Privacy Policy — Inside Measurements (UK)

Last updated: 10/1/26

Inside Measurements (“we”, “us”, “our”) is a UK-based business providing metabolic testing services, including Resting Metabolic Rate (RMR) and VO₂ testing. This Privacy Policy explains how we collect, use, and protect personal data when you use our website (the “Website”), book appointments, or subscribe to our newsletter.

We comply with the UK GDPR and the Data Protection Act 2018.

1) Who we are (Data Controller)

Inside Measurements is the data controller for personal data collected via this Website and in connection with our services.

Contact details:

• Legal name: Inside Measurements
• Email: paul@insidemeasurements.com
• Address: 1 Ted Baker Way, Saxilby. LN1 4AQ.

2) Personal data we collect

a) Information you provide

• Name, email address, and phone number.
• Messages or enquiries submitted via contact forms.
• Newsletter subscription details and marketing preferences.

b) Health data (special category data)

When you book or attend RMR/VO₂ testing, we process health-related information, such as pre-test screening answers and your metabolic test results. This is special category personal data and is handled with high levels of security and confidentiality.

c) Booking, payments, and email marketing (Third Parties)

We use specific third-party providers to manage our business operations:

• Acuity Scheduling: To manage your bookings and appointments.
• Stripe: To process payments securely. We do not store your full payment card details; these are handled directly by Stripe.
• Omnisend: To manage our newsletter, email marketing, and subscriber lists.

d) Automatically collected data

When you use the Website, we may collect technical data such as your IP address, browser type, device information, and how you interact with our pages.

3) How we use your personal data

We use your data to:

• Provide and manage RMR and VO₂ testing services.
• Administer appointments and send booking confirmations via Acuity Scheduling.
• Process payments via Stripe.
• Send newsletters and marketing updates via Omnisend (only where you have opted in).
• Improve our Website and monitor security.
• Comply with UK legal and regulatory requirements.

4) Lawful bases for processing (UK GDPR)

• Contract: To manage your booking and deliver the services you have paid for.
• Consent: For Omnisend marketing emails, non-essential cookies, and the processing of your health data (explicit consent).
• Legitimate interests: To respond to enquiries and maintain a secure, functional website.
• Legal obligation: Where we must keep records for tax or regulatory purposes.

5) Who we share personal data with

We share data with the following service providers to run our business:

• Acuity Scheduling (Booking management)
• Stripe (Payment processing)
• Omnisend (Email marketing and automation)
• Website hosting/IT providers
• Professional advisers (e.g., accountants) where necessary.

We do not sell your personal data to third parties.

6) International transfers

Some of our providers (like Omnisend, Acuity, or Stripe) may store or process data in the US or other countries outside the UK. We ensure these providers use appropriate safeguards, such as the UK Extension to the EU-US Data Privacy Framework or Standard Contractual Clauses, to keep your data protected.

7) Data retention

We keep your data only as long as necessary:

• Health/Test records: Typically kept for 7 years to comply with professional standards.
• Marketing data (Omnisend): Kept until you unsubscribe or request deletion.
• Enquiries: Kept for 24 months.

8) Your rights (UK)

You have the right to access, correct, or delete your data, as well as the right to object to processing or withdraw your consent at any time. To exercise these rights, please contact us at the email address in Section 1.

9) Complaints

You have the right to complain to the Information Commissioner’s Office (ICO): https://ico.org.uk/.

10) Cookies

We use cookies to ensure our Website works correctly and to analyse traffic. Non-essential cookies (such as those used for analytics or marketing) will only be set if you provide consent via our cookie banner.

11) YouTube and external links

Our Website contains links to our YouTube channel and other external sites. Clicking these links takes you to a third-party platform with its own privacy policy. We are not responsible for how YouTube or other external sites handle your data once you leave our Website.