Privacy Policy 1 — Herefordshire Osteopath

Privacy policy.

Privacy Policy

Introduction

At the Herefordshire Osteopath I am committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, and protect your personal data in compliance with the Data Protection Act 2018 and the General Data Protection Regulation (GDPR).

1. Information We Collect

We may collect and process the following data about you:

- Personal Identification Information: Name, date of birth, address, phone number, email address.

- Medical Information: Medical history, treatment details, GP details, and other relevant health information.

- Appointment Information: Appointment dates, times, and any correspondence related to your appointments.

- Payment Information: Billing details and transaction history.

- Communication Information:Records of your communications with us, including emails and telephone calls.

2. How We Use Your Information

We use the information we collect for the following purposes:

- To provide and manage osteopathic care and treatment.

- To communicate with you regarding your appointments and treatment.

- To maintain accurate medical records.

- To process payments for our services.

- To comply with legal and regulatory obligations.

- To improve our services and manage our clinic operations.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

- Consent: You have given clear consent for us to process your personal data for specific purposes.

- Contract: Processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.

- Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject.

- Vital Interests: Processing is necessary to protect your vital interests or those of another person.

- Legitimate Interests: Processing is necessary for our legitimate interests, provided your interests and fundamental rights do not override those interests.

4. Data Sharing

We may share your personal data with:

- Healthcare Providers: With your consent, we may share information with your GP or other healthcare professionals involved in your care.

- Service Providers: Third-party service providers who perform functions on our behalf (e.g., billing services, IT support).

- Regulatory Authorities: When required by law, we may share information with regulatory bodies and law enforcement agencies.

We do not sell or trade your personal data to third parties.

5. Data Security

We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect your data against unauthorized access, loss, or destruction.

6. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected and to comply with legal, accounting, or reporting requirements.

7. Your Rights

You have the following rights regarding your personal data:

- Access: You have the right to request a copy of the personal data we hold about you.

- Rectification: You have the right to request correction of any inaccurate or incomplete data.

- Erasure: You have the right to request the deletion of your personal data where there is no compelling reason for its continued processing.

- Restriction: You have the right to request the restriction of processing of your personal data in certain circumstances.

- Portability: You have the right to request the transfer of your personal data to another party.

- Objection: You have the right to object to the processing of your personal data where we rely on legitimate interests as the legal basis for processing.

To exercise your rights, please contact us using the details provided below.

8. Changes to Our Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and where appropriate, notified to you by email. Please check back frequently to see any updates or changes to our Privacy Policy.

9. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

The Herefordshire Osteopath

Kyrle Street Hereford

HR1 2EU

01432 273234

17 West Street

Leominster

01568 368907

privateosteo@gmail.com

10. Complaints

If you have any concerns about our use of your personal data, you can make a complaint to us at the contact details above. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues, at www.ico.org.uk.