This privacy policy describes how and when I collect, use, and share information when you attend an appointment at this clinic, contact me or otherwise use our services. This is to comply with the General Data Protection Regulations (GDPR) 2018.
INFORMATION I COLLECT
To aid treatment you will normally provide me with certain information, such as your name, postal address and medical information.
WHY I NEED YOUR INFORMATION AND HOW I USE IT
I rely on a number of legal bases to collect, use, and share your information including
Where it is necessary for the purposes of the provision of health care as needed to provide my services, such as when I use your information to fulfil your Physiotherapy assessment and treatment, or to provide customer support.
If necessary to comply with legal obligation or court order or in connection with a legal claim.
MARKETING
I do not use your information for marketing purposes.
INFORMATION SHARING OR DISCLOSURE
Information about my patients is important to my business. I share your personal information for very limited reasons and in limited circumstances as follows:
Medical professionals – With your consent I will share information with medical professionals such as your GP or consultant to allow continuity of care.
Business transfers – If I sell or merge my business, I may disclose your information as part of that transaction, only to the extent permitted by law and with your consent.
Compliance with laws – I may collect, use, retain, and share information if I am legally required to.
DATA RETENTION
I retain your personal information only for as long as necessary to provide you with my services and as described in my Privacy Policy. However, I may also be required to retain information to comply with my legal and regulatory obligations, to resolve disputes and to enforce my agreements. The retention of Physiotherapy records will normally be 10 years after the last appointment.
YOUR RIGHTS
You have a number of rights in relation to your personal information. While some of these rights apply generally, certain rights apply only in certain limited cases. I describe these rights below:
Access – You have the right to access and receive a copy of the personal information I hold about you by contacting me using the contact information below
Change/Restrict/Delete – You may also have rights to change, restrict my use of, or delete your personal information. In the case of health records, these are normally exempt from change and deletion requests.
Object – You can object to my processing of some of your information based on my legitimate interests. In such cases, I will delete your personal information unless I have compelling and legitimate grounds to continue using that information or if it is needed for legal reasons.
Complain – If you wish to raise a concern about my use of your information (and without prejudice to any other rights you may have), you have the right to do so with the information commissioner http://www.ico.org.uk.
HOW TO CONTACT ME
For purposes of the GDPR, I Christopher Martin, am the data controller of your personal information. If you have any questions or concerns, you mary contact me at the address or telephone number below.
T C Martin & Assoc
82/83 Walsall street
Willenhall
West Midlands
WV13 2EU
01902 607543
© Copyright TC Martin & Associates 2020
T.C. Martin & Associates 