Privacy Policy & GDPR
Looking after your personal information:
The General Data Protection Regulations (GDPR) replaced the existing Data Protection Act of 1998 and has brought the regulations up to date to help protect our personal information from our ever-expanding digital footprint.
Physio2UCarlisle Ltd is committed to protecting your privacy and maintaining the security of any personal information received from you.
Our Data Protection Promise:
As ‘Data Controllers’ of your personal data, we take our role in the protection of your data very seriously. As such, we promise to:
1. Only collect data from you that is relevant to your physiotherapy treatment and administration purposes
2. Not pass on your personal data to any third-parties for marketing purposes.
3. Not sell, rent, or exchange your personal information with any third party for commercial reasons
4. Contact you and get your consent if we need to communicate with other health professionals (such as your doctor) about your care.
5. We maintain registration with the Information Commissioner’s Office, the UK’s independent body set up to uphold information rights. Visit: www.ico.org.uk.
6. We follow strict security procedures in the storage and disclosure of information to prevent unauthorised access in accordance with the UK data protection legislation.
Should you have any concerns about your personal data or you wish to have information about the personal data we hold about you, you can contact us at admin@physio2ucarlisle-g5a2p0l3zm.live-website.com
Your Data Protection Rights under the GDPR:
You have the right to:
• Access any of the information that we collect plus any other content that forms part of your patient record, including notes and expect to be able to read them and understand what they mean without expert medical knowledge.
• Know if your personal information has been forwarded to a third-party (such as a fellow healthcare professional, consultant, or GP.)
• Have any invalid information about you corrected.
• Request that your physiotherapist stops sending you any marketing information.
• Ensure that any profiling that is undertaken using your personal data is fair, appropriate, statistically valid and transparent.
• Be notified if critical information about you was inappropriately accessed and was deemed to be a critical breach.
• Not to have your personal information transferred outside the EU.
