Midlothian Foot Care Privacy Policy
This Privacy Policy describes how and when I collect, use, and share information when you attend an appointment at my clinic, purchase a product from me, contact me, or otherwise use my services. This is to comply with the General Data Protection Regulations (GDPR) 2018.
Information I Collect
To aid you treatment or as part of purchasing something from my business you will normally provide me with certain information, such as your name, email address, postal address, medical information and payment information. I will store you information on paper patient records. That I store in a locked filing cabinet and behind locked door.
Why I Need Your Information and How I Use It
I rely on a number of legal bases to collect, use, and share your information, including:
Marketing
From time to time I may wish to send you direct marketing material which may include product offers and newsletters. If you are happy for me to do this please indicate in what forms you would like to receive this information:
Mail Email Text Phone No Marketing
Information Sharing and Disclosure
Information about my patients/customers is important to my business. I share your personal information for very limited reasons and in limited circumstances, as follows:
Data Retention
I retain your personal information only for as long as necessary to provide you with my services and as described in my Privacy Policy. However, I may also be required to retain this information to comply with my legal and regulatory obligations, to resolve disputes, and to enforce my agreements. The retention of podiatry records is normally a minimum of 8 years, after the last appointment. For customers who are not patients but may have bought products from my business I will keep any data you may have provided for a minimum of 6 years in line with tax legislation.
Transfers of Personal Information Outside the EU
I may store and process your information through third-party hosting services in the US and other jurisdictions. As a result, I may transfer your personal information to a jurisdiction with different data protection and government surveillance laws than your jurisdiction. If I am deemed to transfer information about you outside of the EU, I rely on Privacy Shield as the legal basis for the transfer, as X Cloud is Privacy Shield certified.
Your Rights
You have a number of rights in relation to your personal information. While some of these rights apply generally, certain rights apply only in certain limited cases. I describe these rights below:
How to Contact Me
For purposes of the GDPR, I, Endija Skopane, am the data controller of your personal information. If you have any questions or concerns, you may contact me info@midlothianfootcare.co.uk. Alternately, you may call me at: 0131 3444 977
Copyright © 2018 Midlothian Foot Care - All Rights Reserved.
Powered by GoDaddy Website Builder
We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data. Privacy Policy