The EU General Data Protection Regulation
The EU GDPR came into effect on 25th May 2018.
It was put in place to ensure that the data we hold about you is kept secure and safe to protect your confidentiality at all times.What data do we keep?
We keep a base line data set. This includes your name, address and contact details. Contact details will include email address, landline home or work phone numbers and a mobile phone number. We will also keep details of the Doctors Surgery you attend along with the name of the GP you are registered with.
This data is kept as the front page of your medical clinical records. Clinical records that are currently active are kept in the clinic in a seucre room and filed in a drawer. They are not left unattended when the clinic is in operation. Clinical records that are not currently active are kept in a secure store in a seperate part of the premises. This storage area is not accessible to patients.
We will never disclose or share any of the above data without your express permission.Medical information
The medical information that we collect about you and your treatment is held in confidence. It is for the sole use of the clinicians that are involved in your treatment. It will never be shared with a third party without your express permission.
The medical details that we keep about you are held in accordance with the code of medical practice and are governed by the Health Professions Council and Chartered Society of Physiotherapy. We are obliged to keep records on file for a period of 7 years after the last clinical contact. In the case of children we are obliged to keep records until they reach the age of 18 years old.
If you would like to view the data we hold on you please let one of us know and we will be happy to arrange this.Deleting data
We review the data that we store annually. When we decide that data is no longer required i.e. the legal storage period has expired or the patient is deceased, we will destroy the data by cross shredding.