Privacy Policy

Updated on January 18th 2026

Privacy Policy for BYRE Wellness (trading name of Infinite Axis Ltd)

Effective date: 18 January 2026
This Privacy Policy explains how we collect, use, store, and share personal information when you use our website, contact us, or book our services.

1. Who we are

Data controller: Infinite Axis Ltd, trading as BYRE Wellness
Company number: SC789698
Registered office: 5 South Charlotte Street, Edinburgh, Scotland, EH2 4AN
Email: alex@infiniteaxis.co.uk

We are responsible for deciding how and why we process your personal information.

2. What information we collect

We may collect the following categories of personal information:

A. Information you provide

  • Identity and contact details: name, email, phone number

  • Booking details: date and time booked, number of attendees, notes you submit with a booking

  • Communications: messages you send us by email, form, or social media

B. Payment information

  • Payments are handled by our payment providers. We typically receive confirmation of payment and transaction references, not your full card details.

C. Website and device information

  • Usage data: pages viewed, clicks, approximate location (derived from IP), referral source

  • Device data: browser type, device type, operating system

  • Cookies and similar technologies (see Section 8)

D. Health related information (only if you choose to provide it)

  • If you submit information about health or medical conditions (for example via a pre session questionnaire or message), this is treated as special category data and handled with extra care.

3. How we use your information, and our lawful bases

UK GDPR requires us to have a lawful basis for each use of personal information, and to explain it clearly in our privacy information.

Below is how we typically use data, linked to the lawful basis we rely on:

A. To provide bookings and services

  • Data used: identity and contact details, booking details, communications

  • Purpose: create and manage bookings, provide customer support, send booking confirmations and service messages

  • Lawful basis: performance of a contract, or steps taken at your request before entering into a contract

B. To run the business and meet legal or regulatory obligations

  • Data used: identity and contact details, booking and transaction records

  • Purpose: accounting, tax, handling complaints, fraud prevention, record keeping

  • Lawful basis: legal obligation, and legitimate interests (running and protecting our business)

C. To improve our website and customer experience

  • Data used: usage and device information, cookie data

  • Purpose: analytics, performance monitoring, diagnosing issues, improving content

  • Lawful basis: legitimate interests for strictly necessary measures, and consent for non essential cookies where required

D. Marketing communications

  • Data used: name, email, phone number, marketing preferences, engagement (opens and clicks where available)

  • Purpose: sending newsletters, offers, updates, and event information

  • Lawful basis: consent where required, or legitimate interests for limited direct marketing where permitted by law. You can opt out at any time.

E. If you provide health related information

  • Data used: any health details you submit

  • Purpose: customer safety and suitability guidance (for example responding to a question about contraindications)

  • Lawful basis: your explicit consent (special category condition) plus an Article 6 lawful basis, depending on the context

4. Where we get information from

  • Directly from you when you book, contact us, or subscribe

  • Automatically through your use of our website (cookies and similar technologies)

  • From our service providers that support bookings, payments, email delivery, and analytics

5. Who we share information with

We only share personal information where necessary. Typical recipients include:

  • Booking and scheduling providers (to process and manage appointments)

  • Payment providers (to take payments and prevent fraud)

  • Email and marketing providers (to send confirmations and newsletters)

  • Website hosting and analytics providers (to host the site and understand performance)

  • Professional advisers (accountants, insurers, legal advisers) where necessary

  • Authorities and regulators if we must comply with a legal obligation or protect legal rights

We do not sell your personal information.

6. International transfers

Some of our suppliers may process data outside the UK. Where that happens, we use appropriate safeguards required by UK GDPR, such as UK adequacy regulations or contractual protections.

7. How long we keep your information

We keep personal information only for as long as needed for the purposes above, including legal, accounting, and reporting requirements. Typical retention periods depend on the type of data, for example:

  • Booking and transaction records: kept for accounting and tax purposes

  • Marketing records: kept until you unsubscribe or we no longer need them

  • Enquiries: kept for a reasonable period to manage follow ups and resolve issues

8. Cookies and similar technologies

We use cookies and similar technologies to:

  • Make the website work properly (strictly necessary)

  • Measure and improve performance (analytics)

  • Support marketing (where used)

Under UK rules (PECR), non essential cookies generally require valid consent, and cookie choices must be presented fairly, including an accessible reject option.

You can manage cookie preferences through our cookie banner or your browser settings.

9. Data security

We use appropriate technical and organisational measures designed to protect personal information against unauthorised access, loss, misuse, alteration, or disclosure. This includes access controls, secure supplier arrangements, and minimisation of what we collect.

No method of transmission or storage is completely secure, but we work to reduce risk appropriately.

10. Your rights

You have rights under UK GDPR, including:

  • Access to your personal information

  • Correction of inaccurate or incomplete information

  • Deletion in certain circumstances

  • Restriction of processing in certain circumstances

  • Objection to processing based on legitimate interests

  • Data portability where applicable

  • Withdrawal of consent at any time where we rely on consent (this does not affect prior processing)

To exercise your rights, contact us using the details in Section 12.

11. Complaints

If you have concerns, please contact us first and we will try to resolve the issue.

You also have the right to complain to the UK supervisory authority, the Information Commissioner’s Office (ICO).

12. How to contact us

Email: alex@infiniteaxis.co.uk
Post: Infinite Axis Ltd (BYRE Wellness), 5 South Charlotte Street, Edinburgh, Scotland, EH2 4AN

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. We will update the effective date at the top and, where appropriate, provide additional notice on our website.