Catherine Adams Physiotherapy is committed to protecting the privacy and security of your personal information and we will always treat you and your data with the respect you deserve.
This Privacy Notice covers how we collect, use, store and disclose the data that you supply to us and your rights about data that we hold about you.
The Information We Collect From You:
Personal individual information means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data)
- Data to identify you, including your contact details
- Information about you provided by others e.g. from you solicitor, insurance company, GP or Consultant, which may include your NHS number, marital status, gender, general health details including medication list
- Assessment and treatment details
- Medial insurance details
- Credit/debit card information when a payment has been made
Why do we collect it?
Catherine Adams Physiotherapy main purpose is to deliver healthcare to the community. We collect the data we need to care for you in the best way. We ask for your address so that we know where we can contact you. We ask for your date of birth as your age may be important to your care.
Each time you come to see us we will write and record things electronically that you tell us, things that we tell you and any medicines or exercises we give you. That way, we can look back at what we have done for you to make sure we are treating you in the best way.
When we collect your information:
- When a referral is received by us
- When you book an appointment in person, by email or by telephone
How we use your information and the legal basis:
- We use and share your data where you have agreed and consented
- Use is necessary in relation to the service you have entered e.g. physiotherapy assessment and treatment, Pilates class, medicolegal reports.
- Use is necessary because we have to comply with our legal obligation
- Use is necessary to protect you throughout the process of your treatment or class attendance
- Use to ensure your health and safety in the practice
- Use is necessary to arrange your appointment
Who do we share your information with:
We may share your information when providing our service to you with
- Other healthcare professionals, e.g CCG, GP, consultant, intermediary companies used by your medical insurance
- statutory and regulatory bodies e.g HCPC
- third parties e.g accountant, debt collectors, insurance companies, your employer,
- card payment processing company
- practice clinical software company
How we use automated processing
- to share information with the CCG
- for the purpose of invoicing, debt collecting and accounting
- to share statistics with service users e.g. medical insurance companies, CCG, GP’s
How long we hold your information
- how long we hold your data is subject to legislation and regulatory rules we must follow, adults 8 years, children until age 26.
Transfer of data outside the EU
We may transfer the personal information we collect about you outside the EU in order to perform our contract with you. We use Microsoft office 365 and one.com which covers our email servers and cloud-based file storage system, further information is available from the person responsible for Data Protection in our Company.
How to contact us
- if you have any questions about how we use your information, ask your physiotherapist or you can contact our Data Protection Officer at firstname.lastname@example.org or telephone 01527 559594 or write to Catherine Adams Physiotherapy, BHI Parkside, Stourbridge Road, Bromsgrove. B61 0AZ
It is important that the personal information we hold about you is accurate and current, so please let us know if your information changes.
Keeping your records safe
Everyone working in the business understands that they need to keep your information safe. This is called keeping your information confidential or protecting your privacy. They have training every year to remind them of this. We tell them that they are only allowed to look at your information if they are involved in your care or required to support your care, for example by booking an appointment for you. They understand that they must keep any information safe, especially the information that identifies you; this might be your name or address and anything you come to see us about. We are not allowed to give any of this type of information to anyone who shouldn’t see it. This includes talking to them about it.
Checking we are doing our best
All businesses managed healthcare information are checked by regulatory bodies to make sure they are treating and caring for patients and families in the best way they can. They also ensure that we are keeping records safe and secure.
Am I able to see the information you collect about me?
Yes! You can request this directly from us. We will check you are who you say are so that we are not sharing your information with anyone who shouldn’t see it.
If I think some of my information is wrong can I do anything about it?
Yes! You can contact any member of the team who will speak to our Data Protection Officer. We may need to contact you further to discuss this.
If I’m unhappy with the way you’ve used some of my information can I do anything?
Yes! Let us know, but if your still unhappy you can contact the Information Commissioners Office.
We hope this leaflet tells you what you need to know about the information we collect about you.
Caldicott Guardian and Data Protection Officer
If you have any concerns about the use of your information you can contact these individuals at the address below:
Data Protection Officer/Caldicott Guardian