Privacy Policy

Last Updated: June 2026

BEAT THE KNOT™ is committed to protecting and respecting your privacy. This policy explains how personal data is collected, handled, and stored when you buy our digital passes, use our website, or communicate with us.

For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, the Data Controller is Maria Fernandez, operating as a Sole Trader business under the trading name BEAT THE KNOT™, London, United Kingdom.

1. The Personal Data We Receive and Collect

We handle two specific types of personal information:

  • Purchase Data (Corporate/Digital): When a company buys a pass, the transaction is handled securely by our third-party provider, Gift Up!. Following a successful purchase, Gift Up! securely transmits the customer’s name, corporate email address, and transaction amount to us via email notification so we can verify the transaction. We do not collect or store your company credit card details.
  • Physical Health Records (Special Category Data): On the day of your office session, each participating staff member or contractor (a “Participant”) must complete and sign a physical, paper-based Health Consultation Form regarding standard UK massage contraindications before sitting in the chair.

2. How We Use Your Data (Lawful Bases)

We process personal data under the following strict legal parameters defined by the UK GDPR:

For Corporate Purchase and Communication Data (Article 6):

  • Contractual Necessity: To verify your digital pass code, coordinate your office date via WhatsApp, and deliver our on-site chair massage services.
  • Legal Obligation: To maintain accurate financial records for UK tax reporting purposes (HMRC).

For On-Site Physical Health Data (Article 9 Special Category Data):

  • Explicit Consent: Participants explicitly grant permission for the processing of their health metrics by signing the physical paper consultation form on the day [INDEX].
  • Legal Claims: Processing is strictly necessary for the establishment, exercise, or defence of potential legal or insurance claims, as mandated by our UK Public Liability Insurance parameters.

3. Strict Paper-Only Storage & Retention (Zero Digital Tracking)

We take a highly secure, non-digital approach to sensitive physical health data to completely eliminate the risk of cloud-based data breaches:

  • Paper Intake Forms: Health consultation sheets are filled out strictly on physical paper by the Participant.
  • Under Lock and Key: These paper documents are never uploaded to the cloud, scanned, photographed, or stored on digital devices. They are filed manually and kept inside a locked, fireproof secure document box managed exclusively by Maria Fernandez.
  • Retention Period: In strict accordance with UK medical malpractice and insurance guidelines, physical health forms are retained securely for a minimum of seven (7) years following the treatment date, after which they are permanently destroyed via cross-cut shredding.

4. Third-Party Service Providers

We do not sell, rent, or trade your personal information. We rely on trusted third-party platforms to securely process purchases and handle logistics:

  • Gift Up! & Stripe: Our secure online checkout is powered by Gift Up! and Stripe. They collect your billing details, process the payment, and issue your automated receipt. Gift Up! then forwards your name, email, and pass code to us.
  • WhatsApp Business: We use WhatsApp to communicate directly with corporate buying managers to confirm dates and coordinate schedules.

5. Your Legal Rights (UK GDPR)

Under the UK GDPR, data subjects possess distinct rights regarding their personal data:

  • Corporate Buying Managers: Corporate buying managers have the right to request access to or correction of their company’s purchase records.
  • Individual Participants: Individual Participants have the right to request access to their specific physical Health Consultation Form.

To exercise any of these rights, please contact Maria Fernandez directly via WhatsApp or email. If you have concerns about how your data is handled, you possess the right to lodge a formal complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection.

6. Cookie Policy

Our website uses essential cookies to function correctly.

  • What are cookies? Small text files placed on your device to remember checkouts or user actions.
  • How we use them: We only use strictly necessary technical cookies required by our payment processors (Stripe and Gift Up!) to process the shopping cart safely.