The address and contact details of the Data Controller and Data Officer are set out at the end of this privacy notice.
Personal identifiable information is collected to enable us to provide our service to you. Personal information may include name, date of birth, address, contact numbers, email address, enquiry source, insurance details and medical information. This information may be collected in person, by letter, by email, by phone or via our website. When an individual discloses personal information about themselves verbally, in writing or electronically, they consent to our use of the information for our services.
Personal data is collected from our website only if provided to us by the user via the online enquiry form and therefore has been provided by you with your consent.
The personal data we collect, process and store are required for us to provide healthcare services to the public, and as such is required to comply with legal HCPC (Health Care Professional Council) and CSP (Chartered Society of Physiotherapy) regulations for the documentation of medical records.
Our legal basis for the collection, processing and storage of personal data are:
The conditions for processing special category data is for reasons of public interest necessary for the provision of healthcare.
We store all personal data on IT systems, backed up securely off-site with appropriate technical and organisational security measures in place. All computers and IT systems are protected by password and anti-virus software.
We only share information with third parties at your request or where required by law.
Your personal data may be shared internally across our team for the management and treatment of your care. This may include administration staff, physiotherapists and other healthcare professionals.
We take the security of your data seriously and have internal policies, strict controls and security features in place to protect data and help prevent any unauthorised access.
The transmission of information via the internet and email is not completely secure and we cannot guarantee the security of data whilst you are transmitting it via our website or by email, and such transmission is at your own risk.
The standard retention period for medical records is 8 years, as per the CSP guidelines.
GDPR gives the right to be informed, right to access, right to rectification and right to erasure about any information held about you by ON Physio. Please contact us in writing if you wish to request confirmation or details of what personal data we hold relating to you. There is no charge for requesting this information. You can write to us at the address detailed below, or email firstname.lastname@example.org
Something went wrong... Unable to load map.
We realise you may wish to speak to one of our specialist neurological therapists to find our if your problem is appropriate for physiotherapy treatment. Email or call to arrange a free telephone consultation. There is no obligation to book an appointment following telephone consultation. The service is provided to help people choose whether physiotherapy is the right treatment for them.