The Phoenix Practice Privacy policy

Introduction The Phoenix Practice ("we", "our", or "us") is

committed to protecting and respecting your privacy. This Privacy Policy

explains how we collect, use, and safeguard your personal information

when you visit our website [Website URL] or use our occupational therapy

services. This policy complies with the UK General Data Protection

Regulation (UK GDPR) and the Data Protection Act 2018.

By using our website or services, you consent to the collection and use of information in accordance with this policy.

1. Information We Collect We collect and process the following types of personal information:

  • Personal Identification Data: Name, address, phone number, email address, and date of birth.

  • Health Information: Details about your physical and mental health, medical history, and treatment plans.

  • Technical Data: IP address, browser type, operating system, and usage data such as pages visited and time spent on the website.

  • Payment Information: If applicable, we may collect payment details when you pay for our services.

2. How We Use Your Information We use your personal data for the following purposes:

  • To Provide Services: Delivering occupational therapy services tailored to your needs.

  • Communication: Responding to your queries, scheduling appointments, and sending updates related to your treatment.

  • Legal Compliance: To meet our legal obligations under UK law, including safeguarding and record-keeping.

  • Improving Our Services: Analysing website usage and feedback to enhance user experience and service quality.

  • Marketing: With your consent, we may send you promotional materials related to our services.

3. Legal Basis for Processing Your Information We rely on the following legal bases to process your data:

  • Consent: We will ask for your consent to collect and use your health data for treatment and marketing purposes.

  • Contractual Obligations: We may process your information to fulfil our contract with you.

  • Legal Obligation: In certain circumstances, we are legally required to collect and use your information, for example, for tax purposes or in safeguarding cases.

  • Legitimate Interest: We may use your data to improve our services and ensure the security of our website.

4. How We Share Your Information We will never sell your personal information. However, we may share your data in the following ways:

  • Healthcare Providers: We may share your data with other healthcare professionals involved in your treatment.

  • Third-Party Service Providers: We may use trusted third parties to assist in delivering our services, such as IT support, payment processors, and cloud storage providers.

  • Legal Requirements: We may share your data if required by law, for example, in response to a court order or legal investigation.

5. Data Security We take reasonable measures to protect your personal data from loss, theft, and unauthorized access, including:

  • Secure servers

  • Encrypted communication (SSL)

  • Regular security audits

However, please note that no method of online transmission or storage is 100% secure.

6. Data Retention We will only retain your personal data for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting obligations. Generally, health records are retained for a minimum of 8 years following the conclusion of treatment, in line with regulatory requirements.

7. Your Rights Under the UK GDPR, you have the following rights regarding your personal data:

  • Access: You can request access to the personal data we hold about you.

  • Rectification: You can request correction of any inaccurate or incomplete data.

  • Erasure: You can request deletion of your data under certain circumstances.

  • Restriction: You can ask us to limit how we use your data.

  • Data Portability: You can request that we transfer your data to another service provider.

  • Objection: You can object to the processing of your personal data for direct marketing or legitimate interests.

If you wish to exercise any of these rights, please contact us at [Contact Email Address].

8. Cookies Our website uses cookies to enhance user experience and analyse web traffic. A cookie is a small file stored on your device. You can control how cookies are used by adjusting your browser settings, although disabling cookies may affect the website’s functionality.

9. Third-Party Websites Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these websites. Please review their privacy policies before providing any personal information.

10. Changes to This Privacy Policy We may update this Privacy Policy from time to time. Any changes will be posted on this page, and, where appropriate, notified to you by email. Please check back regularly to stay informed of updates.

11. Contact Us :If you have any questions about this Privacy Policy or how we handle your data, please contact us at:

The Phoenix Occupational Therapy Practice
11 Wordsworth Rd, Surrey KT15 2 SW
info@otphoenixpractice.com
Effective Date: 15th October 2024

This policy ensures compliance with applicable UK data protection laws and regulations governing healthcare services and outlines how your privacy is protected when using our occupational therapy services.