top of page

Privacy Policy

​​

Restore Physiotherapy Susssex  is committed to protecting your privacy.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our physiotherapy services.

We are committed to complying with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

Information We Collect

We may collect the following types of information:

  • Personal Information: Name, email address, phone number, postal address, date of birth, and other information you provide when booking appointments or making enquiries.

  • Health Information: Medical history, current conditions, and other health-related information necessary to provide appropriate physiotherapy services.

  • Technical Information: IP address, browser type, device information, pages visited, and other analytical data when you use our website.

How We Use Your Information

We use your information for the following purposes:

  • To provide and manage our physiotherapy services

  • To communicate with you about appointments, treatments, and follow-ups

  • To maintain accurate medical records as required by law

  • To improve our website and services

  • To comply with legal obligations

Legal Basis for Processing

We process your data under the following legal bases:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose.

  • Contract: Where processing is necessary for the performance of our contract to provide physiotherapy services.

  • Legal Obligation: Where processing is necessary for us to comply with the law.

  • Legitimate Interests: Where processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.

Data Retention

We retain your personal information for as long as necessary to provide our services and as required by law. Medical records are kept for a minimum of 8 years in accordance with NHS retention guidelines.

Your Rights

Under the GDPR and UK data protection laws, you have the following rights:

  • The right to be informed about our collection and use of your personal data

  • The right to access your personal data

  • The right to have inaccurate personal data rectified

  • The right to erasure (the 'right to be forgotten')

  • The right to restrict processing of your personal data

  • The right to data portability

  • The right to object to our use of your personal data

  • Rights relating to automated decision-making and profiling

Data Security

We implement appropriate technical and organisational measures to protect your personal data. These measures include encryption, access controls, and regular security assessments.

Third-Party Disclosure

We do not sell or rent your personal information to third parties. We may share your information with trusted third parties who assist us in operating our website, conducting our business, or servicing you, so long as those parties agree to keep this information confidential.

​​

Cookies

Our website uses cookies to improve user experience, monitor site performance, and analyse traffic. You can control cookies through your browser settings.

Exercising Your Rights

To exercise any of your rights under data protection law, please contact us at Restorephysiosussex@gmail.com. You also have the right to lodge a complaint with the Information Commissioner’s Office (www.ico.org.uk).

Policy Updates

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “last revised” date.

Contact Information

If you have any questions or concerns about our Privacy Policy, please contact us at Restorephysiosussex@gmail.com

bottom of page