top of page
Black-Crow-Therapies-logo
Our Treatments

Privacy Notice

At Black Crow Therapies, we are committed to protecting and respecting your privacy. This policy explains how we handle your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Black Crow Therapies is a massage therapy business based in Ebbw Vale, South Wales. For the purposes of data protection law, we are the 'data controller' of the personal information you provide to us.

2. Personal Data We Collect

We collect and process the following information:

  • Contact Details: Name, address, email address, and phone number.
  • Booking Information: Dates and times of your appointments.
  • Health Information: Medical history, physical conditions, and lifestyle details necessary to ensure safe and effective massage treatment.
  • Payment Details: Transaction records (processed via secure third-party payment providers).
  • Usage Data: Information about how you use our website, including cookies and IP addresses.
3. How and Why We Use Your Data

We use your information to:

  • Provide and tailor massage treatments to your specific needs.
  • Manage your bookings and send appointment reminders.
  • Process payments and maintain accurate financial records.
  • Respond to your enquiries and provide support.
  • Meet our legal, insurance, and professional obligations.
4. Lawful Bases for Processing

We process your data under the following conditions:

  • Contract: To fulfill our agreement to provide massage services.
  • Consent: Where you have given clear permission (e.g., for marketing or health queries).
  • Legal Obligation: To comply with tax or health and safety laws.
  • Legitimate Interests: To efficiently manage and grow our business and ensure the safety of our clients.
5. Special Category Data (Health Information)

Health information is considered 'special category data' under UK GDPR. We hold this information with the highest level of confidentiality and only use it to ensure your treatments are safe. Processing is based on your explicit consent or for the provision of health or social care.

6. How Long We Keep Your Data

We retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or insurance requirements. Typically, treatment records are kept for 7 years following your last appointment.

7. Who We Share Your Information With

We do not sell your data. We only share information with trusted third parties to run our business, such as:

  • Payment processors (e.g., Stripe, Mettle).
  • Booking and client management systems.
  • Email and communication providers.
  • Professional insurers or legal advisors when strictly necessary.
8. Your Rights

Under UK GDPR, you have the following rights:

  • Access: Request a copy of the info we hold about you.
  • Rectification: Correct any inaccurate data.
  • Erasure: Request that we delete your data (subject to legal retentions).
  • Objection: Object to processing based on legitimate interests.
  • Withdraw Consent: Withdraw your consent at any time.
  • Complain: You have the right to lodge a complaint with the ICO (www.ico.org.uk).
9. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. Access to your personal data is limited to those who have a genuine business need to know.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Black Crow Therapies
Email: blackcrowtherapies@gmail.com
Address: 60 Cambridge Gardens, Ebbw Vale, NP23 5HQ

This policy was last updated in April 2026. We may update this policy periodically to reflect changes in our practices or for other operational, legal, or regulatory reasons.

bottom of page