Corefitphysio Ltd Privacy Notice

We currently do not hold any financial data on our website. Our website offers a payment gateway via Paypal. Paypal promises fraud protection and advanced encryption on all transactions. In Clinic, hard copies of payment receipts made by Cheque, cash or card are securely locked away and accessible only by appointed staff. Corefitphysio commits to ongoing compliance with the PCI DSS (Payment Card Industry Data Security Standard) requirements to best avoid data compromise when payments are made via credit card.

From our website, using Google Analytics, we collect information for the purposes of analysis and business development including the number of visitors to our website and which pages are viewed. This cannot be used to identify individuals.  We use cookies in some areas of our website.  If you make an enquiry through our enquiry form via our ‘contact us’ link, we will store that information securely and use it to contact you. If you do not wish to be contacted, please let us know.

If you attend Corefitphysio for a consultation or treatment, we are required to store contact details for you, copies of signed consent forms and all clinical notes. Clinical notes are standardly kept for a period of eight years. Medical notes prior to 25^th June 2018 have been recorded on paper and are securely locked away on site. Medical notes after the 25^th June 2018 are stored online via Cliniko Practice Management Software. All computer files containing personal or identifiable data are encrypted and password protected and all hard copy files containing personal data are securely locked away on site. Files are only accessed by agreed members of the team who have received training on compliance the requirements laid out in the General Data Protection Regulation Act.

Cliniko provides a secure backend to our website protected by two-factor authentication, advanced encryption and daily back up. Via Cliniko we manage our online diary system, accounts and paperless clinical records. All members of our team accessing Cliniko have received training on compliance with the General Data Protection Regulation and access levels are filtered according to team role.

Helen Curzon, the Director of Corefitphysio Ltd, is registered with ICO Data Protection Act and will provide you with any information Corefitphysio Ltd holds on you on your on request.

If you have any queries relating to our collection or use of personal information, please contact us.

Any changes in privacy policy will be posted on our web page.

Cookies

If you complete a form on our site you may opt-in to save your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you complete another form. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Any questions or concerns about the interpretation or operation of this policy should be taken up with Corefitphysio Ltd through our contact us form.