theendometriosisclinic.co.uk

Privacy Policy

Effective Date: April 12, 2025

At The Endometriosis Clinic, we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website, theendometriosisclinic.co.uk, in accordance with the General Data Protection Regulation (GDPR).

By using our website, you consent to the practices outlined in this policy. If you do not agree with any part of this Privacy Policy, please refrain from using our website.

1. Data Controller

The data controller responsible for your personal data is:

The Endometriosis Clinic
Email: [email protected]

2. Information We Collect

We may collect and process the following personal data:

  • Contact Information: Such as your name, email address, phone number, and any other information you provide when you contact us, book an appointment, or subscribe to our newsletter.
  • Medical Information: Information related to your health, including symptoms, diagnosis, treatment history, and any other medical data provided during consultations or through forms.
  • Usage Data: Information automatically collected when you visit our website, such as your IP address, browser type, device type, and pages visited on the site.
  • Communication Preferences: Your preferences regarding marketing communications, including consent for receiving newsletters and promotional materials.

3. How We Collect Your Data

We collect data in the following ways:

  • Directly from You: When you contact us, request services, or subscribe to newsletters, we collect the personal information you provide.
  • Automatically: Through the use of cookies and other tracking technologies when you visit our website.
  • Third Parties: When you interact with our social media accounts or third-party platforms that may provide us with additional information (e.g., appointment booking systems or analytics platforms).

4. Why We Collect Your Data

We collect your personal data for the following purposes:

  • To Provide Services: To offer medical consultations, treatments, and ongoing care.
  • To Communicate: To send appointment reminders, health information, newsletters, and marketing communications (with your consent).
  • To Improve Our Services: To analyze website usage and optimize user experience.
  • To Comply with Legal Requirements: To meet regulatory obligations and ensure the safety of our patients.

5. Legal Basis for Processing

Under the GDPR, we rely on the following legal bases to process your personal data:

  • Consent: Where you have given explicit consent to receive marketing communications or share your health information.
  • Contractual Necessity: To fulfill the terms of any contract between you and us (e.g., providing medical services).
  • Legitimate Interests: To enhance our services and communicate effectively with our users.
  • Legal Obligation: Where required by law, such as maintaining health records for medical purposes.

6. How We Protect Your Data

We use a variety of technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These include encryption, secure servers, and restricted access to your data.

Despite our efforts, please note that no method of electronic storage or transmission is entirely secure, and we cannot guarantee the absolute security of your data.

7. Sharing Your Data

We may share your personal data with third parties in the following circumstances:

  • Service Providers: To third-party service providers who assist us with operations such as website hosting, appointment booking, email communications, and analytics.
  • Medical Professionals: If necessary, to provide medical care or consultations, and in accordance with medical regulations.
  • Legal Compliance: If required by law or in response to valid legal requests by public authorities (e.g., to comply with legal obligations or protect our rights).

All third-party providers are GDPR-compliant and have appropriate safeguards in place.

8. Data Retention

We will retain your personal data only as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. For example, we are required to retain medical records for a specified period under health regulations. After that, we will securely delete or anonymize your data.

9. Your Rights Under GDPR

As a data subject, you have the following rights under the GDPR:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You can request that we correct any inaccuracies in your data.
  • Right to Erasure: You can request that we delete your personal data (subject to certain conditions).
  • Right to Restrict Processing: You can request that we restrict the processing of your data under specific circumstances.
  • Right to Data Portability: You can request that we transfer your personal data to another provider in a structured, commonly used, and machine-readable format.
  • Right to Object: You can object to the processing of your personal data in certain situations, including for direct marketing.
  • Right to Withdraw Consent: You can withdraw your consent to processing at any time (e.g., unsubscribing from newsletters).

If you wish to exercise any of these rights, please contact us at [email protected].

10. Cookies and Tracking Technologies

Our website uses cookies to enhance user experience, analyze website usage, and provide relevant content. You can control the use of cookies through your browser settings or through our cookie consent banner. For more information, please refer to our separate Cookie Policy.

11. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices or content of these third-party sites. We recommend that you review their privacy policies before interacting with them.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and the updated effective date will be reflected at the top. We encourage you to review this page periodically to stay informed about how we protect your data.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us at:

The Endometriosis Clinic
Email: [email protected]

Your privacy is important to us. Thank you for trusting The Endometriosis Clinic with your healthcare journey.