Privacy Policy
1. Introduction
Align by Levi is committed to protecting your privacy and handling your personal data responsibly and transparently. This Privacy Policy applies to visitors and clients of our Pilates and physiotherapy studio and users of our website www.alignbylevi.co.uk. This Privacy Policy explains how we collect, use, store, and share your personal information when you engage with our services, including physiotherapy appointments, pelvic health services, Pilates and reformer classes, workshops, online services, and when you contact or make a booking with us.
This policy should be read alongside our Terms and Conditions and any other documents referred to within them.
Align by Levi complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Who We Are
Align by Levi , 33 Montefiore Road, BN3 1AN
Email: helloe@alignbylevi.co.uk
For the purposes of data protection law, Align by Levi is the Data Controller.
3. Personal Data We Collect
We collect personal data when you interact with Align by Levi, including when you make a booking, attend a session, complete forms, contact us, or use our website or booking systems.
a) Personal & Contact Information
• Name
• Email address
• Telephone number
• Address and postcode
• Emergency contact details
b) Booking & Account Information
• Appointment and class bookings (past and future)
• Attendance, cancellations, and waitlist activity
• Purchase history (services, classes, or packages)
• Correspondence with us by email, phone, or message
c) Health & Medical Information (Special Category Data)
• Medical history and current health conditions
• Physiotherapy assessments, treatment notes, and progress records
• Information provided on screening, intake, consent, or health questionnaires
We only request information that is necessary to provide services safely and effectively. Where additional information is required, we will explain why it is needed and how it will be used.
4. How We Use Your Personal Data
We use your personal data for the following purposes:
• To create and manage client accounts
• To book, manage, cancel, and administer appointments and classes
• To provide physiotherapy, pelvic health, and Pilates services safely
• To communicate with you regarding appointments, services, or changes
• To process payments and manage accounts
• To maintain accurate clinical and administrative records
• To improve our services and client experience
• To ensure safety, security, and fraud prevention
• To comply with legal and regulatory obligations
5. Lawful Basis for Processing
We process personal data under the following lawful bases:
• Contract – where processing is necessary to deliver services you have booked
• Consent – particularly for processing health and medical information
• Legal obligation – to comply with healthcare, tax, and regulatory requirements
• Legitimate interests – for practice administration and service improvement
You may withdraw your consent at any time where applicable by contacting us.
6. Health Data (Special Category Data)
Health and medical information is classed as special category data under data protection law. We process this information to ensure that our services are appropriate and safe for you and to respond effectively in the event of a medical emergency.
Because we cannot safely provide physiotherapy or exercise-based services without this information, processing is necessary for the performance of our contract with you. We will only process health data with your explicit consent, which is obtained via consent and intake forms.
7. Data Retention
We retain personal and clinical data only for as long as required by law and professional guidance:
• Adult clinical records: typically 8 years from the date of last treatment
• Children’s clinical records: until the individual reaches 25 years of age
• Financial and transaction records: 6 years for accounting and tax purposes
Some personal data is stored within third-party systems such as our booking platform Momence, which applies its own data retention and security standards.
8. Sharing Your Personal Data
Your personal data is treated as confidential. We only share data where it is lawful and necessary, including:
• With your explicit consent (e.g. GP, consultant, or other healthcare professionals)
• With trusted third-party service providers who support our operations, including:
– Momence (booking, client management, and payments)
– Secure payment processors integrated with Momence
– Website, email, and analytics providers
• Where required by law, legal process, or regulatory authorities
• To protect vital interests, safety, or legal rights
We never sell your personal data or share it for third-party marketing purposes.
9. International Data Transfers
Some third-party service providers may process data outside the UK or European Economic Area. Where this occurs, appropriate safeguards are in place to ensure your data is protected in accordance with data protection law.
10. Cookies
Our website may use cookies and similar technologies to improve functionality and analyse website usage. Cookies do not collect personal health information.
You can control or disable cookies through your browser settings. Please note that disabling cookies may affect website performance.
11. Your Rights
Under data protection law, you have the right to:
• Access your personal data
• Request correction of inaccurate data
• Request erasure of data (where applicable)
• Restrict or object to processing
• Request data portability
• Withdraw consent at any time
• Lodge a complaint with the Information Commissioner’s Office (ICO)
To exercise these rights, please contact us at hello@alignbylevi.co.uk. We may need to verify your identity before responding.
12. Data Security & Breach Notification
We take appropriate technical and organisational measures to protect your data from loss, misuse, or unauthorised access.
In the event of a personal data breach, we will comply with legal requirements to notify the relevant authority and affected individuals where required.
13. Marketing Communications
You may opt out of marketing communications at any time by using the unsubscribe link in emails or by contacting us directly.
14. Payment Information
Align by Levi uses Momence to manage bookings and payments. Payment card details are processed securely by third-party payment providers integrated with Momence. Align by Levi does not store or have access to your full card details.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes to our services or legal requirements. The most up-to-date version will always be available upon request or via our website.
Last updated: January 2026