Privacy Policy

Introduction 

Welcome to Olam.i’s Privacy Policy. We are committed to safeguarding your privacy and protecting your personal data. This Privacy Policy outlines how we collect, use, and disclose personal information associated with your use of our platform. 

We recommend that this Privacy Policy be read alongside our Cookie Policy and any other relevant policies displayed on our website, in order to fully understand your rights and how we safeguard your data. 

For any privacy-related concerns, please contact us using the information provided in the Contact Us section below.
 

Who We Are 

Olam.i, registered in England and Wales under company number 17038274, trading as OLAM.I LTD, operates this online holistic booking platform to assist users with managing their bookings and preferences for holistic wellness services. We act as the data controller for the purposes of UK GDPR compliance.

 
1. What Personal Data We Collect 

We collect and process the following types of personal data:

1. 1. Identity, Contact and Special Category Data: 
   2. 1. Your name, date of birth and gender. 
      2. Contact information, including your email address, postal address, billing address, and phone number. 
      3. Details about your health, race or religion if ever relevant to treatments requested or performed by you. 
   2. Booking Information: 
   3. 1. Details of services booked through the platform, including service provider preferences, booking dates, and times. 
      2. Payment data, such as card details. 
   3. Technical Information and Cookies: 
   4. 1. Internet Protocol (IP) address. 
      2. Cookie data, as detailed in our Cookie Policy. 
   4. Location Data: 
   5. 1. Geo-location data required to match you with nearby service providers (this is collected with your explicit consent when activated via the platform). 
   5. Account Data: 
   6. 1. Account registration details, including username and password. 

1. 1. 1. Preferences saved to customise your use of our platform.
      2. Marketing and Communications preferences. 

2. How We Collect Personal Data 

We collect personal data through the following channels: 

1. 1. Direct submission when you register an account or make a booking. 
   2. Automated processes on our website, including technical monitoring (e.g., cookies and SATs). 
   3. Third parties authorised by you, such as payment gateways, analytics providers, or service providers. 
   4. Publicly available sources (e.g., government databases like Companies House, when necessary).

3. How and Why We Use Your Personal Data 

We process your data for the following purposes strictly within lawful foundations: 

1. 1. Providing Booking Services: 
   2. 1. To fulfil bookings, process payments, and manage your preferences. 
      2. Legal Basis: Performance of contract or consent (e.g., for geo-location data). 
   2. Improving Platform Functionality: 
   3. 1. Analysing service usage and trends to optimise the platform and user experience.
      2. Legal Basis: Our legitimate interests in improving user experience and operational efficiency. 
   3. Marketing and Promotional Activities: 
   4. 1. Sending relevant updates or promotions (with opt-out mechanisms available). 
      2. Legal Basis: Consent (required for electronic marketing), or legitimate interest for broader campaigns. 
   4. Compliance with Legal Obligations: 
   5. 1. Adhering to regulatory requirements and fraud prevention measures. 
      2. Legal Basis: Compliance obligations under UK law.

4. Who We Share Your Personal Data With 

We may share your personal data with: 

1. 1. Third-Party Service Providers: 
   2. 1. This includes payment processors, analytics providers, IT systems, and hosting services (including but without limitation to the below): 
      2. 1. Payment processors (Stripe) to securely process transactions and manage payments. Hosting and infrastructure providers (Vercel) to host, maintain, and operate our website and platform. Analytics providers (Google Analytics and Meta) to analyse user behaviour and improve our services. Email and communication providers (Mailchimp) to send booking confirmations, service-related updates, and marketing communications (where you have consented to receive these). IT and system administration providers who provide technical support, maintenance, and security services.

1. 1. Advertising Partners and Social Media Platforms: 
   2. 1. Cookies and non-essential SATs may be placed jointly by third parties (e.g., social media platforms). Details of these providers are included in our Cookie Policy. 
   2. Legal Authorities: 
   3. 1. Where mandated for audits, investigations, or compliance with UK law. 

 

5. Cookies and Similar Technologies 

For details about the cookies and similar technologies used by our platform, including their specific types, durations, purposes, and management options, please refer to our Cookie Policy . 

 

6. Retention of Personal Data 

Personal data is retained for as long as necessary to fulfil the purposes for which it was collected. Specific retention periods include: 

1. 1. Booking and payment data: seven years.  
   2. Account data: six months after account closure or inactivity. 

Following the expiration of retention periods, data will be securely deleted or anonymised unless a longer retention period is legally mandated.  

7. Your Rights 

Under the UK GDPR, you have the following rights in relation to your personal data: 

1. 1. Access: Obtain a copy of your data. 
   2. Rectification: Correct errors in your data. 
   3. Erasure: Request deletion of data, subject to legal/contractual obligations. 
   4. Restrict Processing: Limit processing under specific conditions. 
   5. Object: Opt-out of processing based on legitimate interests, especially for marketing. 
   6. Portability: Request transfer of applicable data to others. 
   7. Withdraw Consent: Revoke consent for specific processing activities without retroactively affecting lawful data use based on previously provided consent. 

8. International Data Transfers 

Personal data may be transferred outside the UK. Such transfers are conducted under lawful bases, including: 

1. 1. Adequacy decisions under the UK GDPR for transfers to approved countries. 
   2. Appropriate safeguards such as Standard Contractual Clauses or Binding Corporate Rules where applicable. 

If you would like further information on international data transfers, please contact us using the details below. 

9. Complaints and Contact Information 

If you have questions, or wish to exercise any of your rights under UK GDPR, please contact us: 

1. 1. Email Address:  info@theolami.com

Alternatively, you may lodge complaints directly with the Information Commissioners Office (ICO) via their website: https://ico.org.uk/make-a-complaint  

10. Changes to This Privacy Policy 

We keep our privacy policy under regular review and we will place any updates on this web page, we advise you to return to this page from time to time.
 

11. Other websites  

Our website may contain links to other websites or put you in direct contact with other suppliers outside of our platform. This privacy policy only applies to this Platform, and you should read any other privacy policies from linked websites or suppliers.