top of page

Effective Date: -

Operating under the AfN code of conduct, your privacy is valued. This notice explains how I collect, use, store, and protect your personal information in accordance with UK GDPR and professional standards.

 

1. Data Controller

  • Name: Federico Cipriani

  • Role: Registered Associate Nutritionist (AfN)

  • Contact: fdrccprn@gmail.com +44 7385244453

 

2. What Data I Collect

I may collect the following personal information to provide safe and effective nutrition coaching:

  • Identity & Contact: Name, email, phone number

  • Health & Lifestyle Information: Medical history, medications, allergies, diet, activity level, weight, goals

  • Programme Data: Progress notes, session attendance, dietary logs

  • Payment Information: Credit/debit card or PayPal details (processed securely via third-party services)

 

3. Why I Collect Your Data (Legal Basis)

  • To provide personalised nutrition advice (Article 6(1)(b) – Contract)

  • To comply with professional and legal obligations (AfN Code of Ethics, record-keeping requirements)

  • To communicate effectively regarding your sessions, plans, and progress

  • To keep you informed of services or promotions, if you’ve opted in (marketing)

4. How I Use Your Data

  • Creating personalised nutrition plans

  • Monitoring progress and adjusting programmes

  • Administering payments and bookings

  • Keeping accurate professional records (minimum 7 years, per AfN guidance)

  • Sending occasional updates/newsletters (with consent)

 

5. Who Has Access to Your Data

  • Only Federico Cipriani and authorised staff (if any)

  • Payment processors (e.g., Stripe, PayPal) – secure and GDPR-compliant

  • Data will never be sold or shared with third parties for marketing without consent

 

6. How I Protect Your Data

  • Data is stored securely (encrypted devices, password-protected files)

  • Physical records (if any) are locked in secure cabinets

  • Only authorised personnel have access

  • Regular reviews and updates of security measures

 

7. Your Rights Under GDPR

You have the right to:

  1. Access your data (Subject Access Request)

  2. Correct inaccurate or incomplete data

  3. Request deletion of your personal data, unless legally required to retain it

  4. Withdraw consent for marketing at any time

  5. Object to processing or request restriction of processing

  6. Data portability – receive your data in a structured, machine-readable format

To exercise any of these rights, contact [Your Email].

8. Retention Period

  • Personal and health data will be retained for at least 7 years after your last session, in line with AfN record-keeping requirements.

  • Payment information is processed securely via third-party services and retained according to their policies.

 

9. Marketing & Communication

  • Marketing emails/newsletters are opt-in only.

  • You can unsubscribe at any time via a link in emails or by contacting me directly.

 

10. Complaints

  • Any concerns about how your data is processed can be raised with Federico Cipriani first.

  • You also have the right to complain to the UK Information Commissioner’s Office (ICO).

 

 

By engaging with Federico Cipriani’s services, you consent to the collection and use of your personal information as described in this notice.

bottom of page