PRIVACY POLICY

Last Updated: 24 June 2025

Introduction

This Privacy Policy explains how Nathan Nikoloff, a licensed medical practitioner acting solely as an independent health coach (“we,” “us,” or “Nathan Nikoloff”), collects, uses, stores, and protects your personal data when you access or use our website [insert website URL] (the “Website”), including any coaching services, blog posts, newsletters, social media posts, videos, or other content (collectively, “Services”). We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable laws, including the EU GDPR for EU users and relevant U.S. laws (e.g., California Consumer Privacy Act (CCPA)) where applicable.

By using our Services, you agree to the collection and use of your personal data as outlined in this Privacy Policy and our Website Legal Disclaimer [insert link to Disclaimer]. If you do not agree, please do not use the Website or Services. This policy applies to all users, including individuals and entities acting on their behalf.

Contact Information

Nathan Nikoloff is the data controller responsible for your personal data. You can contact us at:

Nathan Nikoloff

[Your UK Address]

Email: nathannikoloff@gmail.com 

For questions, concerns, or to exercise your data protection rights, please email us at nathannikoloff@gmail.com.

  1. Data We Collect

We collect the following types of personal data when you use our Services:

  • Personal Identifiers: Name, email address, postal address, phone number, or other contact details you provide when signing up for an account, purchasing services, subscribing to newsletters, or contacting us.
  • Payment Information: Credit card, PayPal, or other payment details if you purchase premium content or services (processed securely by third-party payment providers).
  • User-Generated Content: Feedback, comments, or ideas you submit through the Website, such as via contact forms or coaching inquiries.
  • Technical Data: IP address, browser type, device information, operating system, and usage data (e.g., pages visited, time spent on the Website) collected via cookies and similar technologies.
  • Health-Related Data: If you voluntarily provide health-related information (e.g., during coaching inquiries), we process this only with your explicit consent and solely for the purpose of providing educational coaching services.

We do not collect sensitive personal data (e.g., health, biometric, or genetic data) unless explicitly provided by you with consent, and we do not use such data for medical purposes, as our Services are strictly educational and separate from Nathan Nikoloff’s medical practice.

  1. How We Collect Data

We collect data:

  • Directly from You: When you fill out forms, sign up for services, make payments, or submit feedback.
  • Automatically: Through cookies, web beacons, and analytics tools (e.g., Google Analytics) that track Website usage. See our Cookie Policy below for details.
  • From Third Parties: From payment processors (e.g., PayPal) or social media platforms if you interact with our content via linked accounts.
  1. Lawful Bases for Processing

We process your personal data under the following lawful bases, as required by UK GDPR:

  • Consent: When you provide explicit consent, e.g., for newsletters or health-related data in coaching inquiries.
  • Contract: To fulfill a contract, e.g., processing payments for purchased services or delivering coaching sessions.
  • Legitimate Interests: For Website functionality, analytics, and improving our Services, provided this does not override your rights.
  • Legal Obligation: To comply with UK, EU, or other applicable laws (e.g., tax reporting or responding to legal requests).
  1. How We Use Your Data

We use your personal data to:

  • ‪Provide and manage the Services, including coaching sessions, subscriptions, and premium content.
  • ‪Process payments and issue refunds, where applicable.
  • ‪Respond to inquiries, feedback, or support requests.
  • ‪Send newsletters or promotional materials (with your consent, which you can withdraw at any time).
  • ‪Analyze Website usage to improve functionality and user experience.
  • ‪Comply with legal obligations, such as tax reporting or responding to regulatory authorities.
  • ‪Protect against fraud, unauthorized access, or legal claims.

We do not use your data for automated decision-making or profiling that significantly affects you.

  1. Data Sharing and Third Parties

We may share your personal data with:

  • Service Providers: Third-party providers, such as payment processors (e.g., PayPal), hosting services, or analytics tools (e.g., Google Analytics), who process data on our behalf under strict data protection agreements.
  • Legal Authorities: If required by law, regulation, or court order (e.g., to comply with UK or international legal obligations).
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to a successor entity, subject to equivalent protections.

We do not sell or share your personal data for marketing purposes with third parties unless you provide explicit consent.

  1. International Data Transfers

As a UK-based service, your personal data is primarily processed and stored in the UK. If you access the Website from outside the UK (e.g., EU, U.S.), your data may be transferred to and processed in the UK. For EU users, we use Standard Contractual Clauses (SCCs) approved by the European Commission to ensure compliance with EU GDPR. For U.S. users, data transfers comply with applicable state laws (e.g., CCPA). By using the Services, you consent to the transfer and processing of your data in the UK, subject to these protections.

  1. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including:

  • Account Data: Until your account is closed or as required for contractual purposes (e.g., coaching services).
  • Payment Data: As required by tax laws (typically 6 years in the UK) or until the transaction is complete.
  • Analytics Data: For up to 24 months, unless anonymized for longer-term analysis.
  • User-Generated Content: Until you request deletion or it is no longer needed for the purpose provided.

We securely delete or anonymize data when it is no longer needed, in accordance with UK GDPR requirements.

  1. Your Data Protection Rights

Under UK GDPR, and where applicable EU GDPR or other laws (e.g., CCPA for California residents), you have the following rights:

  • Access: Request a copy of your personal data.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your data, subject to legal obligations.
  • Restriction: Restrict processing in certain circumstances.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Data Portability: Receive your data in a structured, machine-readable format.
  • Withdraw Consent: Withdraw consent at any time, where processing relies on consent (e.g., newsletters).
  • Complaint: Lodge a complaint with the UK Information Commissioner’s Office (ICO) at ico.org.uk or your local data protection authority (e.g., EU supervisory authorities or U.S. state regulators).

To exercise these rights, contact us at nathannikoloff@gmail.com. We will respond within one month, as required by UK GDPR, unless the request is complex, in which case we may extend the response time by two additional months with notice.

  1. Cookie Policy

We use cookies and similar technologies (e.g., web beacons) to enhance Website functionality, analyze usage, and personalize content. Cookies may include:

  • Essential Cookies: Necessary for Website operation (e.g., navigation, account access).
  • Analytics Cookies: Track usage patterns to improve the Website (e.g., Google Analytics).
  • Marketing Cookies: Deliver personalized content, only with your consent.

You can manage cookie preferences through your browser settings or our cookie consent tool [insert link or instructions]. Disabling cookies may limit Website functionality. For details, see our full Cookie Policy [insert link, if separate].

  1. Data Security

We implement reasonable technical and organizational measures to protect your personal data, including encryption, secure servers, and access controls, in compliance with UK GDPR. However, no system is completely secure, and we cannot guarantee absolute protection against unauthorized access (e.g., hacking). You acknowledge these risks when submitting data. In the event of a data breach, we will notify you and the ICO within 72 hours, as required by UK GDPR, if the breach is likely to affect your rights.

  1. Third-Party Links

The Website may link to third-party websites or services (e.g., social media, payment processors). These third parties have their own privacy policies, and we are not responsible for their practices. Review their policies before sharing data.

  1. Children’s Privacy

The Services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child under 18, please contact us at nathannikoloff@gmail.com, and we will delete it promptly.

  1. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Updates will be posted on the Website with the “Last Updated” date revised. We encourage you to review this policy periodically. Continued use of the Services after changes constitutes acceptance of the updated policy.

  1. Compliance with UK and International Laws

We are committed to complying with the UK GDPR, Data Protection Act 2018, and other applicable laws, including EU GDPR for EU users and relevant U.S. laws (e.g., CCPA for California residents). For international users, you are responsible for ensuring your use complies with local laws, and we use appropriate safeguards (e.g., SCCs for EU data transfers) to protect your data.

  1. Contact Us

For questions, complaints, or to exercise your data protection rights, contact:

Nathan Nikoloff

Email: nathannikoloff@gmail.com 

If you are not satisfied with our response, you may contact the UK Information Commissioner’s Office (ICO) at www.ico.org.uk or your local data protection authority.