What is a Privacy Notice?
Under data protection law you, as a patient of Well Adjusted Health, have specific rights. To communicate these rights to you in a clear and concise manner, we are providing you with this privacy notice.
We want you to be confident that we are treating your personal data responsibly, and that we do everything we can to ensure that the only people who can access that data have a genuine need to do so.
Who Are We?
We are Well Adjusted Health of The Sports Pavilion, Church Lane, Ashington, West Sussex RH20 3JY, Telephone number 01903 892171, email address firstname.lastname@example.org.
For the purposes of processing your personal data we are the controller.
The Personal Data we process & what we do with it
We record & use the following categories of personal data; name, address, telephone numbers, email address, date of birth, health information including medical history, diagnosis & treatment data. Our lawful basis of processing this data is the contract made when you request treatment & we agree to provide that care.
For the health information, we also have a legitimate interest i.e. the provision of health-related services as a chiropractic clinic. You can, of course refuse to provide this information, but if you were to do that we would not be able to provide treatment.
It is important to us that we can contact you to confirm your appointments with us or to give you updates related to your chiropractic care. In this case this is in your legitimate interest for us to do so.
Provided we have your consent, we may send you newsletters containing general health information in the form of articles or advice. You may withdraw this consent at any time – just let us know.
In addition, we will only examine or treat you with your explicit consent.
Where third parties are used by us to store your personal data, we ensure they are compliant with the data protection law.
Any records which are stored electronically (“in the cloud”) or on our office computers are password protected & comply with the General Data Protection Regulations. Your paper records are held securely either at the practice or in our archive.
We will never share your data with anyone who does not need access without your written consent. Only the following people/agencies will have routine access to your data:
- Your practitioner (or locum) in order that they can provide you with treatment.
- Our reception staff in the course of their duties, including the organisation our diary & coordination of appointments & reminders.
- We use Clinic Answer virtual receptionist service to enable you to book, change or cancel appointments when our clinic is closed. They only have access to your essential contact details & our diary. (they do not have access to your medical history or any sensitive personal information). Any data accessed or retained on their servers is password protected & stored with the EU.
- We use Cliniko to manage our patient database & appointment diary. Again, they do not have access to your medical history or any sensitive personal information. Any information they store is held in compliance with the General Data Protection Regulations.
- We may also use SurveyMonkey to ask for feedback from you on our practice & the treatment you receive. Any information you provide may be saved on their server but will be held in compliance with the General Data Protection Regulations.
Retaining your Personal Data
Whilst you are receiving treatment from our clinic we will continue to store and use your personal data. Once you have been discharged, we have a legal obligation to retain your personal data for a minimum of 8 years (or to age 25 if this is longer). After this period you can ask us to delete this information if you wish. Otherwise we will retain your records for approximately 10 years so that we are able to provide you with the best possible care should you need to see us again. Limited information will be retained within our accounts systems indefinitely to maintain the integrity of the data.
As we process your personal data, you have certain rights. These are a right of access, a right of rectification, a right of erasure and a right to restrict processing.
You may request a copy of your data at any time. Please make such a request in writing or by email to the address shown above. Please provide the following information: your name, address, telephone number, email address and details of the information you require. We will need to verify your identity, so we may ask to see your passport, driving license and/or a recent utility bill.
If you believe any of the personal data we hold on you is inaccurate or incomplete, please contact the clinic directly and any necessary corrections to your data will be made promptly.
If you believe we should erase your data, please contact the clinic at the address given above.
If you wish us to stop storing or using your data, please contact the clinic at the address given above.
Should your personal data that we control be lost, stolen or otherwise breached, where this constitutes a high risk to your rights & freedoms, we will contact you without delay. We will give you the contact details of the person who is dealing with the breach, explain the nature of the breach and the steps we are taking to deal with it.
Should you wish to complain
You can contact the ICO via their website: www.ico.org.uk should you wish to make a complaint about the way we are processing your personal data.
Automated Decision Making & Profiling
We do not use any system which uses automated decision making or profiling in respect of you or your personal data.
Take your first step towards enjoying your life more
From the team at Well Adjusted Health
Providing gentle chiropractic in West Sussex
including Ashington, Storrington, Steyning, Southwater, Horsham, Shoreham, Worthing and Billingshurst