PRIVACY POLICY AND GENERAL DATA PROTECTION REGULATION (GDPR)
This privacy notice tells you how we, Top Tier Physiotherapy Ltd, will collect and use your personal data to provide our service. The companies ‘data controller’ – someone who decides how and why personal data is processed, is:
Keith Burland - Director
T: 07413 006 080
E: info@toptierphysio.co.uk
PERSONAL DATA
Under the EU’s General Data Protection Regulation (GDPR) personal data is defined as:
“Any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.
WHY DOES TOP TIER PHYSIOTHERAPY LTD NEED TO COLLECT AND STORE PERSONAL DATA?
In order for us to provide you with physiotherapy and sports massage services we need to collect personal data for correspondence purposes and/or to allow us to provide you our service. In any event, we are committed to ensuring that the information we collect and use is appropriate for this purpose. Top Tier Physiotherapy Ltd is a company which values its user’s data protection and privacy rights and we have no interest in collecting data beyond what we need to make the Top Tier Services work for you. If you are going to be contacted by us for marketing purposes, we will not rely solely on this notice, but will always seek an additional confirmation from you that it’s ok to do that.
WILL TOP TIER PHYSIOTHERAPY LTD SHARE MY PERSONAL DATA WITH ANYONE ELSE?
We will not pass on or sell your personal data to any marketing organisations. We may pass your personal data on to necessary third-parties in the course of dealing with you. This may include any organisation that provides us with IT systems, support and accounting.
Any third parties that we may share your data with are obliged to keep your details securely, and to use them only to deliver the service they provide on our, and of course your behalf. When they no longer need your data to fulfil this service, they will dispose of the details in line with Top Tier Physiotherapy procedures. If we wish to pass your sensitive personal data onto a third party we will only do so once we have obtained your consent or unless we are legally required to do otherwise.
HOW WILL TOP TIER PHYSIOTHERAPY LTD USE THE PERSONAL DATA IT COLLECTS ABOUT ME?
Top Tier Physiotherapy Ltd will process (collect, store and use) the information you provide in a manner compatible with the EU’s General Data Protection Regulation (GDPR). We will endeavour to keep your information accurate and up to date, and not keep it for longer than is necessary. Top Tier Physiotherapy Ltd is required to retain certain information in accordance with the Law, such as information regarding medical treatment.
RETENTION PERIOD
Top Tier Physiotherapy Ltd will process different forms of personal data for as long as is necessary and proportionate for the purpose for which it has been supplied and will store the personal data for the shortest amount of time possible, taking into account legal and service requirements.
Please note that our legal obligations under the access to medical records act 1988 and medical records act 1990 supersede the general data protection regulations, therefore there are some records and reports that we cannot delete for specified periods of time.
For those with capacity physiotherapy records must be retained for 8 years from the date of the last appointment. Certain records may need to be kept indefinitely.
YOUR RIGHTS AS A DATA SUBJECT
At any point while we are in possession of or processing your personal data, you, the data subject, have the following rights:
Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
Right of access – you have the right to request a copy of the information that we hold about you.
Right to object – you have the right to object to certain types of processing such as direct marketing.
Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
Right of portability – you have the right to have the data we hold about you transferred to another organisation.
Right to restriction of processing – where certain conditions apply you have a right to restrict the processing.
WHAT FORMS OF ID WILL I NEED TO PROVIDE IN ORDER TO ACCESS THIS?
Top Tier Physiotherapy Ltd accepts a request made in writing or email. In certain circumstances Top Tier Physiotherapy Ltd could ask for additional information and the following forms of ID when information on your personal data is requested:
A colour copy of a Passport, driving licence or National ID Card
TOP TIER PHYSIOTHERAPY LTD are your Data Controller, you may make a request directly to the Data Protection Officer using the email address info@toptierphysio.co.uk
CONSENT
By consenting to this privacy notice you are giving us permission to process your standard and sensitive personal data specifically for the purposes identified. Where we are asking you for sensitive personal data, we will always tell you why and how the information will be used. Agreement with this Privacy Notice will be considered to be explicit consent.
You may withdraw consent at any time by contacting:
info@toptierphysio.co.uk
COMPLAINTS
In the event that you wish to make a complaint about how your personal data is being processed by TOP TIER PHYSIOTHERAPY LTD, or how your complaint has been handled, you have the right to lodge a complaint directly with the supervisory authority and TOP TIER PHYSIOTHERAPY LTD data protection Officer.
Contact details of Top Tier Physiotherapy Data Controller:
Keith Burland - Director
T: 07413 006 080
E: info@toptierphysio.co.uk