Book now

Privacy Policy

Book an appointment

Our Cookies Policy

To offer you, the user, the best online experience we need to use selected cookies. These ensure we can offer you a more superior and personalised service without compromising your browsing experience. We use Cookies to help us understand our visitors and the content they are viewing thereby enabling us to ensure we tailor our website to meet all your needs.

How cookies work
Cookies are very small files that are placed on your computer. Our site does not store any information that would, on its own, allow us to identify individual users without their permission. Any cookies that may be used by our site are used either solely on a per session basis or to maintain user preferences. Cookies are not shared with any third parties. Cookies are not harmful in any way.

How to remove or disable cookies
If you do not wish to accept cookies on to your machine you can disable them by adjusting the settings in your browser. Most browsers can be programmed to reject, or warn you before downloading cookies, information regarding this may be found in your browsers ‘help’ facility. Deleting our cookies or disabling future cookies won’t stop our website from working but it may reduce your user experience.

How we use cookies

Google Analytics
We use Google Analytics – a service offered to websites all around the web by Google – to count visitors to our website. Google Analytics can also tell us things such as which pages are looked at the most and how long people stay on those pages, so that we can make sure our website is performing well and giving visitors the information they need.

The best up-to-date source of information about the cookies Google Analytics uses is on Google’s website.

Google have recently released a browser add-on which allows you to block any information from being sent to Google Analytics (opt-out). You can read more about this add-on and install it at the Google Analytics Opt-out Browser Add-on page. Currently the add-on supports Internet Explorer, Google Chrome, Mozilla Firefox, Apple Safari and Opera web browsers.

Social Media icons such as Twitter and Facebook etc
You may see social media icons around the website, so if you use that service you can click the icon to share any content you’re looking at. These cookies may vary depending on whether you’re logged into any of these social media websites at the time of visiting our site. Any information gathered from these cookies is gathered by these third parties, not us, and they may at any time change the information they collect. You can read any of these Social Media companies privacy policies by going to their websites.

What Cookies do we use?
Below is a list of all the cookies we use on our website.

Name: _utma
Typical content: randomly generated number
Expires: 2 years

Name: _utmb
Typical content: randomly generated number
Expires: 30 minutes

Name: _utmc
Typical content: randomly generated number
Expires: when user exits browser

Name: _utmz
Typical content: randomly generated number + info on how the site was reached (e.g. directly or via a link, organic search or paid search)
Expires: 6 months

 

Privacy Policy

Last updated: 18 August 2025

1. Who we are
Border Physio Clinic is committed to protecting and respecting your privacy. We are a data controller under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Contact us:

  • Email: info@borderphysio.co.uk
  • Website: www.borderphysio.co.uk

2. What information we collect
We collect the following types of personal data:

  • Identity & Contact Data: Name, date of birth, gender, address, email, telephone number.
  • Health-related Data (Special Category): Medical history, treatment records, notes from consultations, referral letters, diagnostic reports.
  • Administrative & Financial Data: Appointment history, billing details, insurance information.
  • Digital Usage Data: (If applicable via website) IP address, browser type, session data, cookies.

3. How We Collect Your Data

  • Directly from you: When you fill in forms, book appointments, or communicate with us.
  • From healthcare professionals: With your consent, via GP or referral documents.
  • Third parties (e.g., insurers): With your consent, when needed for billing purposes.

4. Why We Process Your Data (Purpose & Legal Basis)
We process your data for these purposes:

  • a) Providing Treatment
    To assess, diagnose, plan, and administer physiotherapy care.
    Legal Basis: Necessary for the provision of healthcare and our legal obligations under UK law. (UK GDPR Article 9; DPA 2018)
  • b) Administrative and Operational Management
    Appointment scheduling, billing, patient communications.
    Legal Basis: Performance of contract and our legitimate interests (e.g., efficiently running the clinic).
  • c) Legal Obligations & Record Keeping
    To comply with legal, professional, and regulatory obligations (e.g., HCPC rules).
    Legal Basis: Compliance with legal obligations.
  • d) Communication (including reminders)
    Appointment confirmations, clinic updates, essential announcements.
    Legal Basis: Necessary for our legitimate interests and/or contract.

5. Who We May Share Your Data With
We will only share your data when necessary and with appropriate safeguards:

  • Healthcare professionals: Referring GPs or specialists involved in your care.
  • Service providers: For IT systems, billing software, email hosting—only if they comply with UK GDPR.
  • Legal/regulatory authorities: If required by law.
  • Insurance companies: When needed for billing or claims processing (with your consent).
  • Every third party is contractually bound to handle your data securely and lawfully, and only for the specified purpose.

6. How Long We Keep Your Data
We retain your data only for as long as necessary:

  • Adult patient records: 8 years from the date of last treatment. (CSP guidance) CSP
  • Children: Until their 25th birthday or 8 years post-treatment—whichever is longer. CSP
  • Referral and administrative records: Retained for the duration necessary for delivery of care and legal compliance.

7. How We Keep Your Data Secure
We use appropriate technical and organisational measures to ensure data security:

  • Secure electronic record systems and restricted access.
  • Staff training on handling personal information.
  • Avoiding use of personal email/cloud systems for patient data.
  • Complete Physio
  • Password protection and encryption where applicable.
  • Data processing agreements with third parties.
  • GDPR Register

8. Your Rights Under UK GDPR
You have the following rights regarding your data:

  • Right of access: Request copies of your personal data.
  • Right to rectification: Correct inaccuracies in your data.
  • Right to erasure (“right to be forgotten”): In certain circumstances.
  • Right to restrict processing.
  • Right to object: To certain processing activities.
  • Right to data portability: Receive your data in a structured, machine-readable form, where applicable.

To exercise any rights, contact us at info@borderphysio.co.uk. We may require proof of identity before responding.

9. Data Breaches
In case of a personal data breach that could risk your rights or freedoms, we will notify the Information Commissioner’s Office (ICO) and affected individuals within 72 hours, when required by law.
GDPR Register

10. Complaints
You may contact us if you have concerns about how your data is being handled. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

11. Updates to This Policy
We may update our privacy policy from time to time.