Privacy Policy

This Privacy Notice sets out the basis on which we collect and process personal data about you. This includes our practices regarding the collection, use, storage, and disclosure of personal data that we collect from you and/or hold about you, and your rights in relation to that data.

Please read the following carefully to understand how we process your personal data. By providing your personal data to us or by using our services, website, or another online or digital platform(s), you are accepting or consenting to the practices as described or referred to in this Privacy Notice.

For the purpose of Data Protection Laws, GlobMed Ltd trading as AdeaHealth acts as the data controller. GlobMed Ltd. is incorporated in England and Wales (Company Number 13334413) with registered office address at 26 Gosfield Street, London, Greater London, England, W1W 6HH, United Kingdom.

The Company also operates from the following locations:

United States: 66 W Flagler Street, Suite 900, PMB 10420, Miami, FL 33130
South Africa: 33 Church Street, Cape Town City Centre, South Africa, 8001
U.A.E: Meydan Grandstand, 6th floor, Meydan Road, Nad Al Sheba, Dubai, U.A.E
Spain: Oasis Business Centre - Ctra De Cadiz km 176 - 29602 Marbella Malaga, Spain

For further information regarding data privacy practices, please contact us at [email protected].

When we refer to ‘we’, ‘us’, and ‘our’, we mean GlobMed Ltd trading as AdeaHealth.

1. Collection of Personal Data

1.1 When we refer to personal data in this Notice, we mean information that relates to an identified or identifiable individual.

1.2 We may hold and use personal data about you as a customer, a patient, or in any other capacity, for example, when you visit one of our websites, complete a form, access our services, or speak to us.

1.3 Personal data we collect from you may include the following:

Information that you give us when you enquire or become a customer or patient of us or apply for a job with us including name, address, contact details (including email address and phone number).
The name and contact details (including phone number) of your next of kin.
Details of referrals, quotes, and other contact and correspondence we may have had with you.
Details of services and/or treatment you have received from us, or which have been received from a third party and referred to us.
Information obtained from customer surveys, promotions, and competitions that you have entered or taken part in.
Recordings of calls we receive or make.
Notes and reports about your health and any treatment and care you have received and/or need, including clinic and hospital visits and medicines administered.
Patient feedback and treatment outcome information you provide.
Information about complaints and incidents.
Information you give us when you make a payment to us, such as financial or credit card information.
Other information received from other sources, including from your use of websites and other digital platforms we operate or the other services we provide, information from business partners, advertising networks, analytics providers, or information provided by other companies who have obtained your permission to share information about you.

1.4 Personal data we collect may also include information provided in connection with Coach+, Health+ Essential, Health+ Advanced, Longevity+, discovery calls, downloadable programme information requests, community platform access, and future digital support features made available by AdeaHealth.

1.5 This may include lifestyle information, medical history, family history, nutrition information, movement and exercise information, sleep, stress, hormonal and sexual health information, coaching records, biological age data, body composition data, laboratory test results, diagnostic information, genetic data, epigenetic data, microbiome data, imaging results, and other health-related information relevant to the services requested by you or arranged on your behalf.

1.6 Where you have named someone as your next of kin and provided us with personal data about that individual, it is your responsibility to ensure that that individual is aware of and accepts the terms of this Privacy Notice.

1.7 Where you use any of our websites, we may automatically collect personal data about you including:

Technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform.
Information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through, and from our site (including date and time), products you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page.

1.8 The data that we request from you may include special category data. This includes information that relates to the following:

Racial or ethnic origin,
Political opinions,
Religious or philosophical beliefs,
Trade union membership,
Genetic data, biometric data to uniquely identify a natural person,
Health data,
Data concerning a natural person’s sex life or sexual orientation.

In the context of AdeaHealth services, this may include genetic testing, epigenetic testing, microbiome analysis, biological age assessments, body composition data, diagnostic imaging results, laboratory results, and other health-related data required to deliver your selected programme.

Cookies and Tracking Technologies: Our website uses cookies and similar tracking technologies to improve your experience and analyse site usage. This includes essential cookies (required for the website to function), analytics cookies (to understand how visitors use our site), and marketing cookies (where consent is given). You can manage cookie preferences through your browser settings or our cookie consent tool.

2. Use of Data

The collected data is used for various purposes such as:

Providing and maintaining our services;
Managing enquiries, discovery calls, and programme requests;
Providing customer care and support;
Notifying you about changes to our services;
Allowing participation in interactive features where applicable;
Monitoring usage and improving our services, platform, and user experience.

We may also use your data to:

Deliver and manage Coach+, Health+ Essential, Health+ Advanced, and Longevity+ programmes;
Coordinate diagnostic testing, laboratory services, imaging, and specialist consultation;
Prepare personalised reports, biological age assessments, and health optimisation plans;
Facilitate communication between you and healthcare professionals or third-party providers;
Provide access to community platforms, educational resources, and programme materials;
Develop and improve our services, programme structure, and user experience.

We will not sell, commercialise, or use your personal data for marketing purposes without your prior explicit consent. We will not use your personal data for scientific research purposes without your prior explicit consent. Where you have consented to receive marketing communications, you may withdraw that consent at any time by contacting [email protected] or using the unsubscribe link in any marketing email.

3. Transfer of Data

Your personal data may be transferred to, stored and processed outside of the United Kingdom where necessary for the provision of services.

This may include sharing data with healthcare professionals, laboratories, diagnostic providers, imaging centres, and technology platforms engaged to deliver services requested by you.

Where such transfers occur, appropriate safeguards will be implemented in accordance with applicable data protection laws.

Where personal data is transferred outside the UK, we will ensure that appropriate safeguards are in place, which may include: Standard Contractual Clauses (SCCs) approved by the ICO; transfer to countries with an adequacy decision from the UK Government; binding corporate rules; or other mechanisms permitted under UK GDPR. A list of countries to which data may be transferred and the applicable safeguards can be requested by contacting [email protected].

4. Disclosure of Data

4.1 Legal Requirements

We may disclose your personal data where necessary to:

Comply with a legal obligation;
Protect and defend our rights or property;
Prevent or investigate possible wrongdoing;
Protect the safety of users or the public;
Protect against legal liability.

4.2 We may also disclose your data to third-party healthcare providers, laboratories, diagnostic services, imaging centres, and specialists where required to deliver services requested by you or arranged on your behalf.

5. Security of Data

5.1 The security of your personal data is important to us. We implement appropriate technical and organisational measures to protect your data.

5.2 However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security.

5.3 In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay. Such notifications will describe the nature of the breach, the data affected, and the steps we are taking to address it.

6. Lawful Basis

6.1 We process personal data in accordance with Article 6 of the UK GDPR. This includes:

Consent: you have given us explicit consent for us to process your data for a specific purpose;
Performance of a contract: the processing is necessary for the performance of a contract we have with you, or because you have asked us to take specific steps before entering into a contract;
Compliance with legal obligations: the processing is necessary for AdeaHealth to comply with the law;
Legitimate interests: the processing is necessary for AdeaHealth’s legitimate interest or the legitimate interest of a third party unless there is a good reason to protect your personal data which overrides those legitimate interests;
Protection of vital interests: the processing is necessary to protect someone’s life.

Where special category data (including health, genetic, and diagnostic data) is processed, this is done in accordance with Article 9 of the UK GDPR, including explicit consent and the provision of health-related services.

For transparency, the following summarises the primary lawful bases for our main processing activities:

Delivering health programmes — contract performance and explicit consent (for special category data);
Diagnostic testing and lab analysis — explicit consent and contract performance;
Communications and account management — contract performance and legitimate interests;
Safety and emergency notifications — vital interests;
Legal compliance and responding to regulatory requests — legal obligation;
Service improvement and analytics — legitimate interests (where not overriding your rights).

7. Your Rights

7.1 Under the UK GDPR and Data Protection Act 2018, you have the following rights:

The right to access your personal data;
The right to correct inaccurate or incomplete data;
The right to request erasure of your personal data;
The right to object to processing;
The right to restrict processing;
The right to data portability;
The right to request human intervention in automated decision-making;
The right to withdraw consent at any time.

To exercise your rights, please contact [email protected].

If you are not satisfied with how we have handled your personal data or responded to your request, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's independent supervisory authority for data protection. The ICO can be contacted at: www.ico.org.uk, by telephone on 0303 123 1113, or by post at: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.

8. Data Sharing with Third Parties

In order to deliver services, your personal data may be shared with:

Healthcare professionals and specialists involved in your care;
Laboratories, diagnostic providers, and imaging centres;
Third-party service providers involved in programme delivery, scheduling, communication, and data management;
Finance providers where you choose to use third-party finance options.

Each third party will process your data in accordance with their own privacy policies and applicable data protection laws.

Where third parties process personal data on our behalf (as data processors), we will ensure that appropriate data processing agreements are in place in accordance with Article 28 of the UK GDPR, requiring those processors to process data only on our documented instructions and to implement appropriate security measures.

9. Data Retention

9.1 Personal data will be retained only for as long as necessary to fulfil the purposes for which it was collected or as required by law.

9.2 When we no longer need personal data for the purpose for which it was collected, it will be securely deleted or anonymised in accordance with our data retention schedule.

9.3 Indicative retention periods are as follows: Health records and programme data for 8 years from last contact, in line with NHS/medical records guidance, and financial records for 7 years (HMRC requirement).

10. Digital Platforms and Future Features

10.1 AdeaHealth may provide access to digital platforms, community features, downloadable content, and AI-enabled tools (including AI+ Coach Support).

10.2 Where such features are made available, personal data may be processed to support functionality, improve user experience, and deliver programme support.

10.3 AI-enabled tools are provided as support tools only and do not replace medical advice or clinical decision-making.

10.4 Where AI+ Coach Support or other AI-enabled tools process personal data to generate recommendations, reminders, or responses, AdeaHealth confirms that no solely automated decision-making with legal or significant effects (as defined by UK GDPR Article 22) will be made about you without meaningful human review. All AI-generated outputs that inform your programme are reviewed and validated by qualified health professionals. You have the right to request human intervention in any automated process that affects you.

11. Changes to this Privacy Policy

11.1 This Privacy Policy may be updated from time to time.

11.2 Any changes will be communicated via the website or other appropriate channels.

11.3 Where changes to this Privacy Policy are material (for example, changes to how we use your data, who we share it with, or how long we retain it), we will notify you by email at least 30 days before the changes take effect. Non-material changes (such as corrections to contact details or clarifications) may be made without prior notice. The ‘Last Reviewed’ date at the top of this policy will always reflect the date of the most recent update.

12. Contact

12.1 For further information, requests, or concerns regarding this Privacy Policy, please contact: [email protected]

12.2 If you are not satisfied with our response to any privacy concern or request, you may escalate your complaint to: The Information Commissioner's Office (ICO), www.ico.org.uk, 0303 123 1113.

12.3 We aim to respond to all data subject requests within one calendar month of receipt, as required by UK GDPR. Where a request is complex or we receive a high volume, we may extend this period by a further two months, in which case we will notify you.