Jurassic Coast Osteopathy

JURASSIC COAST OSTEOPATHY PRIVACY STATEMENT - HOW WE COLLECT & USE YOUR PERSONAL DATA AND KEEP IT SECURE AND CONFIDENTIAL (CURRENT AS FROM 31ST MARCH 2023)

WHO OR WHAT IS  JURASSIC COAST OSTEOPATHY? Jurassic Coast Osteopathy was an osteopathic practice in Weymouth that closed in December 2022 in advance of the retirement as a Registered Osteopath of Helena Greenwood, owner & principal Osteopath in March 2023.

WHY AM I READING THIS? Under the General Data Protection Regulations (GDPR) 2018, all European businesses must tell you what ‘personal data’ they hold about you, their data protection policies to ensure that it is not used (‘processed’) in an illegal way and your rights to access it. Although the UK has left the EU, this Act is still currently in force in the UK.

WHAT IS ‘PERSONAL DATA’ AT JURASSIC COAST OSTEOPATHY?  Anything that Helena Greenwood acting as Jurassic Coast Osteopathy has stored on paper or electronically in the past about you that is not already in the public domain that could identify you eg your full name, address, telephone number, email address, medical history, financial details from card transactions, IP address from visiting Jurassic Coast Osteopathy’s website etc. Jurassic Coast Osteopathy’s website uses cookies, which is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. Yola and SiteWit use cookies to help identify and track visitors and their website access preferences. Jurassic Coast Osteopathy’s website visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using Jurassic Coast Osteopathy’s website or reject the pop up in their browser.

WHAT IS THE LEGAL BASIS FOR DATA PROCESSING?
As the clinic has closed and Helena has retired, we do not process your health data; our sole function is to store it securely to meet Helena Greenwood’s ‘contractual obligation’  to keep records that meet GDPR requirements and the professional obligations with the registering body for osteopaths, the General Osteopathic Council. (Other data from visiting our website may be processed by 3rd parties as above over which Helena has no control).

HOW WILL YOU KEEP MY INFORMATION SAFE & WHERE IS IT HELD?
All health records whether on paper or digital will be held securely in Helena Greenwood’s possession.  All accounts where the data has been held previously (for example in online diary systems) will be deleted using the provider's deletion process once the data has been downloaded, to meet GDPR requirements for only one copy of the data to exist).

HOW LONG DO YOU KEEP IT?
Helena Greenwood acting as Jurassic Coast Osteopathy will store only the personal data needed for 8 years after the ‘contract’ (your last treatment at Jurassic Coast Osteopathy Weymouth or a previous clinic) has expired. After 8 years all personal data (whether paper or electronic) will be securely deleted, unless basic information needs to be retained to meet future obligations, such as erasure details. Records concerning minors who have received treatment will be retained until the child has reached the age of 25 or 8 years after the last treatment, whichever is later.  

If you have been seen by Helena at Dorchester Osteopaths at any point, data held by Dorchester Osteopaths is managed by them as a Data Controller, Helena will have no access to that data and you should contact Dorchester Osteopaths with any questions about access to, storage or deletion of that data.

WHAT ARE MY RIGHTS?
You can request a copy of the information that Helena Greenwood acting as Jurassic Coast Osteopathy holds about you or request that anything that is inaccurate or incomplete is corrected.  Unlike other sorts of data, you cannot ask for erasure of your medical records before the legally required date as above.  You have the right to have the data transferred to another organisation, this will be provided as a PDF via secure email and subject to you meeting identification validation requirements at our discretion.  In the event that that your request under rights of access is refused, you will be provided with a reason as to why, which you have the right to legally challenge. At your request Helena Greenwood acting as Jurassic Coast Osteopathy can confirm what information is held about you.

HOW DO I ACCESS MY DATA?
We ask that you (or your representative) make an email subject access request (SAR) & we may ask that you provide appropriate identification verification or evidence of consent to request it on your behalf where someone else requests it. Helena Greenwood acting as Jurassic Coast Osteopathy will accept the following forms of identification (ID) when information on your personal data is requested: a copy of your driving licence, passport, birth certificate and a utility bill not older than three months. A minimum of one piece of photographic ID listed above and a supporting document is required. All requests should be made to jcoreception@gmail.com.

HOW DO I COMPLAIN ABOUT HOW MY DATA IS BEING PROCESSED?
In the event that you wish to make a complaint about how your personal data is managed by Helena Greenwood acting as Jurassic Coast Osteopathy you have the right to complain. If you do not get a response within 30 days, you can complain to the ICO.  The details for each of these contacts are: 

Helena Greenwood, email: jcoreception@gmail.com

ICO - Wycliffe House, Water Lane, Wilmslow, SK9 5AF Telephone +44 (0) 303 123 1113 or email: https://ico.org.uk/global/contact-us/email/