When you visit Ryde Chiropractic Ltd for treatment we will need to collect some personal details from you, these details are stored and processed in line with the General Data Protection Regulations, 2018.
We are registered with the Information Commissioner's Office (ICO), our registered Data Controller is Roxanne Cussen. Roxanne can be contacted on 01983 618800 or firstname.lastname@example.org
We are required to collect, process and store personal information about your health as part of our statutory duties under the Chiropractic Act 1994 and by our regulator, the General Chiropractic Council (GCC). It is essential that we process this data in order to provide you with the best possible treatment.
Your request for treatment and our agreement to provide that care constitutes a contract. You can, of course, refuse to provide the information we ask for but if you were to do that we would be unable to provide treatment.
We have a legitimate interest in collecting your information, because without it we couldn’t do our job effectively and safely. We also believe that it is necessary for us to be able to contact you in order to confirm and remind you of your appointment times and update you on any matters relating to your medical care, it is in your legitimate interest that we are able to contact you, this may be via phone, text, email or letter.
We will not contact you for marketing purposes nor pass your details on to any other party for marketing purposes
We have a legal obligation to retain your records for 8 years after your most recent appointment (or age 25 years if this is longer), after this period you may ask us to delete your records if you wish.
All paper records at Ryde Chiropractic Ltd are stored in locked filing cabinets and the only people with access to these are the Chiropractors, the offices are always kept locked outside of working hours and are covered by CCTV to help with security and prevention/detection of crime.
Electronic records are stored using a specialist records services, we have assurance from the providers that they are fully compliant with the General Data Protection Regulations. Access to these records is password protected as is access to our office computers.
We will never share your details with anyone who does not need access without your written consent.
You have the right to see what personal data of yours we hold and can also ask us to correct any factual errors. Provided the legal minimum period of 8 years has elapsed, you can also ask us to erase your records
We want you to be absolutely confident that we are treating your personal data responsibly, and that we are doing everything we can to make sure that the only people who can access your data have a genuine need to do so. If you feel that we are mishandling your data in some way you have the right to complain. Complaints need to be sent to the Data Controller (see above). If you are not satisfied with our response then you have the right to raise the matter with the Information Commissioner's Office