​As primary Allied Healthcare Practitioners, Osteopaths take data protection and confidentiality issues very seriously. This Privacy Policy outlines what personal information we collect about you, how we collect it, and how it is used and stored.

 

Information we collect
We may collect and process the following data about you:

• Contact and other personal information you provide when booking appointments online or on the telephone.

• Information about your current and historical health and lifestyle, for the purpose of making informed clinical decisions and providing safe, effective treatment. This information is collected by your Osteopath verbally at a face to face appointment.

 

How your data will be used
Your data may be used for:

• Email appointment confirmations and text reminders, to help you remember your appointments.

• Emailing you personalised exercise plans or other relevant health advice.

• Accounting, billing and payment card verification.

• Emailing you about changes to our service.

 

Confidentiality
Confidentiality is a legal requirement of Osteopaths, and it is of paramount importance that our patients can trust us with their information. We therefore ensure that:

• Paper-based patient records and information are stored securely in a locked filing cabinet when not in use.

• Electronic information is stored using specialist medical records software Cliniko, who have assured us that they are fully GDPR compliant. 

• Practitioners only view patient information they need to see.

• We keep confidential who visits our practice, where they live, the date and times of their
  appointments and any other personal or medical details.

 

Will your data be shared with anyone?
We will not share your data with anyone who does not need access without your written consent.*
Only the following people/agencies will have routine access to your data:

• Your Osteopath, in order that they can provide you with treatment and schedule appointments.

• The online medical records service Cliniko who store and process our patient files. 

*Only in the extremely rare instance of a legal order, or where with-holding data may pose a serious safety risk, would data ever be shared without your consent.

How long will your data be retained?
Osteopaths have a legal obligation to retain patient records for 8 years after their most recent appointment, or in the case of children until they reach 25 years of age (See the Osteopathic Practice Standards). After these time periods, personal data and medical notes will be destroyed.

Who is Responsible for Data Protection?

Florence Henrist and Darren Raymond McGregor-Campbell is responsible for data protection at Back To Health Osteopathy. If you have any concerns about how we handle your data, please contact us. If you are not satisfied with our response, then you have the right to raise the matter with the ICO.

Back To Health Osteopathy Team