Envelope Phone-alt Facebook-f Instagram
Members LOG IN here

Privacy Policy

 

Kirsty Ellis Sports Therapy

 

PRIVACY POLICY

 

Kirsty Ellis Sports Therapy (referred to in this policy statement as “we/us”) understands that your privacy is important to you and that you care about how your personal data is used and shared. We respect the privacy of all our client’s personal information and take all personal data issues seriously. We are open and transparent about the way that data is collected and used by us and therefore we are committed to abiding by the privacy policy explained in this statement. It will provide you, the client, with details of how we collect, store and use personal data that is supplied to us, and how we will act in accordance with current legislation to meet the regulations with regard to the processing of personal data. Our contact details can be found at the end of this policy.

 

  1. HOW WE COLLECT PERSONAL INFORMATION

 

1.1. We regard “personal data” as information about you from which we can identify you (either on its own, or by compiling it with other information).

1.2. We collect this information from various sources to help us manage the business and to keep in contact with you. Typically, these sources are: ‘sign-up’ forms from Internet websites and booking systems (we use: Clients Central, Teamup and Acuity), telephone enquiries, in-person enquiries and email requests. Additional information may be gathered and recorded once a client attends a therapy session or a class.

1.3. We will ask you to agree to use of this data by giving us your consent (i.e. to ‘opt-in’). We require that you opt-in to the use of your personal data by ticking a ‘Consent Given’ box. By doing this, you consent to us collecting and processing the data that you have supplied to us, and to us using it to contact you.

 

  1. WHAT TYPE OF INFORMATION WE COLLECT AND HOLD

2.1. We hold personal contact information such as name, address, email address, and contact telephone number(s). We may hold contact details for relatives and emergency contact(s). Additionally, we hold some personal data that assists us in providing an efficient clinical service, (such as date of birth and relevant health/medical information). We hold sufficient financial information to allow us to take payment for our services, either directly or through a Third Party.

2.2. We also hold information on previous clients in line with our insurance and legal requirements.

2.3. All data records are held in a secure manner and for a time period that is considered appropriate for our business needs; typically, this will be for a minimum of 7 years. (You may specifically request otherwise – see the section on ‘Your Rights’).

2.4 Protecting the privacy of minors is especially important. Our Service is not directed to minors under the age of 16, and we do not knowingly collect Personal Data from persons under the age of 16 without obtaining parental consent.

 

 

 

  1. HOW WE USE YOUR PERSONAL DATA

3.1. We only use your data for the legitimate interests and running of the business. Typically, we use your data to enable us to contact and communicate with you, as our current or potential clients. This may be for booking or re-arranging treatment sessions and classes, getting in touch with you in an emergency, or for the purposes of promoting and marketing our services and/or offers.

3.2 In addition to above we use the information we hold about you to ensure that we are providing a safe and professional service to you. This includes the use of any data regarding your health history that you have provided to us.

3.3. We control the use of limited financial information for the recurring processing of payments.

3.4. We may track your service usage (treatment sessions and class) activity patterns so that we can improve the level of service that you receive from us.

3.5. We do not share, sell or exchange your information with any external parties for the purposes of marketing or profiling.

 

  1. WHO HAS ACCESS TO INFORMATION

4.1. The owner and employees of the company and self-employed contractors (for example, class instructors and administrative assistants) have access to your personal information in order to carry out their day-to-day duties and to maintain the needs of the business.

4.2. Information may be held by, or we may disclose to, our third-party service providers for the purposes of providing services to us, or directly to you, on our behalf (for example, financial data to allow them to process payments in a secure manner). Such third parties may include cloud service providers (such as email and file management); when we use them, we only disclose limited personal information that is necessary for them to provide their service in accordance with our specific instructions.

4.3. Third Party Internet providers may collect and retain basic contact details to notify us of potential clients who have expressed an interest in our services. They are governed by the legal requirement for clients to ‘opt-in’.

 

  1. HOW IS YOUR PERSONAL PRIVACY PROTECTED

5.1. We take all reasonable precautions to maintain your personal data in a secure environment. This includes but is not limited to; the use of password protection for access to applications, computer folders/files and mobile phones; the secure storage of paper records in locked filing cabinets.

5.2. We may keep your data for a limited, reasonable period, as appropriate for the needs of the business. The only exceptions to this are where the law requires us to hold personal information for a specified period or to delete it sooner – see the section on ‘Your Rights’.

5.3. We ensure, on an on-going basis, that all employees and contracted staff are made aware of their responsibilities in relation to the use, protection and breaches of personal information.

5.4. Whilst we will strive to protect all your personal information that we hold, we cannot guarantee the security of any information that you transmit to us over the Internet, and so you do so at your own risk.

 

  1. YOUR RIGHTS

Your ‘data subject’ rights: Legislation deems us to be the ‘controllers’ of the personal data that we hold. Therefore, we are responsible for how it is used by us and our third parties and how we inform you of that. You have a number of rights in relation to your personal information under data protection law. If we receive a request from you to disclose the personal data that we hold on you, we will respond to you within 30 days, at no charge to you. Our contact details, and how to contact us, can be found at the end of this policy statement.

 

6.1. Accessing your personal information: You have the right to ask for a copy of the information that we hold about you by emailing or writing to us at the address listed in our contact details. We may not provide you with a copy of your personal information if it concerns other individuals, or we have another lawful reason to withhold that information.

6.2. Correcting and updating your personal information: The accuracy of your information is important to us. If you change any of your personal details, have reason to believe, or, discover that it is inaccurate or out of date, please contact us so that we can correct it.

6.3. Withdrawing your consent: We rely on your consent as the legal basis for processing your personal data and to receiving direct marketing. You may withdraw your consent at any time by contacting us. If you would like to withdraw consent to receiving direct marketing, you can also do so by using our unsubscribe tool. If you withdraw your consent, our use of your personal data before you withdraw is still lawful.

6.4 Non-consent to the use of your data: If you do not wish to give consent to the use of your personal data, it may not be possible for us to provide the full use of our service to you (specifically treatment sessions and classes).

6.5. Erasing your personal information: You can ask us to remove your personal information that we hold from our internal systems at any time by emailing or writing to us – see our contact details. We will make all reasonable efforts to comply with your request in a reasonable timeframe unless there is a reason that the law prohibits us from doing this – for example, for insurance purposes, to protect the rights of another individual or in connection with legal proceedings.

6.6. Data Breaches: In the unlikely event of a breach of your personal data, we will notify you of this within 72 hours of our discovery. If we consider this to be a serious breach, we will also notify the Regulator. We will identify and put in place measures to prevent a similar occurrence in a timely manner and ensure appropriate and suitable protection of personal data is incorporated in future design of our systems and processes.

6.7. Complaining to the UK data protection regulator: You have the right to complain to the Information Commissioners Office (ICO) if you are concerned about the way we have processed your personal information. Please visit the ICO’s website for further details. www.ico.org.uk

 

 

  1. MARKETING

7.1. We will ask you to consent to email/telephone/SMS correspondence if you register with us through our website or if you complete a Health Screening form prior to attending a class.

7.2. We may also ask you to provide us with your preferred additional methods of receiving marketing information from us (for example, by post). From time to time we may ask you to refresh your marketing preferences by confirming that you consent to continue to receive information from us.

 

  1. COOKIES

8.1 We are legally required to disclose whether other third parties may collect personally identifiable information about an individual’s online activities from our Site or Service. Please see our Cookie Policy for more information [insert link].

 

 

  1. HOW TO CONTACT US

9.1. If you have any questions, suggestions or complaints about the processing of your personal information, would like to see a copy of the information we hold about you, or wish to contact us for any general matters, you can do so by using any of the contact details below.

9.2. The registered address for written correspondence:

Kirsty Ellis Sports Therapy

402 Higham Common Road

Higham

Barnsley

South Yorkshire

S75 1PQ

9.3. We can be contacted on the following telephone number: 07736839545

9.4. We can be contacted at the following email address: info@kirstyellis.com

 

  1. LAST UPDATE OF THIS POLICY

10.1. This privacy policy statement was last updated in May 2018 to comply with current UK legislation.

10.2. We may review this policy at any time and changes will be notified to you by us posting an updated version on our website and/or by contacting you by email.

10.3. We recommend that you regularly check for changes and review this policy when you visit our website. If you do not agree with any aspect of the updated policy you should promptly notify us and cease using our services.

 

 

Stay in Touch

Subscribe for tips, the latest news and knowledge.