At Birmingham Chiropractic we are dedicated to safeguarding your privacy and the information you share with us.
This privacy notice is to inform you about how we collect and use your personal information and is set out in relation to the Data Protection Act 2018, which also includes the General Data Protection Regulation.
As Chiropractors we need to store and process personal information for the following reasons.:
1. In order for us to provide the best level of care for our patients we need to collect personal information. This means that when you request treatment and we agree to provide that treatment we are entering into a contract. This is termed a ‘legitimate interest’ as without this contract we could not carry out our duty of care safely and effectively.
2. Furthermore, we need to contact you in order to inform you of matters related to your medical care. This may be by phone, email or text and is specific to your treatment. For example, we may send you an email related to your appointment times with us. This is also an aspect of legitimate interest but specifically your legitimate interest.
Other medical professions such as your GP can request files but only with your consent, and only in relation to your medical care. This is part of legitimate interest and we comply with the guidlines set out in the Data Protection Act 2018
We do not use your data for advertising purposes.
The Information we Collect
In order to provide you with effective care we need to collect the following data:
Personal information such as your name, address, date of birth, gender, general information about your health and employment status, how best to contact you.
We will also occasionally need to process reports and invoices
How we Store your Information
Our paper files are stored in locked filing cabinets in a secure location. The Clinic is locked and alarmed out of working hours. Our computers are password protected and our booking system provider complies with the GDP Regulations. All data collected electronically is protected as private data In comlpliance with security protocol for Internet and iCloud storage.
Who has access to your data
The main person in charge of storing and processing your data is called the Data Controller. For this Clinic it is Austin Everill. (You can contact Austin in regard to any questions about storage of your personal information or if you are unhappy with the way your data is being stored. Contact: email@example.com or Phone: 0121 792 1245 Address: 264 Alcester Road South, Birmingham, B14 6DR. If you are still unhappy with the way your data is being stored or processed you can contact the Information Commissioners Office.
The Data Controller is registered with Information Commissioners Office- ISO: Reg no. ZA362216.
The receptionist at the clinic and specific administration staff have authorised access your data at specific times.
You have the right to access the personal data that we hold on you at any time and can request that we erase your medical records after the legal time limit has elapsed in accordance with GDP regulations (patients records for those 16 years and over must by law be kept for 8 years, under 16 years until the patient is 25 years old).