What we collect
We may collect the following information:
- Contact information including email address
- Demographic information such as postcode, preferences and interests
- Other information relevant to customer surveys and/or offers
Why we collect it
When you supply your personal details to this clinic they are stored and processed for 3 reasons:
1. We have a legal obligation to maintain medical notes in order to provide you with treatment.
2. Provided we have your consent, we would like to contact you in order to confirm your appointments with us
or to update you on matters related to your medical care. Under the GDPR, this is known as Legitimate
3. Again, provided we have your consent, we may occasionally send you general health information in the
form of articles, advice or newsletters. This, too, constitutes “Legitimate Interest” under the GDPR.
We have a legal obligation to retain your records for 8 years after your most recent appointment (or age 25, if this is
longer), but after this period you can ask us to delete your records if you wish. Otherwise, we will retain your records
indefinitely in order that we can provide you with the best possible care should you need to see us at some future
Your records are stored electronically using a specialist records service. This provider has given us their assurances that they are fully compliant with the General Data Protection regulations. Access to this data is password protected, and the passwords are changed regularly.
We will never share your data with anyone who does not need access without your written consent. Only the following people/agencies will hvae routine access to your data:
-Our reception staff, because they organise our practitioners' diaries, and coordinate and appointments and reminders (but they do not have access to your medical history or sensitive personal information)
-Your practitioner(s) in order that they can provide you with treatment