Privacy & Data Protection

The purpose of this document

roadtoheath Limited (“RTH”), the creator and legal owner of the Tour Fit for Golf (“TFFG”) website (the "Website"), have created this Privacy, Security and Data Protection Policy to demonstrate our commitment to ensuring the privacy and security of the information that you share with us in accordance with our duties under the Data Protection Act 1998.

This document together with our terms and conditions of use describes how and for what purposes we collect and use personal data from visitors to the Website (i.e. information or data about a particular visitor who can be identified from that data or from it together with other information which is in, or is likely to come into, our possession).

Your consent to the Terms of Use and this Policy

By using the Website, you acknowledge and agree to the Terms of Use and this Privacy, Security and Data Protection Policy. If you do not agree with either the Terms of Use or this Privacy, Security and Data Protection Policy, please stop using the Website and contact us at so that we may remove any personal data we may have collected from you.

What type of data we will collect from you

When you interact with TFFG, we may collect and process sensitive or personal data about you. This may include:

  • Any information you provide by filling in the forms on the Website:
  • Your name and date of birth;
  • Your personal contact details (email, phone, address, postcode);
  • Details about any of your previous health concerns or clinical issues;
  • Details about your family history, particularly around health concerns or clinical issues;
  • Details about your lifestyle;
  • Clinical information; and
  • If you contact us, we may keep a record of that correspondence.

We will only collect data to the degree that this is necessary and relevant to the delivery of your health risk management programme, to fulfil the various services we provide as part of your use of the Website, to determine which additional products and services we believe may be of interest to you and for the other purposes set out in this statement.

How we will use your data

The information you provide us with will be used predominantly to provide you with information about a number of potential health risks based on your clinical background and lifestyle and to assist us in recommending an appropriate clinical pathway to you.

  • In addition your data may be used:
  • to tailor your visit to the Website;
  • to ensure that content in the Website is presented in the most effective manner for you and your computer;
  • to show you content that we think you might be interested in;
  • to contact you and send you information regarding our services and changes to our services;
  • to send you e-mails on various matters;
  • to contact you if we need to resolve support issues;
  • to identify whether you have purchased products or services if you decide to follow a link through to or from one of our online partners;
  • to provide us with broad demographic data;
  • to provide us with information in order to develop new features and services; and
  • to service your account.

When we share your personal information

Information about our members is an important part of our business and we do not sell or rent your information to anyone else to enable them to send you direct marketing unless you agree otherwise. However, there are circumstances where it is necessary for us to share personal information in order for us to provide you with services which we believe would be of value to someone with your specific Q-Score or lifestyle profile. At all times where we use or disclose your information it will remain secure.

The circumstances where we may share some of your information with others are described below:

Third Party Service Providers

We employ other companies and individuals to perform functions on our behalf. For example we engage companies to analyse member information, process credit card payments and to deliver clinical services covered by your membership. We also engage agents including credit reference agencies, fraud prevention and detection agencies and debt collection agencies that we use to process the orders you place with us or who assist us in the service we provide to you. In these instances, we provide them with only the information they need to perform their function.

Promotional Offers

Sometimes we send offers to selected groups of our members on behalf of other businesses. We will not permit other businesses to contact our members directly and all such promotional offers will come via RTH or TFFG. If you wish to withdraw your consent from receiving these communications you can do so by logging onto your TFFG account and amending your communication settings online.

Business Transfer

If our company is ever sold or its assets are purchased by another company it would typically be part of such a transaction for member information to form part of the business assets being transferred and for your data to be disclosed to the prospective buyer of our company or its assets. The information will remain subject to the obligations as outlined in this Privacy Policy.

Research Companies

To outside research companies whom we may ask to contact you directly for your opinions on our products and services (in which case we provide them with only the information they need to perform their function). If you wish to withdraw your consent to this you can do so by logging onto your TFFG account and amending your communications settings online.

Protection of RTH, TFFG and others

We may release account and other personal information when we believe release is appropriate to comply with the law, to enforce our Terms and Conditions and other agreements or protect the rights, property or safety of RTH or TFFG, our members or others.

With members of our Group

We may disclose your personal information to any member of our group, which means our subsidaries, our ultimate holding company and its subsidaries, as defined in the Companies Act 1985 section 736.

With your consent

Other than as set out above you will receive notice when information about you may be sent to a third party and you will have an opportunity to choose not to share the information.

How we use Cookies

We may use "cookies" from time to time on the Website. A cookie is a piece of data created by a web server that is stored on your computer. The cookies created by our web servers contain data that uniquely identifies you each time you use the Website. This identifier may be used to record site usage statistics.

You have the option of using your browser software to disable cookies or to warn you before accepting a cookie from the Website. However, if you disable or choose not to accept cookies some of the functionality of the Website may be impaired or you may not have access to areas of the Website that require this type of identification.

In a separate automatic operation, our web servers will collect your IP address and details of the website where you came from before entering the Website. This information may be used by us from time to time to work out how many times the Website has been visited or to record which parts of the Website have been visited so its content and layout can be improved.

Your data and third parties

From time to time, we may also aggregate the data we obtain from our users for statistical analysis and research which may be used at a corporate, national or global level by ourselves or we may provide aggregated data to third parties. It will not be possible to identify you or any other individual from this data.

How to opt out of future mailings and communications

Occasionally, we may contact you to provide you with information about products or services that we think may be of interest to you. If you would prefer not to receive this type of information then please contact our membership team on 0344 414 4530 to let us know and we will ensure that you are not contacted.

Remember, however that this will mean that we cannot send you information about any special offers or discounts that may benefit you.

How we will keep your data safe

Security and privacy of data are an essential part of the TFFG solution. To this end, we use access authentication and server security to protect your data. Whenever you provide us with information across the web, your details will be encrypted before being sent to our professionally-managed Website servers.

Please note, however, that we cannot be held responsible for security issues generated by the equipment you use to access the Website, or certain circumstances beyond our control including but not limited to hack attacks, denial of service attacks, the effect of viruses or other harmful or malicious programs or vandalism of services.

In particular, the transmission of information via the internet is not completely secure. Athough we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

Where your data will be stored

Your data will be held in a purpose-built, professionally-managed, secure data storage facility in the UK.

If, for any reason, we need to transfer your information to any other country which operates to a different level of data protection from the UK (including those outside the European Economic Area (EEA)), we will always take all reasonable steps to ensure your information is treated securely in accordance with this statement.

How we comply with the Data Protection Act 1998

We have developed internal procedures to ensure that all information we collect and hold about you is held in accordance with the legal requirements and principles of the Data Protection Act 1998. The Data Protection Act 1998 has eight main principles and we have listed them below together with an explanation of how we comply with these principles.

A summary of the data protection principles

1 Personal data shall be processed fairly and lawfully.

We have developed the Website to ensure that all information collected is processed fairly and lawfully. In addition we have developed this Privacy, Security and Data Protection Policy to help you understand the purpose of our data collection and the steps to which we have gone to protect your data.

2 Personal data shall be obtained only for one or more specified and lawful purposes, and shall not be further processed in any manner incompatible with that purpose or those purposes.

This Privacy, Security and Data Protection Policy that we have developed clearly states the purposes for which we collect and process data. We have notified our purposes to the Information Commissioner.

3 Personal data shall be adequate, relevant and not excessive in relation to the purpose or purposes for which they are processed.

We ask only for information that is to be used to provide you with information about TFFG and to provide our services or that is to be used in an aggregated way to draw conclusions (e.g. via polls/surveys/research).

4 Personal data shall be accurate and, where necessary, kept up to date.

If you would like to amend your details please e-mail us at We do not take any responsibility for any consequences of you failing to provide accurate information to us or of you failing to keep it up to date.

5 Personal data processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.

The data that we collect from you and by which you are identifiable will be held unless and until you ask us to remove this information. This is subject to our retention of data necessary for (a) the purpose of, or in connection with, any legal proceedings (including prospective legal proceedings), for the purpose of obtaining legal advice, or otherwise establishing exercising or defending legal rights; and (b) medical purposes undertaken by a health professional (or a person who in the circumstances owes an equivalent duty of confidentiality).

6 Personal data shall be processed in accordance with the rights of data subjects under this Act.

Your rights under the Data Protection Act 1998 are fully observed. If you feel that your rights are being contravened then you have full recourse to the Office of the Information Commissioner.

7 Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data.

We recommend that you review the paragraphs on Privacy and Security above which set out the measures we have taken to protect your data.

8 Personal data shall not be transferred to a country or territory outside the European Economic Area (EEA) unless that country or territory ensures an adequate level of protection for the rights and freedoms of data subjects in relation to the processing of personal data.

The UK has a high degree of data protection regulation and consequently you can be assured that wherever you are, the fact that all of your data is stored on servers based in the UK means that your information is processed in accordance with UK data protection principles. If you access your e-mails from a computer located outside the EEA, the action of accessing your emails will be taken as your consent to us transferring your personal data outside of the EEA in order to reach you.

Other Sites

The Website may, from time to time, contain links to other websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.

Access to information

The Data Protection Act 1998 gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request may be subject to a fee of £10 to meet our costs in providing you with details of the information we hold about you.

Changes to our Privacy, Security and Data Protection Statement

Any changes we may make to our privacy, security and data protection statement policy in the future will be posted on this page.

If you have any further questions.

Please email us at

Alternatively, you can write to the Data Protection Officer roadtohealth Limited, 6th Floor, City Gate East,Toll House Hill, Nottingham NG1 5FS