top of page

Privacy Policy 

Kerry Read Physiotherapy are committed to protecting your privacy and complying with data protection laws. This policy informs you how we collect , use and store your personal and health related data. This policy may change from time to time so it is important to stay updated. 

Information we collect

  • Personal and Contact Data 

  • Name, date of birth, Address, email, phone number collected during booking or registration 

  • Health and clinical information ​

  • Physiotherapy and health related information collected during contact form and assessments.

  • Technical & Usage data 

  • IP address, device/browser type, pages visited, duration of session via cookies and analytics .

  • Payment Data

  • Payment information processed for invoicing 

How we use your information

  • Provide and manage our physiotherapy services 

  • Respond to inquiries, referrals, billing and administrative tasks 

  • Communicate relevant information such as appointment reminders, updates or community notices. 

  • Improve website performance and function 

  • Send you important notices or health-related updates (with your consent)

Legal bases for processing 

  • Contractual necessity- to provide care and manage services

  • Legal obligation- compliance with healthcare regualtions 

  • Consent- when receiving marketing or community updates

  • Legitimate interests- improving service quality, website performance and analytics. 

Cookies 

  • We use cookies to enhance user experience. You can manage or disable cookies through your browser settings, keeping in mind some site features may  be affectred. 

Sharing Your Information

  • We do not rent or sell personal data. We may only share information to: 

  • Healthcare professionals involved with your care

  • Third-party providers e.g. billing platforms, appointment systems, telehealth platforms under confidentiality agreements. 

  • Legal or regulatory bodies when required by law or to protect your vital interests 

  • All third party providers are vetted for compliance with relevant data protection standards. 

Data Retention 

  • We retain personal and clinical data for the duration necessary to fulfil service purposes or legally mandated periods. Upon expiry or upon request, we securely delete or anonymise your data.

Data Security 

  • We implement robust organisational and technical safeguards — including encryption, access controls, secure storage, and regular system reviews — to protect your data from unauthorised access or misuse.

Your Rights

  • Under UK GDPR and related legislation, you have rights to:

  • Access your data.

  • Correct inaccuracies.

  • Erase data (where permitted).

  • Restrict or object to processing.

  • Receive your data in a portable format.

  • Withdraw consent to marketing messages.

bottom of page