top of page

Privacy notice.

Last updated: March 2026

​

This Privacy Notice explains how ALS WorkWell Solutions ('ALS', 'we', 'us', 'our') collects, uses, stores, and shares your personal data across all of our services and activities. This includes our website, direct coaching services, corporate and employer engagements, events and webinars, and our Personal Injury Referral Programme.
 

Data Controller | ALS WorkWell SolutionsContact | anthony@als-solutions.co.uk | Tel: 07466 602 900
 

1. Who We Are
 

ALS WorkWell Solutions is a coaching and wellbeing services provider based in England. We deliver non-directive coaching services to individuals and organisations across a range of contexts, including direct client engagements, employer referred programmes, and personal injury referral programmes coordinated by solicitors, insurers, and case managers.
 

We are the data controller in respect of all personal data collected in connection with our services. We are committed to handling your data responsibly and in full compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

We are registered with the Information Commissioner's Office (ICO) as a data controller. Our ICO registration number is ZB868445.
 

2. The Personal Data We Collect
 

The personal data we collect depends on how you engage with us. The below sets out the main categories of data we may collect across our different activities.
 

  • Website enquiries & contact form — name, email address, telephone number, and any information you include in your message.

  • Direct (B2C) coaching clients — name, date of birth, contact details, payment information, session records, and any personal information shared during coaching.

  • Corporate & employer clients (B2B) — contact details of key personnel, contract and invoicing information, and details of individuals referred for coaching (as agreed under the relevant commercial arrangement).

  • Personal injury referral programme — name, date of birth, contact details, referring party details (solicitor, case manager, insurer), claim or reference numbers, session attendance records, and health related information shared during screening or coaching (see Section 2.1).

  • Events & webinars — name and email address provided at the point of registration.

  • Marketing & communications — name and email address, where you have opted in to receive communications from us.

​

2.1 Special Category Data

​

In the context of our coaching services, particularly our Personal Injury Referral Programme and direct client engagements, we may collect and process special category personal data as defined under UK GDPR Article 9. This may include:

​

  • Information about your physical health, injury, or medical history, to the extent relevant to your coaching programme

  • Information about your mental health or psychological wellbeing

  • Information about your sleep patterns or related health behaviours

  • Any other health related information you choose to share during screening or coaching sessions

​

We only collect special category data where it is directly relevant to the coaching services you have requested. We process it on the basis of your explicit consent, which you provide at the point of engaging our services (for example, via your Screening Questionnaire or Coachee Services Agreement). You have the right to withdraw this consent at any time, see Section 7.

​

3. How We Collect Your Data

​

We collect personal data in the following ways:

​

  • Directly from you — via our website contact form, screening questionnaires, coaching sessions, event registrations, or direct correspondence by email or telephone

  • From a referring organisation — such as your employer, solicitor, case manager, or insurer, where they have referred you to us for coaching services

  • From your GP or treating clinician — only where you have given us separate written consent to liaise with them

  • Via our website — through cookies and analytics tools; please see our Cookie Policy for details

​

4. How We Use Your Personal Data

​

We use your personal data only for the purposes for which it was collected, or for purposes that are compatible with those. Our specific uses include:

​

  • Responding to enquiries made via our website or by direct contact

  • Assessing your suitability for coaching services via screening processes

  • Delivering coaching programmes and maintaining records of sessions

  • Communicating with you about your programme, scheduling, and progress

  • Sharing relevant information with a referring organisation where applicable (see Section 5)

  • Liaising with your GP or treating clinician where you have given separate consent

  • Processing payments and managing invoicing for our services

  • Administering event and webinar registrations

  • Sending marketing communications where you have opted in to receive them

  • Complying with our legal, regulatory, and professional obligations

  • Maintaining records for the purpose of defending or managing any legal claims

​

4.1 Lawful Basis for Processing

​

We rely on the following lawful bases under UK GDPR:
 

  • Explicit consent (Art. 6(1)(a) & Art. 9(2)(a)) — processing special category data (health information) in the context of coaching services; sending marketing communications; sharing data with a referring party, GP, or clinician.

  • Contractual necessity (Art. 6(1)(b)) — processing necessary to deliver services under our Coachee Services Agreement or other client contract, including session records, scheduling, and invoicing.

  • Legal obligation (Art. 6(1)(c)) — processing required to comply with applicable laws, court orders, or regulatory requirements.

  • Legitimate interests (Art. 6(1)(f)) — responding to website enquiries; maintaining business records; defending or managing legal claims; processing contact details of corporate client personnel. We have assessed that our legitimate interests are not overridden by your rights and interests in each case.

​

4.2 Marketing Communications

​

We do not currently send marketing newsletters or promotional emails. If we introduce marketing communications in future, we will only send them to individuals who have explicitly opted in to receive them, and every communication will include a clear and easy unsubscribe option. We will update this Notice if our approach changes.

​

5. How We Share Your Personal Data

​

5.1 Referring Organisations

​

Where your coaching programme has been arranged or funded by a third party (such as an employer, solicitor, case manager, insurer, or rehabilitation provider), we will share information with that party as reasonably necessary to administer the programme. This will typically include:

​

  • Confirmation that the coaching programme has commenced

  • Outcomes of any initial screening

  • Session attendance records

  • Progress reports and summary outcome information, in a form agreed with you at the outset

  • Information necessary to process invoicing and funding

​

We will not share the substantive content of individual coaching sessions with a referring organisation without your consent.

​

5.2 Your GP or Treating Clinician

​

With your separate written consent, we may share relevant summary information with your GP or treating clinician where this is considered to be in your best interests.

​

5.3 Legal Disclosure

​

We may disclose your personal data where required to do so by law, court order, or regulatory authority, or where necessary to protect the safety of you or others. We will notify you of any such disclosure wherever lawfully possible.

​

5.4 Third Party Service Providers

​

We use a small number of trusted third party tools and platforms to operate our business. These providers act as data processors on our behalf and are contractually required to handle your data securely and in accordance with UK GDPR. They may not use your data for their own purposes. Our current third party processors include:

​

  • Microsoft 365 — email, document storage, scheduling (Microsoft Teams), and screening questionnaires (Microsoft Forms). Data is processed within Microsoft's infrastructure, which operates under UK GDPR-compliant terms.

  • Wix — our website platform, which may collect standard website usage data. Please see the Wix privacy policy for further details.

​

We will update this list if we introduce additional processors and will ensure appropriate data processing agreements are in place.

​

5.5 No Sale of Data

​

We do not sell, rent, or otherwise disclose your personal data to third parties for their own marketing or commercial purposes.

​

6. How Long We Retain Your Data

​

  • Coaching client records (all programmes) — 6 years from the conclusion of the programme, aligned to the limitation period for contractual claims under the Limitation Act 1980.

  • Website enquiries (no subsequent engagement) — 12 months from the date of enquiry, unless a coaching relationship commences.

  • Corporate client records — 6 years from the end of the commercial relationship.

  • Event and webinar registrations — 12 months from the date of the event, unless a further relationship commences.

  • Marketing opt-in records — until you unsubscribe or withdraw consent, plus 12 months thereafter as evidence of consent.

​

After the applicable retention period, your personal data will be securely deleted or anonymised. Where we are required by law to retain data for longer, we will do so.

​

7. Your Rights

​

Under UK GDPR, you have the following rights in relation to your personal data:
 

  • Access — you can request a copy of the personal data we hold about you.

  • Rectification — you can ask us to correct inaccurate or incomplete data.

  • Erasure — you can ask us to delete your data in certain circumstances, subject to our legal retention obligations.

  • Restrict processing — you can ask us to limit how we use your data in certain circumstances.

  • Object — you can object to processing where we rely on legitimate interests as our lawful basis.

  • Portability — you can ask us to provide your data in a structured, machine readable format where technically feasible.

  • Withdraw consent — where we rely on your consent to process data, you can withdraw it at any time. This does not affect the lawfulness of processing before withdrawal.
     

To exercise any of these rights, please contact us at anthony@als-solutions.co.uk. We will respond within one calendar month at no charge, unless a request is manifestly unfounded or excessive.
 

If you are not satisfied with our response, you have the right to complain to the Information Commissioner's Office (ICO):
 

​

8. How We Protect Your Data

​

We take appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, alteration, or destruction. These include:

​

  • Password protected and, where applicable, encrypted storage of electronic records

  • Use of Microsoft 365's built in security controls for email and document storage

  • Restricted access to personal data on a need-to-know basis

  • Secure disposal of personal data at the end of its retention period

  • ​

Where we engage third party processors, we ensure they are bound by appropriate data processing agreements and meet adequate security standards.

​

9. International Transfers

​

We do not ordinarily transfer your personal data outside the United Kingdom. Microsoft 365 and Wix may process data in data centres outside the UK; however, both operate under UK GDPR compliant transfer mechanisms (including UK adequacy decisions and standard contractual clauses where applicable). If our approach to international transfers changes materially, we will update this Notice.

​

10. Cookies

​

Our website uses cookies and similar technologies to support its functionality and to understand how visitors use it. Cookies are small text files placed on your device. We use:

​

  • Essential cookies — necessary for the website to function correctly

  • Analytics cookies — to understand how visitors interact with our site, helping us improve it

​

You can control cookie preferences through your browser settings. Disabling certain cookies may affect website functionality. Our website is hosted on Wix, whose own cookie and privacy practices are set out in the Wix Privacy Policy.

​

11. Changes to This Notice

​

We may update this Privacy Notice from time to time to reflect changes in our services, practices, or legal obligations. The current version will always be available at www.als-solutions.co.uk/privacy, along with the date it was last reviewed. Where we make material changes, we will take reasonable steps to notify individuals whose data we hold.

​

12. Contact Us

​

If you have any questions or concerns about this Privacy Notice or how we handle your personal data, please get in touch:

 

ALS WorkWell Solutions

Anthony Savage
anthony@als-solutions.co.uk
07466 602 900
www.als-solutions.co.uk

bottom of page