Privacy Notice
Dogrose Therapies takes your privacy seriously and has a Data Protection Policy that complies with the General Data Protection Regulations (2018). The company collects personal data from its clients that is specific, relevant & essential to maintain accurate administrative records. Your records are kept in paper format and stored in a locked metal filing cabinet. No DATA will be shared with any third parties, without your specific consent. You have the right to know, and to access the DATA that is kept about you. Please advise if you do not wish to receive any information about Dogrose Therapies via telephone, email or post.
Donna Williams
DATA Controller
Dogrose Therapies
Dogrose Therapies General Data Protection Regulations Policy
Dogrose Therapies takes your privacy seriously and has a Data Protection Policy that complies with the General Data Protection Regulations (2018). The company collects personal data from its clients that is specific, relevant & essential to maintain accurate administrative records. Your records are kept in paper format and stored in a locked metal filing cabinet. No DATA will be shared with any third parties, without your specific consent. You have the right to know, and to access the DATA that is kept about you. Please advise if you do not wish to receive any information about Dogrose Therapies via telephone, email or post.
Donna Williams
DATA Controller
Dogrose Therapies
Dogrose Therapies General Data Protection Regulations Policy
- The DATA Controller for Dogrose Therapies is ‘Dogrose Therapies’.
- The nominated DATA Processor is Donna Williams, on behalf of Dogrose Therapies.
- Dogrose Therapies has nominated Donna Williams as their DATA Protection Officer.
- DATA HELD
- Dogrose Therapies holds only essential DATA by which to identify its clients and suppliers.
- Dogrose Therapies holds the following personal DATA – name, address, date of birth, telephone numbers, email address, GP.
- This DATA enables Dogrose Therapies to contact you regarding appointments or suggested follow up actions to treatment.
- Relevant medical details & information pertinent to the client's condition, to assist in planning and executing treatment.
- Invoicing details where provided.
- This DATA is legitimate, accurate, specific, and explicit and limited only to that which is necessary.
- At present Dogrose Therapies does not send out marketing material via post or Email but may do so in the future.
- The client has the opportunity to opt out of this when signing their treatment consent form.
- DATA STORAGE
- All client records are kept in paper format only, in a locked metal filing cabinet, at 19 Hill View Road, Strensham, Worcestershire, WR8 9LJ.
- Dogrose Therapies will endeavour to keep all DATA accurate and up to date and it will be reviewed on a regular basis.
- DATA SHARING
- In the unlikely event of DATA being requested by a third party, e.g. medical insurance company, the client will be informed and consent attained.
- DATA will only be shared with third parties upon written request and signed consent.
- In theses instances DATA will be sent to the third party via post.
- DATA received from a third party via Email will be printed out and stored with that client's other records.
- Once this has been done the email will be permanently deleted.
- SUBJECT ACCESS REQUEST
- The subject has the right to access the personal DATA held by Dogrose Therapies.
- This request MUST be made in writing to the DATA controller at Dogrose Therapies.
- The subject may request that the DATA controller rectify any inaccuracies of the personal DATA held about them
- The subject may request erasure or restriction of their personal DATA.
- In the event of a subject access request, Dogrose Therapies will comply with the subjects request.
- A copy of that information will be supplied within 1 month at no cost to the subject.
- DATA BREACH
- Dogrose Therapies will implement appropriate technical and organisational measures in an effort to prevent a DATA breach.
- In the event of a DATA breach, Dogrose Therapies will inform the Information Commissioners Office, where possible within 72 hours or as soon after as Dogrose Therapies becomes aware of such a breach.
- If appropriate, where a risk to the individual is likely, inform those individuals affected.
- DISPOSAL OF DATA
- Client notes and personal DATA will be destroyed after 8 years.