Privacy Policy
Commitment to Privacy
Bespoke Health Clinic Ltd is dedicated to safeguarding your privacy and ensuring the confidentiality of your personal data. Bespoke Health Clinic Ltd understands that entrusting us with your personal information is an important responsibility. We fully comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 ("Data Protection Laws"). Additionally, we adhere to relevant clinical and medical guidelines issued by the General Medical Council and Royal Colleges.
Scope of This Privacy Policy
This Privacy Policy applies to anyone who interacts with us regarding our services, products, or communications through any channel, including email, phone, or post. It explains how we collect, use, store, and disclose personal data and describes your rights regarding your information.
For any questions about this Privacy Policy or our data practices, you may contact us at info@bespokehealthclinic.com
Please read the following information carefully to understand how we handle your personal data. By accessing our website, providing your personal information, or using our services, website, or other online platforms, you acknowledge and agree to the practices outlined in this Privacy Policy.
Definitions
-"We," "our," or "us" refer to Bespoke Health Clinic Ltd
-"You" or "your" refer to any individual interacting with us regarding our services or products.
Collection of Personal Information
This policy refers to personal data, which includes information that can identify you as an individual or has the potential to do so. We collect this information directly from you or through investigations you consent to, such as blood tests or other diagnostic procedures.
To provide our services, we may retain information gathered through your interactions with us. This includes personal data you provide as a customer, patient, or enquirer, for example, when you visit our website, complete an enquiry form online, or contact us directly.
Depending on the services we provide, this data may include sensitive personal information, such as details about your health.
Types of Personal Data We May Collect:
1. Information Provided by You
- Name, address, contact details (email, phone number).
- Details of next of kin (it is your responsibility to inform them of this Privacy Policy).
- Records of referrals, appointments, and correspondence.
- Feedback, complaints, and survey responses.
- Payment details, including financial and credit card information.
2. Information Collected Through Service Use
- Notes and reports on your health and treatment history.
- Details of services provided to you by us or third-party healthcare providers.
3. Information Obtained from Third Parties
- Letters from clinicians, GPs, hospitals, and other healthcare professionals as shared by you
- Insurers or NHS organizations commissioning services for you.
- Public sources such as the electoral register or social media.
Sensitive Data
We may collect and process special categories of personal data, such as health information, only when necessary and legally permitted.
Data Collected Through Our Website
When you use our website, we may collect:
- Technical Information
- IP address, browser type, and version.
- Device operating system, time zone, and plug-in types.
- Website Interaction Data
- Pages visited, length of visits, clickstream data, and interaction metrics.
How We Use Your Personal Information
We treat your personal data with the utmost confidentiality and ensure it is stored securely. Your information will only be used for the purposes for which it was collected, in line with this Privacy Policy, relevant data protection laws, clinical confidentiality standards, and retention requirements, unless you provide specific consent for additional uses.
Reasons for Processing Your Personal Data
We process your personal information for several legitimate purposes, including:
- Providing Your Care and Treatment: Managing and delivering effective healthcare services.
- Facilitating Communication: Maintaining clear and effective interactions with you.
- Market Insights: Understanding customer preferences to improve our offerings.
- Research and Development: Enhancing services, treatments, and products.
- Handling Claims: Processing claims and enabling you to exercise related rights efficiently.
Health-related personal data will only be disclosed to individuals or organizations directly involved in your care or as required by law, professional guidelines, or for clinical audits, unless you choose to object.
How Your Information is Used
- Meeting contractual obligations, such as billing, financial reconciliation, and fraud prevention.
- Delivering the products, services, or information you request.
- Sharing details about similar services or products unless you opt out of receiving such communications.
- Informing you of updates or changes to services or products.
- Maintaining relationships with you, third-party providers, or business partners.
- Supporting third-party healthcare services (e.g., employer-sponsored healthcare).
- Investigating complaints and claims through consultation with relevant professionals to ensure accurate resolutions.
- Ensuring your records are accurate and kept up to date.
- Conducting marketing activities in compliance with applicable laws.
- Performing statistical research and analysis to improve services and develop new offerings.
- Contacting you regarding surveys or feedback opportunities.
- Monitoring clinical and non-clinical performance standards.
- Protecting our legal rights and enforcing policies, agreements, or other obligations.
- Complying with legal and regulatory requirements, including authorized investigations.
- Verifying the accuracy of your information and auditing medical or financial records for quality assurance.
- Supporting healthcare professionals involved in your treatment.
- Evaluating the quality of care you receive, including addressing concerns or complaints.
- Optimizing content on our website for better usability and relevance.
Safeguarding Your Personal Data
We have implemented rigorous technical and organizational measures to protect your personal information from unauthorized access, loss, or damage.
- Data is retained only as long as necessary for its intended purpose, in line with legal and regulatory obligations.
- Payments are processed securely through third-party providers, and we do not store financial details.
- If we need to transfer data outside the European Economic Area (EEA), you will be informed, and appropriate measures will be taken to ensure compliance with applicable laws.
Email Communication
Personal data may be sent to you or received from you via email upon request. As email is not inherently secure, any exchange of information through this method is undertaken at your own risk.
Your data is handled with care and in full compliance with legal and regulatory standards, ensuring its security and confidentiality at all times.
Lawful Basis for Processing
We process your personal data under the following lawful bases:
- Contractual Obligation: To provide services or products requested by you.
- Legitimate Interests: For purposes such as customer communication, marketing analysis, or complaint resolution.
- Consent: For activities such as marketing communications (which you can opt out of).
- Legal Obligation: To comply with statutory requirements or regulatory inquiries.
Sharing Personal Data
Sensitive personal data, including health-related information, will only be disclosed to third parties directly involved in your treatment or care with your explicit consent. Should you become a patient, your consent will be sought prior to sharing such information with doctors, medical personnel, or insurance providers.
Where relevant sensitive personal data may be disclosed to external service providers; such as but not limited to blood testing laboratories, pharmacies and regulatory authorities (unless you raise an objection) for the purposes of clinical audits, ensuring the maintenance of high standards of care and accurate record-keeping.
We may share your personal data with:
- Contracted clinicians and staff for service delivery.
- IT providers hosting or maintaining our systems.
- Debt collection agencies for unpaid accounts.
- Regulatory bodies for audits or investigations for example, if a complaint is made by you or if the conduct of a healthcare professional involved in your treatment is alleged to have fallen below acceptable standards and is subject to regulatory investigation. Any such disclosure will be conducted in compliance with applicable legal requirements and with appropriate regard for your privacy.
- Insurers for processing claims or handling complaints.
- Your GP: If the healthcare professionals involved in your care determine it to be clinically necessary, we may share details of your treatment with your GP. You have the right to request that we refrain from doing so, and we will honor this request if legally permissible. However, please note that withholding such information from your GP could pose significant risks to your health or safety. For this reason, we strongly advise against restricting access to your full medical history. Please note Bespoke Health Clinic Ltd will be unable to prescribe medication without consent to share details regarding the prescription with your GP.
We conduct audits and initiatives aimed at ensuring patients receive the highest quality outcomes from their care and treatment. Personal data will always be managed with strict confidentiality in line with Data Protection Laws. Any data made public will be fully anonymized and presented in a statistical format. De-identified or aggregated information may be utilized internally or shared with third parties for purposes such as research or statistical analysis.
We may share your personal data with third parties if we sell or purchase a business or assets, or if required by law. Additionally, we retain the right to disclose your information to legal authorities when necessary, such as to support claims or provide evidence in legal proceedings.
Categories of Personal Information
We process the following two categories of personal data concerning you:
- Standard Personal Demographic Information:
This includes details such as your name, contact information (e.g., phone number, email address), and residential address.
- Special Categories of Personal Information:
This encompasses data such as your gender, date of birth, medical history, clinical information, and ethnicity, which are used to tailor our care to your needs. It may also include information relating to credit financing and criminal records to facilitate anti-fraud checks and credit assessments.
Security and Retention of Data
We use industry-standard measures to protect your personal data from unauthorized access, loss, or misuse.
Data Retention Periods
We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal, accounting, or reporting obligations. Typically, personal data is retained for a period of ten years. When determining the appropriate retention period, we assess several factors, including the volume, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, the purposes for processing the data and whether these can be achieved by other means, as well as relevant legal and regulatory requirements. Under UK tax regulations, we are legally required to retain basic personal information about our customers (such as name, address, and contact details) for a minimum of six years, after which it will be securely destroyed. In some instances, we may anonymize your personal data so that it can no longer be linked to you. This anonymized data may be used for research or statistical purposes indefinitely without further notification.
Rights Regarding Your Data
Under Data Protection Laws, you have the following rights:
- Access: Request copies of your personal information.
- Rectification: Correct incomplete or inaccurate data.
- Erasure: Request data deletion under specific circumstances.
- Restriction: Limit how your data is processed.
- Portability: Receive your data in a structured, machine-readable format.
- Objection: Object to processing based on legitimate interests.
- Withdraw Consent: You have the right to withdraw any consent previously provided for the processing of your personal data. The withdrawal of consent will not affect the lawfulness of Bespoke Health Clinic Ltd's processing of your personal data prior to the withdrawal. If your withdrawal of consent impacts our ability to deliver the product or service you have requested, we will inform you accordingly.
While you have the right to object to the use of your data for direct marketing purposes (including profiling for direct marketing), other rights may not apply universally. Certain rights are subject to conditions or exceptions, and we will clarify in our response how we are able to address your specific request.
If you make a request, we may need to verify your identity and ask for additional details to understand your request fully. Should we be unable to fulfil your request, we will provide a clear explanation of the reasons for this.
To exercise your rights, please contact us at info@bespokehealthclinic.com
COOKIES
Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and allows us to improve our website. This website uses a cookie control system which you accept on your first site visit. For detailed information on the cookies we use and the purposes for which we use them, see our Cookie Policy.
If you require further information about retention periods, contact us at info@bespokehealthclinic.com
Marketing Preferences
We may send you marketing materials about our services. You may unsubscribe at any time by contacting us at info@bespokehealthclinic.com
Changes to Our Privacy Notice
We reserve the right to update this Privacy Notice from time to time. Any revisions will be posted on this page. By continuing to use our website or services after changes have been made, you acknowledge and agree to the updated terms of this Privacy Notice.
Last updated: 01/12/2024
Contact Us
For any questions or concerns about this Privacy Policy, please contact our Data Protection Officer at:
Bespoke Health Clinic Ltd
You may also file a complaint with the Information Commissioner’s Office:
ICO
Wycliffe House
Water Lane
Wilmslow, Cheshire
SK9 5AF
Phone: +44 (0)303 123 1113
Website: [www.ico.org.uk](https://ico.org.uk)
Subscribe to our newsletter
