Privacy Policy
1. Introduction
This Privacy Policy explains how Bloom & Breathe Birth collects, uses, stores, and protects your personal data in compliance with the UK GDPR.
2. Data Controller
Bloom & Breathe Birth, operated by sole trader Ciaran Walsh is the Data Controller.
hello@bloomandbreathebirth.com
3. Information We Collect
We may collect:
Personal Data
names of both parents
contact details
due window
address (for postage)
booking information
attendance records
Special Category Data (Health-related)
pregnancy status
due window
This is processed under GDPR Art. 9(2)(a): explicit consent.
Technical Data
IP address
browser type
device information
cookies
4. How We Use Your Data
We use your data to:
process bookings
deliver services
communicate upcoming sessions
post printed materials
manage graduate groups
send optional newsletters (only with consent)
comply with legal obligations (tax, accounting, insurance)
Data is never sold.
5. Legal Bases for Processing
Contract (service delivery)
Consent (health data, marketing)
Legitimate interest (improving services)
Legal obligation (accounting, compliance)
6. Data Retention
Booking and attendance records: 7 years (legal requirement)
Email communications: 3 years
WhatsApp groups: closed and archived per policy
7. Sharing Your Data
We may share your data only with:
our scheduling system (Squarespace)
payment processors
accountants and HMRC (where required)
postal/courier services
workshop automation tools (email providers)
All providers follow GDPR standards.
8. Your Rights
You may request:
access
correction
deletion
restriction
portability
withdrawal of consent
Email: hello@bloomandbreathebirth.com
9. Security
We implement appropriate technical and organisational measures to protect your personal data.
10. Contact
For privacy queries: hello@bloomandbreathebirth.com