What is a Privacy Notice?
Under data protection law you, as a client of Heel The Soles, have specific rights. To communicate these rights to you in a clear and concise manner, we are providing you with this privacy notice.
Who I Am
I am Theresa Walker who owns and runs Heel the Soles as a foot health practitioner service. I am based at 33 Old Fort Road. Felixstowe, Suffolk IP11 2GG. Telephone number 07534 329 448, email address: firstname.lastname@example.org
For the purposes of processing your personal data I am called the Controller.
The Personal Data I Process and What I Do With It
I record and use the following categories of personal data which may include: name, address, telephone numbers, email address, date of birth, emergency contact details, your medical history, my diagnosis and treatment records. Health records are classed as a special category of data, due to its sensitive nature. It is important that I know your medical history so that I can be sure that my foot health care treatment is appropriate and safe for you. Upon my first visit to you I will complete a Patient record with your details on By signing the consent form I will give you, you are giving consent for me to process your data.
If you DO NOT give consent, then your data will be deleted and I will not be able to treat you.
Your data is stored on my Practice Management Software and only I can access your health records. I use your contact information to send appointment confirmation reminders by SMS or sometimes emails or a phone call. You can opt out of these at any time by letting know.
Sharing Your Personal Data
My Practice Management Software is stored on a memory sd card and is called Footware. All the data is password protected.
Retaining Your Personal Data
Whilst you are a client of Heel The Soles, I will continue to store and use your personal data. I am to retain all medical records for a period of 7 years from your last appointment with me, after which time they will be deleted. Limited information will be retained within our accounts system to maintain the integrity of the data.
As I process your personal data, you have certain rights. These are a right of access, a right of rectification, a right of erasure and a right to restrict processing. You may request a copy of your data at any time. Please make such a request in writing or by email to me, at the address shown above. Please provide the following information: your name, address, telephone number, email address and details of the information you require. If you believe any of the personal data I hold on you is inaccurate or incomplete, please contact me directly and any necessary corrections to your data will be made without undue delay.
If you believe I should erase your data, please contact me at the address shown above. Please bare in mind that medical records must be kept for 8 years since the last appointment, but your other data may be deleted.
Where you have provided explicit consent for me to use your data you have a right to withdraw consent at any time.
Should your personal data that I control be lost, stolen or otherwise breached, where this constitutes a high risk to your rights and freedoms, I will contact you without delay. I will give you the contact details of the person who is dealing with the breach, explain to you the nature of the breach and the steps I am taking to deal with it.
Should You Wish To Complain
You can contact the ICO via their website: www.ico.org.uk should you wish to make a complaint about the way I am handling your personal data.
Automated Decision Making and Profiling
I do not use any system which uses automated decision making or profiling in respect of you personal data.