Privacy Policy

How we protect your data in compliance with GDPR

🇬🇧

United Kingdom Privacy Policy

Governed by UK law • Compliant with GDPR

Last updated: December 15, 2024

PrivadoCare+ ("we," "our," or "us") is committed to protecting the privacy of our clients and their patients. This policy explains how we collect, use, store, and protect personal data in compliance with the GDPR (General Data Protection Regulation) .

1. Information We Collect

We may collect and process the following personal data on behalf of our clients:

  • Patient Information: Names, contact details, appointment information, consent forms, medical intake forms.
  • Clinic Information: Clinic name, contact information, payment details, service agreements.
  • Administrative Data: Booking preferences, billing information in GBP, communication records.

2. Why We Collect Personal Data

We process personal data to:

  • Provide virtual administrative support services (appointment booking, invoicing, follow-ups)
  • Manage communications and inquiries effectively
  • Ensure secure billing and payment tracking in GBP
  • Fulfill our contractual obligations to our private self-pay clinic clients
  • Maintain compliance with GDPR (General Data Protection Regulation)

3. How We Collect Data

We collect data when you or your patients:

  • Fill out intake, consent, or booking forms through our secure platforms
  • Communicate via email, WhatsApp, or phone
  • Provide access to shared platforms like Google Calendar or payment systems
  • Engage with our virtual admin partners for clinic support

4. Data Storage and Security

We securely store data on encrypted platforms including Google Workspace, Zoho, and Cal.com, ensuring strict access controls and permission protocols. All clinic data is handled securely in encrypted cloud systems compliant with GDPR (General Data Protection Regulation).

We use secure passwords, encryption, and routine security reviews to protect data against unauthorized access, loss, or disclosure.

5. Data Sharing and Third Parties

We never sell personal data. We only share data with third-party service providers when necessary to deliver our services, such as payment gateways (e.g., Stripe, Zoho) or secure communication platforms. These providers are GDPR-compliant and obligated to protect personal data.

6. Your Data Protection Rights

Under GDPR, you and your patients have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of personal data
  • Restrict or object to data processing
  • Request data portability
  • Withdraw consent at any time

To exercise these rights, please contact us at hello@privadocareplus.co.uk.

7. International Data Transfers

As a UK-based service, all data is processed within the UK or in countries with adequate data protection standards as recognized by GDPR.

8. Data Breach Procedures

In case of a data breach, we will promptly notify affected individuals and relevant authorities within 72 hours (as required by GDPR), detailing the extent and mitigation actions taken.

9. Changes to This Policy

We regularly review and update our privacy policy. Any updates will be posted here with the latest revision date clearly indicated.

Last updated: December 15, 2024

10. Contact Information

For any privacy-related inquiries or concerns, please reach out to:

PrivadoCare+ United Kingdom

Email: hello@privadocareplus.co.uk

Website: www.privadocareplus.co.uk

Governing Law: UK law

Data Protection Authority: Information Commissioner's Office (ICO)

Compliance Note: PrivadoCare+ acts as a virtual admin support provider, not a healthcare entity. Clinics remain the data controllers of their patient information. We serve private self-pay clinics only - no NHS or insurance workflows.