Privacy Policy

Privacy Policy Effective Date: 27/06/20251

Who We Are
‍Clinic Name: Laura May Physio
Address: 6 Grange Avenue, Worcester, WR3 7QA
Phone: 079734441722.

Information We Collect
‍We collect personal and health-related data to provide you with safe, effective care. This includes:
- Name, date of birth, address, email, and phone number
- Medical history and current health information
- Appointment history and treatment notes
- Referring doctor or other healthcare provider details (if applicable)
- Emergency contact details
This data is collected when you register, attend appointments, complete health forms, or use our online booking system.

How We Use Your Information
‍We use your personal data to:
- Provide physiotherapy assessments and treatments
- Maintain accurate clinical records
- Manage appointments, reminders, and communication
- Coordinate care with other healthcare providers (with your consent)
- Process payments and manage invoicing
- Meet our legal, regulatory, and insurance obligations
- Improve our service delivery and clinic operations

Use of Cliniko
‍We use Cliniko, a secure and GDPR-compliant practice management system, to store and manage your data. Cliniko:
- Is hosted in secure data centres in Australia, compliant with GDPR for international data transfers
- Uses encryption for data in transit and at rest
- Provides secure access only to authorised clinic staff
- Does not access or sell patient data
You can learn more about Cliniko’s data protection measures here: https://www.cliniko.com/policies/privacy/

Legal Basis for Processing Your Data
‍We process your information under one or more of the following legal bases:
- Consent – for optional services such as newsletters
- Contract – to provide healthcare services
- Legal obligation – to comply with health, safety, and professional requirements
- Vital interests – in medical emergencies
- Legitimate interests – to manage and improve our clinic services

Sharing Your Information
‍We only share your data when necessary and with:
- Other healthcare professionals(e.g., GP, specialist) with your consent
- Regulatory bodies if required bylaw (e.g., HCPC, CSP)
- Trusted third-party services(e.g., Cliniko, email providers), under data-sharing agreements. 
We do not sell or trade your data.

How We Store and Protect Your Data
‍- Data is stored securely within Cliniko and, if applicable, in locked paper records
- Access is strictly limited to authorised staff
- We use encrypted communication methods for digital correspondence
- We retain clinical records inline with legal requirements (typically 8 years, or until age 25 if under 18 at the time of treatment)

Your Rights
‍Under data protection laws, you have the right to:
- Request access to your personal data
- Request corrections to inaccurate information
- Request deletion (subject to legal and clinical record-keeping requirements)
- Withdraw consent where processing is based on consent
- Object to or restrict certain types of processing
- Complain to the Information Commissioner’s Office (ICO): https://ico.org.uk/ 
To exercise these rights, please contact us at Info@lauramayphysio.co.uk

Website, Cookies, and Online Booking
‍If you use our website or online booking system (powered by Cliniko), cookies may be used to enhance your experience. You can disable cookies through your browser settings. No sensitive health data is collected via cookies.

Updates to This Policy
‍We may update this Privacy Policy periodically. The latest version will always be available on our website and at the clinic reception.

Contact Us
‍If you have any questions about this policy or your personal data:
Phone: 07973444172
Address: Laura May Physio, 6 Grange Avenue, Worcester, WR3 7QA