1. Who We Are

 

We are committed to protecting your privacy and complying with UK data protection laws.

​

2. What Personal Data We Collect

 

We may collect and process the following data:
- Name, date of birth, address, contact information
- Health history, symptoms, clinical notes
- Payment and appointment information
- GP or healthcare provider contact details (if relevant)

​

3. Why We Collect This Data

 

We collect data for:
- Providing safe and effective care
- Maintaining accurate clinical records
- Communicating with you about appointments
- Legal, regulatory, and insurance purposes

Our lawful basis for processing data includes:
- Contract (to deliver care)
- Legal obligation (e.g., to meet insurance or health records regulations)
- Legitimate interest (e.g., improving services)
- Consent (e.g., marketing emails – optional)

​

4. How We Store and Share Your Data

 

- Patient data is stored securely using [Cliniko] (UK GDPR-compliant platform).
- Paper forms (if used) are stored in locked, secure cabinets.
- We may share data with:
  - Your GP (if required and with your consent)
  - Insurance providers (only if you request it)
  - Regulators (e.g., GCC) if legally required

We never sell or rent your data.

​

5. How Long We Keep Your Data

 

We retain your clinical records for 8 years after your last appointment (or until age 25 if seen as a minor), in line with professional guidance.

​

6. Your Rights

 

You have the right to:
- Access your data
- Request correction or deletion
- Withdraw consent (where applicable)
- Complain to the Information Commissioner’s Office (ICO) at https://www.ico.org.uk​