Privacy Notice for Waverley Clinic Ltd

Effective Date: January 2025

At Waverley Clinic Ltd, we are committed to protecting the privacy and confidentiality of your personal information. This Privacy Notice explains how we collect, use, and protect your data in compliance with the General Data Protection Regulation (GDPR) and other applicable laws.

1. Who We Are

Waverley Clinic Ltd
21A East Street, Farnham, Surrey, GU9 7SD
Contact Email:
Phone: 01252 716611

2. What Information We Collect

When you visit our clinic or contact us for podiatry and physiotherapy services, we may collect and process the following personal data:

  • Personal Identification Information: Full name, date of birth, address, phone number, and email address.
  • Medical Information: Health history, treatment details, diagnoses, medications, and any other relevant health information. We use Heidi Health, a secure note-taking tool, to store and manage this information.
  • Appointment Details: Dates and times of your appointments with us.

3. How We Collect Your Data

We collect data in the following ways:

  • Directly from You: When you fill out forms, contact us via phone, email, or in-person, and during your consultations or treatments.
  • From Other Healthcare Providers: If necessary and with your consent, we may receive relevant medical information from your GP or other healthcare professionals.

4. How We Use Your Data

We use your personal data to:

  • Provide high-quality podiatry and physiotherapy services tailored to your needs.
  • Manage your appointments and communicate with you regarding your treatments.
  • Maintain accurate medical records in compliance with legal obligations.
  • Process payments and send invoices or receipts.
  • Comply with legal and regulatory requirements, such as reporting obligations to healthcare authorities (e.g., NHS, if applicable).

5. Legal Basis for Processing

We process your data based on one or more of the following legal grounds:

  • Consent: You have given explicit consent for us to process your medical data.
  • Contractual Obligation: We need to process your information to provide the services you requested.
  • Legal Obligation: We are required to process your data in accordance with healthcare laws and regulations.
  • Legitimate Interest: For purposes such as clinic administration, including managing appointments and handling queries.

6. Data Sharing

We do not share your personal data with third parties, except in the following circumstances:

  • Healthcare Providers: With your consent, we may share information with your GP or other medical professionals to coordinate your care.
  • Payment Processors: To process payment transactions securely.
  • Regulatory Authorities: When required by law, we may share data with regulators or legal authorities.

We will not sell or rent your personal information to third parties.

7. Data Security

We take data security seriously and implement appropriate technical and organizational measures to protect your personal information. This includes secure storage systems, encryption, and restricted access to your data.

8. Data Retention

We will retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Notice and to comply with legal requirements. Medical records will be kept in accordance with regulatory guidelines, after which they will be securely destroyed.

9. Your Data Protection Rights

You have the following rights regarding your personal data:

  • Access: You can request access to the personal data we hold about you.
  • Rectification: You can ask us to correct any inaccurate or incomplete data.
  • Erasure: You can request the deletion of your data in certain circumstances.
  • Restriction of Processing: You can ask us to limit how we use your data.
  • Data Portability: You can request a copy of your data in a machine-readable format.
  • Objection: You can object to certain types of data processing.
  • Withdraw Consent: You may withdraw your consent at any time for data processing that relies on consent.

To exercise these rights, please contact us at or call 01252 716611.

10. Changes to This Privacy Notice

We may update this Privacy Notice from time to time. Any changes will be posted on our website and available in our clinic. The latest version will always be available at your request.

11. How to Contact Us

If you have any questions or concerns about this Privacy Notice or how we handle your personal data, please contact us at:

Email:
Phone: 01252 716611
Address: Waverley Clinic Ltd, 21A East Street, Farnham, Surrey, GU9 7SD

12. Complaints

If you are unsatisfied with how we handle your personal data, you can lodge a complaint with the Information Commissioner’s Office (ICO) or your local data protection authority.