We take the protection of your personal data extremely seriously. Any data collected is only done lawfully and in accordance with the General Data Protection Rules (GDPR) 2018, the Human Rights Act 1998, the Common Law Duty of Confidentiality, and the General Chiropractic Council Code of Practice.
We collect personal information about your health in order to provide the best possible treatment. The contract between practitioner and patient is agreed on your request for treatment and the practitioner to provide care. With your consent you maybe contacted in regards to your appointments, or to update information specific to you. You occasions you may receive information from us to keep you up to date what is happening at Botanicals Bakewell, you may withdraw this consent at any time.
We have a legal obligation to retain your health records for 8 years after your most recent appointment, or until your child’s 25th birthday, before being securely destroyed. Your records are stored on digitally via our booking system Fresha, which is stored on an SSL secure cloud based system. We also may store contact information on our office computers, these are password protected and locked away when not in use.
We will never share your data with anyone who doesn’t need access without your written consent. Practitioners will have access to your data so that they are able to provide your treatment. Reception staff also have access in order to coordinate appointments. You have the right to see what personal data of yours we hold. Provided the legal minimum period has elapsed, you can also ask us to destroy your records.
To help us keep your records accurate and up to date, it is important that you tell us as soon as you (or your child) change address, or your contact details change, or of any other changes that are relevant, and this is your responsibility to do this. If you believe any of the personal data we hold on you is inaccurate or incomplete, please contact us directly and any necessary corrections to your data will be made without undue delay.
Should your personal data that we control be lost, stolen or otherwise breached, we will contact you without delay. We will give you the contact details of the person who is dealing with the breach, explain to you the nature of the breach and the steps we are taking to deal with it.
If you feel that we are mishandling your personal data in any way, you have the right to complain. Complaints need to be sent to the person referred to as the ‘Data Controller’. If you are still unhappy following a review by the business owners, you can contact the ICO via their website: www.ico.org.uk should you wish to make a complaint about the way we are processing your personal data.
Data Controller: Wendy Stirling
Tel: 01629 814458
Address: 1-1A, Diamond Court, Water St, Bakewell DE45 1EW