Privacy Policy

Last updated: April 2026

1. Who We Are

This website is operated by Gesa Stolting, a sole trader based in the United Kingdom. They are the data controller responsible for your personal data.

Contact details:

Name: Gesa Stolting
Address: 6 Claremont Drive, KT10 9LU
Email: connect@midlifebff.com
Website: www.midlifebellyfatfix.co.uk

If you have any questions about this privacy policy or how we handle your personal data, please get in touch using the details above.

2. What This Policy Covers

This privacy policy explains how we collect, use, store and protect your personal data when you visit our website or sign up to receive communications from us. It also explains your rights under UK data protection law, including the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 (DPA 2018), and the Data (Use and Access) Act 2025 (DUAA), which came into force on 5 February 2026.

3. The Personal Data We Collect

We may collect and process the following personal data about you:

Identity data – your name
Contact data – your email address
Behavioural and analytics data – how you interact with our website, including pages visited, time spent on the site, and how you found us (collected via cookies and analytics tools)
Communications data – your preferences for receiving marketing and newsletter emails from us

We do not knowingly collect or process sensitive health data (known as special category data) beyond what you voluntarily share with us through direct communications. Because this is a health-focused website, please be mindful of the information you share in any contact forms or email correspondence.

4. How We Collect Your Data

We collect your personal data in the following ways:

When you sign up to our newsletter or mailing list
When you contact us by email or through a contact form
Automatically via cookies and analytics tools when you browse our website

5. How and Why We Use Your Data

We only use your personal data for the following purposes, and we will always have a lawful basis for doing so under UK GDPR.

Purpose Lawful Basis

Sending you our newsletter and marketing emails Consent

Responding to your enquiries Legitimate Interests

Improving our website through analytics Legitimate Interests

Complying with legal obligations Legal Obligation

A note on consent: Where we rely on your consent to send you marketing emails, you have the right to withdraw that consent at any time. Every marketing email we send includes an unsubscribe link, or you can contact us directly to be removed from our list.

A note on legitimate interests: We have assessed that our use of analytics and responding to enquiries is proportionate and does not override your rights and freedoms as an individual.

6. Cookies and Analytics

Our website uses cookies to help us understand how visitors use the site so we can improve it. We use analytics tools such as e.g. Google Analytics.

Under the Privacy and Electronic Communications Regulations (PECR), as updated by the DUAA 2025, we are required to obtain your consent before placing non-essential cookies on your device. You will be asked for your consent when you first visit our website via our cookie banner. You can update your preferences at any time.

For full details on the cookies we use, please see our Cookie Policy.

7. Marketing Emails and Newsletters

If you have signed up to receive our newsletter or marketing emails, we will use your name and email address to send you relevant content. We will only do this with your explicit consent.

You can unsubscribe at any time by clicking the unsubscribe link in any email we send you, or by emailing us at connect@midlifebff.com. Once you unsubscribe, we will remove you from our mailing list promptly.

We do not sell, rent or share your email address with any third parties for their own marketing purposes.

8. Who We Share Your Data With

We may share your personal data with trusted third-party service providers who help us run our website and communications. These may include:

Email marketing platforms (e.g. Mailchimp, Flodesk, Higer Level) to manage and send our newsletters
Website hosting providers to keep our website running
Analytics providers to help us understand website traffic

All third-party providers we use are required to handle your data securely and in accordance with UK data protection law. We do not sell your personal data to third parties.

9. International Data Transfers

Some of the third-party services we use may process your data outside of the UK. Where this is the case, we ensure that appropriate safeguards are in place to protect your data, such as the use of UK-approved Standard Contractual Clauses or transfers to countries with an adequacy decision from the UK Government.

10. How Long We Keep Your Data

We will only keep your personal data for as long as necessary. In general:

Newsletter subscribers – we will retain your data for as long as you remain subscribed. If you unsubscribe, we will remove your details from our active mailing list promptly and retain only a suppression record to ensure we do not contact you again.
Enquiry and contact data – we will retain correspondence for up to 2 years, unless there is a legal reason to keep it longer.
Analytics data – retained in accordance with the settings of our analytics provider (typically up to 26 months).

11. How We Protect Your Data

We take the security of your personal data seriously and have put in place appropriate technical and organisational measures to protect it from unauthorised access, loss or disclosure. However, please be aware that no method of transmitting data over the internet is completely secure.

12. Your Rights

Under UK GDPR, you have the following rights in relation to your personal data:

Right of access – you can request a copy of the personal data we hold about you
Right to rectification – you can ask us to correct any inaccurate or incomplete data
Right to erasure – you can ask us to delete your personal data in certain circumstances
Right to restrict processing – you can ask us to limit how we use your data
Right to data portability – you can ask us to provide your data in a portable format
Right to object – you can object to us processing your data where we rely on legitimate interests
Right to withdraw consent – where we rely on consent, you can withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal

To exercise any of these rights, please contact us at connect@midlifebff.com. We will respond to your request without undue delay.

13. How to Raise a Complaint

If you are unhappy with how we have handled your personal data, we would always encourage you to contact us first so we can try to resolve the matter.

Under the DUAA 2025, you also have the right to raise a formal data protection complaint with us directly. We will acknowledge your complaint within 30 days and investigate it without undue delay.

If you remain unsatisfied, you have the right to lodge a complaint with the UK's data protection regulator, the Information Commissioner's Office (ICO):

Website: www.ico.org.uk
Helpline: 0303 123 1113

14. Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in the law or in how we operate. When we do, we will update the date at the top of this page. We encourage you to review this policy periodically.

15. A Note on Health-Related Content

This website provides general information and content relating to menopause and women's health. It is intended for informational purposes only and does not constitute medical advice. We are not a healthcare provider. If you share any personal health information with us through contact forms or email, we will handle it with the utmost care and in accordance with this policy.

This privacy policy was last reviewed in April 2026 and reflects the requirements of the UK GDPR, the Data Protection Act 2018, and the Data (Use and Access) Act 2025.