Privacy Policy 

Your privacy is important to us at PhysioElm. This policy explains how we collect, use, store, and protect your personal data when you use our services. Please read it carefully to understand our practices.

1. Who We Are

PhysioElm provides online physiotherapy consulting services. We act as the data controller for the personal information collected through our website and video consultation platform. For any privacy-related queries, contact us at: [email protected]

2. What Data We Collect

When you interact with PhysioElm, we may collect the following types of personal information:

  • Identity Data: Name, date of birth, and gender
  • Contact Data: Email address, phone number, and address
  • Medical Data: Relevant medical history, current symptoms, and treatment progress
  • Technical Data: IP address, device information, browser type, and usage data
  • Payment Data: Payment card details and transaction information

3. How We Use Your Data

We use your personal data for the following purposes:

  • To provide and manage your online physiotherapy appointments
  • To communicate appointment reminders, updates, and feedback requests
  • To process payments and manage billing
  • To improve our services based on your feedback and interaction
  • To comply with legal and regulatory requirements

4. Legal Basis for Processing Data

We rely on the following legal grounds to process your personal data:

  • Consent: When you voluntarily provide medical information during consultations
  • Contractual Obligation: To deliver the services you have booked
  • Legitimate Interests: To improve our platform and provide customer support
  • Legal Compliance: To fulfil legal obligations related to healthcare and payments

5. How We Store & Protect Your Data

5.1 We store your data securely on encrypted servers.
5.2 Access to your personal data is restricted to authorised staff and physiotherapists.
5.3 We retain your data for as long as necessary to provide our services or comply with legal requirements.

6. Sharing Your Data

We only share your data when necessary, with the following:

  • Physiotherapists: To provide accurate consultations and care
  • Payment Processors: To manage payments securely
  • Regulators or Law Enforcement: If required by law or court order

We do not sell or rent your personal information to third parties.

7. Cookies & Tracking Technologies

We use cookies to enhance your experience on our website. These include:

  • Essential Cookies: Necessary for site functionality
  • Analytics Cookies: To understand website usage and improve performance

You can manage your cookie preferences through your browser settings.

8. Your Rights

You have the following rights regarding your personal data:

  • Right to Access: Request a copy of your data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data under certain conditions
  • Right to Restrict Processing: Limit the use of your data
  • Right to Data Portability: Request transfer of your data to another provider
  • Right to Object: Object to data processing in some cases
  • Right to Withdraw Consent: If processing is based on your consent

To exercise these rights, please contact us at [email protected].

9. Data Transfers Outside the UK or EEA

If we transfer your data outside the UK or European Economic Area (EEA), we will ensure it is protected through appropriate safeguards, such as data protection agreements or compliance with international privacy standards.

10. Third-Party Links

Our website may contain links to other sites. We are not responsible for the privacy practices or content of these external websites.

11. Children’s Privacy

At PhysioElm, we are committed to protecting the privacy of all our clients, including children who may use our services. We provide physiotherapy services to children; however, these services require the explicit consent of a parent or legal guardian.

Collection and Use of Personal Information

For children under the age of 18, we only collect, store, and use personal data with the consent of a responsible adult (parent or guardian). The information collected may include:

  • Name and contact details
  • Medical history relevant to physiotherapy
  • Details necessary for personalized treatment plans

This information is essential for ensuring safe and effective care and is protected with the highest standards of confidentiality and security.

Parental/Guardian Consent

Before initiating any treatment or collecting personal information from a child, we will require signed consent from a parent or guardian. This consent ensures transparency and that the responsible adult is aware of and agrees to the treatment and data collection.

Data Protection and Security

All personal data related to children is safeguarded using advanced encryption protocols and stored securely. Only authorised personnel involved in treatment have access to this data, and it is used strictly for treatment purposes.

Rights of Parents and Guardians

Parents or legal guardians have the right to:

  • Access the personal information we hold about their child
  • Request corrections to any incorrect or incomplete data
  • Withdraw consent at any time, which may affect the continuation of treatment

We respect these rights and adhere to all relevant data protection laws in the UK, ensuring that parents have control over the personal information of their children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website. If the changes are significant, we will notify you by email or through the platform.

13. How to Contact Us or File a Complaint

If you have any questions or concerns about this policy or how we handle your data, please contact us at: [email protected]

If you are not satisfied with our response, you have the right to file a complaint with the Information Commissioner’s Office (ICO) in the UK or the relevant authority in your country.