Privacy Policy – Byolete
Legal

Privacy Policy

Last updated: 14 August 2025  ·  Effective from: 19 August 2025

Byolete is committed to protecting your personal data and ensuring full transparency about how it is collected, used, and safeguarded. This Privacy Policy applies when you visit our website, use our biochemical testing services, or take part in consultations. We operate in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

01

Who We Are

Byolete is a preventative health company delivering precision biochemical testing for health-conscious individuals in the United Kingdom. We are the data controller responsible for your personal information.

hello@byolete.co.uk
02

What Data We Collect

Personal identification
Full name, email address, and contact number
Date of birth (to confirm age eligibility)
Billing and shipping address
Payment details (processed securely by third-party providers such as Stripe)
Health & biometric data
Biochemical test results
Self-declared lifestyle and health information via questionnaires
Health-related information shared during consultations
Technical & usage data
IP address, browser type and version, device identifiers
Cookies and site usage data (e.g. via Google Analytics and Meta Pixel)
03

How We Collect Your Data

We collect your data through:

Website forms (e.g. orders, newsletter sign-ups)
Test kit registration pages
Video consultations
Cookies and tracking technologies
Third-party tools and integrations
04

Why We Collect and Process Your Data

We collect and process your personal and health information to:

Provide and deliver biochemical testing services
Interpret and communicate your test results
Conduct secure online video consultations
Send you reports and follow-up information
Manage your account and orders
Improve our website performance and user experience
Fulfil legal, regulatory, and contractual obligations
Send marketing communications (with your explicit consent)
05

Legal Bases for Processing

We rely on one or more of the following legal grounds:

Your explicit consent — e.g. to process sensitive health data or send marketing emails
Performance of a contract — e.g. providing test results
Compliance with legal obligations
Legitimate interests — e.g. site analytics and customer service improvements

You may withdraw consent at any time by contacting us at hello@byolete.co.uk.

06

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyse site usage, and support marketing activities.

Types of cookies
Essential cookies — required for basic site functionality such as the shopping cart and account management
Analytics cookies — help us understand how visitors use the website and improve performance (e.g. Google Analytics)
Marketing cookies — track user behaviour to deliver relevant advertising (e.g. Meta Pixel)

You can manage or opt out of cookies at any time via your browser settings. Disabling certain cookies may affect the functionality of the website.

07

Who We Share Your Data With

We only share data when necessary to deliver our services:

Laboratory partners — to process your blood sample and generate results
Zoom — to deliver secure video consultations. Zoom acts as a data processor on our behalf and processes UK data in accordance with GDPR
Payment processors (e.g. Stripe) — for secure transactions
Email platforms (e.g. Mailchimp) — to send updates and reports
Analytics services (e.g. Google Analytics, Meta Pixel) — to evaluate website traffic and performance

We do not sell or rent your personal data.

08

Data Retention

We retain personal and health data only for as long as necessary:

Health records and test results — retained while your account is active or as required by law
Consultation logs — retained securely for a limited time
Email marketing data — retained until you unsubscribe
Analytics data — typically retained for 24 months

You may request deletion of your personal data at any time by contacting us.

09

How We Protect Your Data

We take your privacy seriously and protect your data through:

SSL encryption and secure servers
Strict internal access controls
Data minimisation and audit practices
Staff training in data protection responsibilities

In the event of a data breach, we will notify the Information Commissioner's Office (ICO) and affected users in accordance with UK law.

10

Your Data Protection Rights

As a UK or EU resident, you have the right to:

Access your data
Rectify inaccurate data
Request erasure
Restrict processing
Object to processing
Data portability
Withdraw consent

To exercise any of your rights, please contact: hello@byolete.co.uk

11

Children's Privacy

Byolete only serves individuals aged 18 and over. If we become aware that we have collected personal data from anyone under 18, we will delete it immediately.

12

Updates to This Privacy Policy

We may update this policy from time to time. When we do, we will post the revised version on our website and, where appropriate, notify you via email or banner notification.

13

Contact Us

For any questions, concerns, or data requests, please get in touch:

hello@byolete.co.uk