Privacy Policy
Last updated: 17 December 2025
This Privacy Policy explains how Active Heart Health Ltd ("we", "our" or "us") collects, uses, stores and protects your personal data when you use our website activehearthealth.com, contact us, or purchase our products or services.
We are committed to protecting your privacy and handling your personal data transparently, lawfully and securely in accordance with UK data protection law.
1. Who we are (Data Controller)
Active Heart Health Ltd is the data controller responsible for your personal data.
Company number: 12374292
Registered office: 2 Exeter Street, Cottingham, East Riding of Yorkshire, England, HU16 4LU
Email: contact@activehearthealth.com
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us using the details above.
2. What personal data we collect
We may collect, use and store the following categories of personal data:
a) Information you provide to us
Name and title
Email address and other contact details
Messages sent via our website or email
Marketing preferences
b) Information collected automatically
When you use our website, we may collect:
IP address and approximate location
Browser type, device type and operating system
Pages visited, time spent on pages and interaction data
c) User‑generated content
This includes comments or feedback submitted via our website or third-party platforms.
3. Special category personal data
We do not routinely collect special category personal data (such as health or medical information). If you voluntarily provide such information in communications with us, we will only process it where a lawful basis exists and where appropriate safeguards are in place.
4. How we use your personal data
We use your personal data to:
Provide and manage our website and services
Respond to enquiries and customer support requests
Improve our website, content and services
Send marketing communications where you have consented
Maintain business records and prevent fraud
5. Lawful bases for processing
Under UK GDPR, we must have a lawful reason for processing your personal data. Depending on the circumstances, we rely on one or more of the following bases:
Contract: where processing is necessary to fulfil a contract with you or take steps at your request before entering into a contract
Consent: where you have given clear permission (for example, marketing emails or non‑essential cookies)
Legitimate interests: where processing is necessary for our business interests and does not override your rights
Legal obligation: where we are required to comply with the law
Vital interests: where processing is necessary to protect someone’s life (rare circumstances)
6. Cookies and tracking technologies
We use cookies and similar technologies to:
Enable core website functionality
Analyse website usage and performance
Support affiliate tracking links (including Amazon)
Non‑essential cookies are only used with your consent via our cookie banner.
For more information, please see our Cookie Policy.
7. Marketing communications
We will only send you marketing communications where:
You have given consent, or
Where permitted by law, we may send marketing communications based on our legitimate interests
You can withdraw your consent or opt out of marketing at any time by using the unsubscribe link in our emails or by contacting us at contact@activehearthealth.com.
8. Sharing your personal data
We do not sell your personal data.
We may share personal data with trusted third parties only where necessary to operate our business, including:
Website hosting and analytics providers
Email and marketing service providers
Fraud prevention or legal authorities where required
All third parties are required to protect your personal data and use it only for specified purposes.
9. Affiliate links and third‑party websites
Our website may contain affiliate links (including links to Amazon) and links to third‑party websites. If you follow these links, third parties may collect information about you in accordance with their own privacy policies.
We do not control or endorse third‑party privacy practices and encourage you to review their policies.
10. International data transfers
Our website may be hosted outside the UK, including in the United States. Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place in accordance with UK data protection law.
11. Data security
We use appropriate technical and organisational measures to protect your personal data against loss, misuse, unauthorised access or disclosure. This includes SSL encryption and secure systems.
If a personal data breach occurs, we will notify affected individuals and regulators where legally required.
12. Data retention
We retain personal data only for as long as necessary to:
Provide services
Meet legal, tax or regulatory requirements
Resolve disputes or enforce agreements
13. Your data protection rights
You have the right to:
Access your personal data
Request correction of inaccurate data
Request erasure of your data (in certain circumstances)
Object to or restrict processing
Request data portability
Withdraw consent at any time
You can exercise these rights by contacting us at contact@activehearthealth.com.
You also have the right to complain to the Information Commissioner’s Office (ICO): https://ico.org.uk/make-a-complaint/. We would, however, appreciate the opportunity to talk to you about your concern before you approach the ICO.
14. Children’s data
Our website is not intended for children, and we do not knowingly collect personal data from children.
15. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be published on this page and, where appropriate, notified to you.
If you have any questions about this Privacy Policy, please contact us at contact@activehearthealth.com.