Privacy statement Body Logic

Once you become a client of Body Logic, both personal and medical data are processed. For processing of personal data during website visits and the cookie policy see below. 

In addition to the General Data Protection Regulation (AVG), specific rules apply to privacy in the healthcare sector. These rules are listed, among others, in the Medical Treatment Agreement Act (WGBO). You can read what this means for you here.  

Processing personal data
To carry out my work as an independent healthcare provider, I am responsible for processing clients' personal data. In this privacy statement, I describe the measures I take to safeguard the privacy of those involved as much as possible. I do this according to the guidelines of the AVG Act and WGBO.

What personal data do I process?
From clients who take a membership on Body Logic Insights, I process the following data:

First and last name
Email address

From clients with whom I enter into a care agreement, I process the following personal data:

First name and surname
Date of birth
Address details
Phone number
Email address

Special personal data are data that need extra protection. These may only be processed if the client gives explicit consent or if it is necessary for the provision of healthcare. I process the following special personal data:

Policy number
Health insurer account number
Medical data in the client file

For what reason do I process personal data?
The ultimate goal, of course, is to provide the client with the best possible care. In addition, there are several specific reasons for processing personal data:

Preparation of care agreement, care description and care plan
Correct billing for declaration of (care) invoices
Mandatory documentation in the client file under the Wkkgz

All these goals have a legal basis attached to them.

How long do I keep personal data?
I never keep clients' personal data longer than necessary, unless required by law. Administrative documents such as invoices have a legal retention period of 7 years. Medical documents such as the documents in a client file have a statutory retention period of 20 years from the time the last change in the file took place. For other documents, the retention period is 5 years. After these periods, I review whether it is necessary to keep the data for longer. When it is no longer necessary, I will destroy the documents.

Storing and sharing personal data
Under no circumstances will clients' personal data be shared with third parties without explicit consent. An exception to this is if I have to comply with a legal obligation. The client will always be informed of this.

Data is stored in my records as follows: I use the Practice software 'MijnDiAd'. This is AVG compliant.

The client's rights
The client has the right to see, correct or delete the data I hold on the client at any time. The right to delete may be overruled by a legal obligation to keep the data. I will always substantiate this properly.

In addition, the client always has the right to data portability. This means that I can send the personal data to another person or organisation at the client's request.

If the client wishes to exercise any of these rights, this can be discussed with me verbally or in writing.

Body Logic uses cookies on its website. A cookie is a piece of data placed on your computer by a website. Every time you visit Body Logic's website, it collects basic technical information with Facebook pixels, Activecampaign site tracking and Google Analytics. Facebook pixels and Google Analytics track which pages you visit.

BodyLogic also uses cookies to improve the website, these are also called functional cookies.

If you do not want us to use cookies, this is no problem at all. You can disable or delete cookies yourself in your browser. Please note, however, that the website may not always work optimally.

Personal data on website visits
On the Body Logic website, name and email address are collected in the contact form and when downloading the first Body Logic Insights. This allows me to contact you. It also allows me to keep you informed about my services and valuable information. Your name and e-mail address will be added to my mailing list indefinitely. You can unsubscribe at any time via the link at the bottom of the emails.

For sending emails, I use ActiveCampaign. I also use Google Analytics to gain insight into visitors to my website. These companies are also referred to as 'processors'. They will only act under the responsibility of Body Logic.

When you sign up for a promotion or call in cooperation with one of our partners, your data will be shared with this cooperation partner so that they can contact you.

Your data may be collected and shared with the above processors. A number of processors are based outside the European Economic Area (EEA), but then mainly fall under the EU-US Privacy Shield. This obliges them to provide very strict (supervised) protection over personal data. A number of processors have taken measures to comply with the AVG.

The website has an SSL certificate, which means data is sent over a secure connection. Other forms or data you submit through our processors also go through a secure SSL connection.

If you would like to know what information Body Logic holds about you, please contact us at If you would like to make a complaint regarding the processing of your personal data, please send an email with your personal data to I will then be happy to help you further. You can also submit your complaint to the Personal Data Authority.

Last modified 4 November 2022


Contact details
Moon Spanjer
Laundry-Annalaan 17
2101PA Heemstede