Maternal bliss – Privacy Policy

Who we are Our website address is:

What personal data we collect and why we collect it


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

Additional information

How we protect your data

What data breach procedures we have in place

What third parties we receive data from

What automated decision making and/or profiling we do with user data

Industry regulatory disclosure requirements

MATERNAL BLISS  Privacy Notice
This privacy notice provides you with details of how we collect and process your personal data.

MATERNAL BLISS is owned and run by Simona Arneodo. 
As a registered nurse/health visitor Simona  is required by the Nursing and Midwifery Council’s Code of Conduct to respect people’s right to privacy and confidentiality so protecting your privacy is fundamental to her practice. This notice explains what information we collect from you, why we collect this information, under what circumstance this information may be shared, how long it is stored and how you can access it.

Our email address is

Our postal address is Simona Arneodo 1 waterloo close,  Thetford, IP24 2ZD – UK E: 

If you are not happy with any aspect of how we collect and use your data, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues ( We should be grateful if you would contact us first if you do have a complaint so that we can try to resolve it for you.

Sensitive Data

During our contacts by phone, text, messenger, email, via the contact page on our website, via social media and face to face we will collect and record personal information about you and your baby. This information will include medical information relevant to the issue you are seeing us about. We may use your contact information to contact you at a later date for the purposes of follow up, audit and research. NB Whilst we take steps to ensure your information is secure communications by text, email, messenger, social media and our website may not be secure so keep this in mind when using these methods.

Simona Arneodo is required by the Nursing and Midwifery Council’s Code of Conduct to keep clear and accurate records relevant to her practice. This is to enable her, and her administrative and support staff, to contact you and to provide safe and effective care for you and your baby. These records, which will contain your personal/medical information and that of your child, include summaries of our consultations and copies of emails. They are stored on electronic devices which are password protected and have security software installed. Long term storage is on encrypted memory sticks kept securely.

We require your explicit consent for processing sensitive data (medical information) and we will request you complete aa  signed consent for this.


We will only use your personal data when legally permitted. The most common uses of your personal data are:

• Where we need to perform the contract between us.
• Necessary for our legitimate interests.
• Where we need to comply with a legal or regulatory obligation.
Purposes for processing your personal data

Set out below is a description of the ways we intend to use your personal data and the legal grounds on which we will process such data. We have also explained what our legitimate interests are where relevant.

We may process your personal data for more than one lawful ground, depending on the specific purpose for which we are using your data. Please email us at if you need details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table below.

Type of data
Lawful basis for processing
To register you as a new client
(a) Identity
(b) Contact

Performance of a contract with you eg: provision of consultation and follow up support or provision of training/study days
To process your payment for services
(a) Manage payments, fees and charges
(b) Collect and recover money owed to us

(a) Identity
(b) Contact
(c) Financial
(d) Transaction

(a) Performance of a contract with you
(b) Necessary for our legitimate interests to receive payments owed to us

To manage our relationship with you which may include:
(a)     Providing consultations and follow up support (individually and in groups)
(b)     Providing training or study days
(c)   Asking you to leave a review or take a survey
(d) Notifying you about changes to our terms or privacy policy
(e) Managing complaints about our service
(a) Identity
(b) Contact
(c) Medical data
(d) Photographs/images

(a) Performance of a contract with you
(b) Necessary to comply with a legal and regulatory obligation (NMC Code of Conduct)
(c) Necessary for our legitimate interests including keep our records updated, studying how clients use our services, improving our service

 For the purposes of anonymised audit/research
(a)     Contact
(b)     Medical data

Necessary for our legitimate interests to study how clients use our services, to evaluate and to develop them and to assess efficacy and outcomes of interventions

We will not share your personal/medical data with any third parties except in the following situations:

• We will write to your GP and HV to inform that your baby has had a tongue-tie division, what type of tongue-tie it was, the reason for division and a very brief summary of any care plan put in place. This is so it can be recorded in your baby’s GP records and to ensure other professionals involved in the care of your baby are informed to promote safe and effective care.
• With your consent we may contact your midwife, GP, HV or other healthcare professionals involved in your care and share relevant information to enhance the care of you and your baby. For example, I may write to your GP to request a prescription for a nipple infection or phone your health visitor to discuss extra support.
• Should we have a concern about the safety of your child then we have a legal and professional obligation to share relevant information with the relevant agencies and in this case, your consent is not required.
• Anonymised data may be used and shared for the purpose of internal and external audits/research.
• In the event of a complaint or claim relevant information will be shared, with your consent, with my indemnity provider and legal team.
• Photographs may be used to form part of our consultation record, for educational and publicity purposes but only with your consent.
 We do not transfer your personal data outside the UK


We have put in place what we believe are appropriate security measures to prevent your personal and medical data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, access to your personal data will be limited to Sarah Oakley and agents acting on her behalf (for example administrative and support staff). 

In the event of a personal data breach, we will notify you and any applicable regulator of the breach where we are legally required to do so.


We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after they cease being customers for tax purposes.
By law medical records on children have to be kept for 25 years.
In some circumstances you can ask us to amend your data: see below for further information.


Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include the right to:

• Request access to your personal data.
• Request correction of your personal data.
• Request erasure of your personal data.
• Object to processing of your personal data.
• Request restriction of processing your personal data.
• Request transfer of your personal data.
• Right to withdraw consent.
You can see more about these rights at:

If you wish to exercise any of the rights set out above, please email us at

You will not have to pay a fee to access your personal data (or to exercise any of the other rights).

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response. We try to respond to all legitimate requests within one month.

Simona Arneodo  11/01/2021