Privacy Policy
Last updated: July 13, 2026
This Privacy Policy explains how finally get healthy (finallygethealthy.com) collects, uses, and protects your personal data when you visit or interact with this website. We are committed to handling your data transparently and in full compliance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.
1. Data Controller
The data controller responsible for this website is:
TRUSTED INSIGHTS LIMITEDTrusted Insights Limited
Office 3906, 39th The Ctr 99
Queen's Rd Central Central
Hong Kong
E-Mail: hello@trustedinsightslimited.com
For any questions regarding this Privacy Policy or the processing of your personal data, please contact us at the address or e-mail above.
2. Data We Collect
Depending on how you interact with this website, we may process the following categories of personal data:
- Usage data: IP address, browser type and version, operating system, referral URL, pages visited, time and date of visit, and time spent on pages.
- Device data: Device type, screen resolution, and language settings.
- Cookie data: Data stored in or retrieved from cookies and similar tracking technologies (see Section 5).
- Communication data: Name and e-mail address, if you contact us voluntarily (e.g., via e-mail).
We do not knowingly collect data from children under the age of 16.
3. Legal Basis for Processing
We process your personal data on the following legal grounds under Article 6 GDPR:
- Art. 6(1)(a) – Consent: Where you have given your explicit consent, for example by accepting non-essential cookies or subscribing to communications.
- Art. 6(1)(b) – Performance of a contract: Where processing is necessary to fulfil a request you have made or to take steps prior to entering into an agreement.
- Art. 6(1)(f) – Legitimate interests: Where we have a legitimate interest in processing your data, such as ensuring the security and functionality of our website, analysing site performance, and preventing fraud, provided your interests or fundamental rights do not override those interests.
Where we rely on consent as the legal basis, you have the right to withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.
4. Purposes of Data Processing
We use the collected data for the following purposes:
- Providing, operating, and maintaining the website
- Analysing website traffic and user behaviour to improve content and user experience
- Ensuring the security and integrity of the website
- Displaying relevant content and, where applicable, interest-based advertising
- Responding to inquiries and providing support
- Complying with legal obligations
5. Cookies and Tracking Technologies
This website uses cookies and similar technologies (e.g., pixels, local storage) to enhance functionality and analyse usage. Cookies are small text files stored on your device by your browser.
5.1 Types of Cookies We Use
- Strictly necessary cookies: Required for the basic operation of the website. These cannot be disabled. Legal basis: Art. 6(1)(f) GDPR (legitimate interest).
- Analytics cookies: Help us understand how visitors interact with the website by collecting and reporting information anonymously. Legal basis: Art. 6(1)(a) GDPR (consent).
- Advertising/tracking cookies: Used to deliver relevant advertisements and measure their effectiveness. These may be set by third-party advertising partners. Legal basis: Art. 6(1)(a) GDPR (consent).
5.2 Managing Cookies
Upon your first visit, you will be presented with a cookie consent banner allowing you to accept, reject, or customise non-essential cookies. You can change or withdraw your consent at any time by clearing your browser cookies and revisiting the site.
You may also configure your browser to refuse all or some cookies. Please note that disabling cookies may affect the functionality of this website. For more information on managing cookies, visit www.allaboutcookies.org.
6. Hosting and Infrastructure
This website is hosted by a third-party hosting provider. When you visit our website, your browser automatically transmits data to our hosting servers, including your IP address, browser type, the page requested, and the date and time of the request. This data is processed to ensure the technical delivery of the website and may be temporarily stored in server log files.
This processing is carried out on the basis of Art. 6(1)(f) GDPR (legitimate interest in the secure and reliable operation of the website). Log files are retained only as long as necessary for technical and security purposes.
Where our hosting provider processes data on our behalf, an appropriate data processing agreement (DPA) is in place pursuant to Art. 28 GDPR.
7. SSL / TLS Encryption
This website uses SSL/TLS encryption (Secure Sockets Layer / Transport Layer Security) for all data transmissions between your browser and our server. You can recognise an encrypted connection by the padlock icon in your browser's address bar and the https:// prefix in the URL. This ensures that any data transmitted between you and the website cannot be read or intercepted by third parties.
8. Third-Party Services and Data Sharing
We may share your data with trusted third-party service providers who assist us in operating this website. These may include:
- Web analytics providers – to understand website usage and improve our content.
- Advertising networks – to serve and measure advertisements, which may involve the use of tracking technologies and the processing of data about your browsing behaviour.
- Hosting and infrastructure providers – to deliver the website securely and reliably.
- Content delivery networks (CDN) – to ensure fast and stable content delivery.
All third-party processors are required to handle your data in accordance with applicable data protection law. Where applicable, we have entered into data processing agreements (DPAs) pursuant to Art. 28 GDPR.
We do not sell your personal data to third parties.
8.1 International Data Transfers
Some of our third-party providers may be located outside the European Economic Area (EEA). In such cases, we ensure that an adequate level of data protection exists, either through the European Commission's adequacy decisions, Standard Contractual Clauses (SCCs) pursuant to Art. 46(2)(c) GDPR, or other appropriate safeguards.
9. Data Retention
We retain your personal data only for as long as is necessary to fulfil the purposes described in this Privacy Policy, or as required by applicable law. Once data is no longer needed, it is securely deleted or anonymised.
Specifically:
- Server log files are typically retained for a maximum of 30 days, unless a longer retention period is required for security investigations.
- Data processed on the basis of your consent is retained until you withdraw that consent.
- Communication data (e.g., e-mails) is retained as long as necessary to handle your enquiry and for any related legal obligations.
10. Your Data Subject Rights
Under the GDPR, you have the following rights with respect to your personal data:
- Right of access (Art. 15 GDPR): You have the right to request a copy of the personal data we hold about you.
- Right to rectification (Art. 16 GDPR): You have the right to request correction of inaccurate or incomplete personal data.
- Right to erasure (Art. 17 GDPR): You have the right to request deletion of your personal data, subject to certain conditions.
- Right to restriction of processing (Art. 18 GDPR): You have the right to request that we restrict the processing of your data in certain circumstances.
- Right to data portability (Art. 20 GDPR): Where processing is based on consent or a contract, you have the right to receive your data in a structured, commonly used, and machine-readable format.
- Right to object (Art. 21 GDPR): You have the right to object to the processing of your data based on legitimate interests or for direct marketing purposes.
- Right to withdraw consent (Art. 7(3) GDPR): Where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of prior processing.
- Right not to be subject to automated decision-making (Art. 22 GDPR): You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects.
To exercise any of these rights, please contact us at: hello@trustedinsightslimited.com
We will respond to your request within 30 days. We may ask you to verify your identity before processing your request.
10.1 Right to Lodge a Complaint
You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR. You may contact the data protection authority of the EU member state in which you reside, work, or where an alleged infringement took place. A list of supervisory authorities can be found at:
