Collect

We may collect and process the following categories of information:

Personal Information

Name;
Email address;
Phone number;
Postal address;
Date of birth;
Emergency contact details.

Health & Nutrition Information

Medical history;
Dietary habits;
Weight and body measurements;
Lifestyle information;
Exercise history;
Food preferences and allergies;
Supplement and medication information;
Laboratory results or health reports voluntarily provided by you.

Technical Information

IP address;
Browser type;
Device information;
Website usage analytics;
Cookies and tracking data.

Payment Information

Payments may be processed by third-party payment providers. We do not store full payment card information on our systems.

1.4 How We Use Your Information

We use your information to:

Provide dietetic consultations and coaching services;
Develop personalised nutrition plans;
Respond to enquiries and customer support requests;
Process bookings and payments;
Maintain professional healthcare records;
Comply with legal and regulatory obligations;
Protect client safety and wellbeing.

We only use health-related information where there is a lawful basis to do so under UK GDPR.

1.5 Legal Basis for Processing

Depending on the circumstances, we rely on:

Consent;
Performance of a contract;
Legitimate interests;
Compliance with legal obligations;
Provision of health or social care services.

Where required, we will ask for explicit consent before processing sensitive health information.

You may withdraw consent at any time by contacting us.

1.6 Confidentiality

We recognise our professional duty of confidentiality.

Your information will be kept confidential unless:

You provide consent for disclosure;
Disclosure is required by law;
Disclosure is necessary to protect your vital interests or the safety of others;
Disclosure is required as part of safeguarding obligations.

We aim to follow HCPC confidentiality guidance when handling client information.

1.7 Sharing Your Information

We may share information with:

Secure payment processors;
Website and hosting providers;
Scheduling and telehealth platforms;
Professional advisers;
Regulatory authorities where legally required;
Your GP or healthcare providers where you request or consent to this.

We do not sell personal data.

Any third parties handling data on our behalf are expected to implement appropriate confidentiality and security protections.

1.8 International Transfers

Where data is transferred outside the UK, we aim to ensure appropriate safeguards are in place in accordance with UK GDPR requirements.

1.9 Data Retention

We retain records only for as long as reasonably necessary for:

Clinical record keeping;
Legal and insurance purposes;
Regulatory compliance;
Business administration.

Health records may be retained for a minimum period consistent with professional and insurance recommendations.

1.10 Data Security

We implement reasonable technical and organisational security measures including:

Password-protected systems;
Secure cloud storage;
Restricted access to records;
Encrypted communications where reasonably practicable.

However, no online transmission or storage system can be guaranteed completely secure.

1.11 Your Rights

Under UK GDPR, you may have the right to:

Access your personal information;
Correct inaccurate data;
Request deletion of data;
Restrict processing;
Object to certain processing activities;
Request transfer of your information;
Withdraw consent.

Requests may be subject to legal, clinical, or regulatory limitations.

To exercise your rights, contact us using the details above.

1.12 Marketing Communications

We may send newsletters, updates, promotions, or programme information where you have consented or where otherwise permitted by law.

You can unsubscribe at any time.

1.13 Cookies

Our website may use cookies and analytics technologies to improve website performance and user experience.

You can manage cookies through your browser settings.

1.14 Children

Our services are not intended for individuals under 18 unless a parent, guardian, or appropriate healthcare professional is involved where legally required.

1.15 Complaints

If you have concerns about how your data is handled, please contact us first.

You also have the right to complain to the UK Information Commissioner’s Office (ICO):

https://ico.org.uk/

1.16 Changes to This Policy

We may update this Privacy Policy from time to time.

The latest version will always be available on our website.