GDPR & Privacy Policy

PRIVACY POLICY

Complies with GDPR 2018

  1. Contact details are gathered about individuals (name, address, email, phone number) when they request to book in for a treatment so Rosemary knows who to expect and how to contact them if they do not arrive for the appointment.

  2. When individuals book appointments, further Information relating to personal health is gathered to gauge the appropriateness of the treatment requested and booked as a client.

  3. It is the responsibility of the client to ensure personal health circumstances are accurate and up-to-date should they return for further appointments. When a client signs the consultation form, they are giving their consent that they are happy for the treatment to go ahead.

  4. Clients are also asked if they are happy to be contacted regarding offers, updates and any workshops/events Rosemary thinks may be of interest. They are also asked how they would prefer to be contacted (i.e. by email, phone, messenger).

  5. Named individuals have the right to access personal data Rosemary holds about them. Should Rosemary receive such a request, they must respond to it within one month.

  6. All information gathered from enquirers or clients is regarded as confidential and is solely for the attention of Rosemary.

  7. All consultation forms are kept locked away separate from the treatment room. They are kept for 5 years in line with HMRC requirements and are then shredded to destroy them.

  8. Client data is stored on a USB (not on a computer) and is kept locked away separate from the treatment room.

  9. Rosemary will never sell or give this confidential information to anyone else and will not use it for anything nefarious.

Should you have any queries regarding this Privacy Policy, please don’t hesitate to contact Rosemary at info@rosemarybridgewater.com.