top of page

Privacy Policy

 

 

Shimalia

 

Last updated: 10th February 2026

 

 

 

 

1. Introduction

 

 

Shimalia is committed to protecting your privacy and handling your personal information with discretion and care.

 

This Privacy Policy explains how we collect, use, store and protect your personal data when you:

 

  • Visit our website

  • Submit an enquiry

  • Communicate with us

  • Engage our services

 

 

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

 

 

 

2. Who We Are

 

 

Data Controller:

Shimalia Limited

Trading as: Shimalia

Email: joanna@shimalia.com

Address: 59 A Weymouth Street, London, W1G 8NS

 

For the purposes of data protection law, we are the data controller responsible for your personal data.

 

 

 

 

3. Information We Collect

 

 

We may collect the following categories of information:

 

 

Personal Information

 

 

  • Name

  • Email address

  • Telephone number

  • Postal address (if provided)

 

 

 

Health-Related Information

 

 

Where voluntarily submitted, we may collect information relating to:

 

  • Health history

  • Biomarker data

  • Lifestyle and nutritional information

  • Stress or nervous system indicators

 

 

Health-related information is classified as special category data under UK GDPR and is processed only with your explicit consent.

 

 

Technical Information

 

 

  • IP address

  • Browser type

  • Device information

  • Website usage data (via cookies or analytics tools)

 

 

 

 

 

4. How We Collect Information

 

 

We collect personal data when you:

 

  • Complete a website contact or enquiry form

  • Email us directly

  • Engage in a consultation

  • Browse our website

 

 

We do not collect health-related information without your active submission.

 

 

 

 

5. Lawful Basis for Processing

 

 

We process your data under one or more of the following lawful bases:

 

  • Consent – where you voluntarily provide health information

  • Contract – where processing is necessary to provide services

  • Legitimate Interests – for responding to enquiries and managing our business

  • Legal Obligation – where required by law

 

 

Health-related data is processed only with explicit consent.

 

 

 

 

6. How We Use Your Information

 

 

Your information may be used to:

 

  • Respond to enquiries

  • Provide health consultancy services

  • Review biomarker or assessment data

  • Develop personalised recommendations

  • Maintain client records

  • Improve our services

  • Comply with legal obligations

 

 

We do not sell or trade your personal data.

 

 

 

 

7. Data Sharing

 

 

We do not share personal data with third parties except where necessary, including:

 

  • Website hosting providers

  • Secure technology service providers

  • Professional advisers (legal or accounting)

 

 

Where third-party providers are used, appropriate safeguards are in place to protect your data.

 

 

 

 

8. International Data Transfers

 

 

Some service providers (such as website platforms or analytics services) may store data outside the United Kingdom.

 

Where this occurs, appropriate safeguards are implemented in accordance with UK GDPR requirements.

 

 

 

 

9. Data Retention

 

 

We retain personal data only for as long as reasonably necessary:

 

  • Enquiry information: up to 24 months

  • Client records: up to 7 years (unless otherwise required by law)

 

 

Health-related data may be retained for continuity of service where appropriate.

 

 

 

 

10. Data Security

 

 

We implement appropriate technical and organisational measures to protect personal data, including:

 

  • Secure hosting environments

  • Restricted access to sensitive information

  • Password-protected systems

 

 

While no digital system is entirely secure, we take reasonable steps to protect your information.

 

 

 

 

11. Your Rights

 

 

Under UK GDPR, you have the right to:

 

  • Request access to your personal data

  • Request correction of inaccurate data

  • Request erasure of your data

  • Restrict or object to processing

  • Withdraw consent at any time

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

 

 

To exercise your rights, please contact:

joanna@shimalia.com

 

ICO website: https://ico.org.uk

 

 

 

 

12. Cookies

 

 

Our website may use cookies or analytics tools to improve functionality and user experience.

 

You may manage cookie preferences through your browser settings or website cookie banner.

 

 

 

 

13. Updates to This Policy

 

 

We may update this Privacy Policy from time to time. The latest version will always be published on this page with the revised date.

Disclaimer

Shimalia provides educational, lifestyle and wellbeing guidance informed by contemporary science and holistic health principles. Services are not intended to diagnose, treat, cure or prevent disease, and do not replace medical care. Clients are encouraged to consult with qualified healthcare professionals regarding any medical concerns.

© 2026 by SHIMALIA. 

 

bottom of page