Effective Date: October 2024
Prime Performance Physio respects your privacy and is committed to protecting your personal data. This policy explains how we collect, use, share, and protect your information when you engage with us, whether online, by phone, or in person.
Who we are
Prime Performance Physio (referred to as “we”, “our” or “us” in this policy) provides physiotherapy, rehabilitation, and related healthcare services.
We are registered at:
📍 43 Long Acre, Bingham, Nottingham. NG13 8AG.
📧 info@primeperformancephysio.co.uk
We are the data controller of your personal data for the purposes of UK GDPR and Data Protection Act 2018.
What data we collect
We may collect and process the following categories of personal data:
-
Identity Data: Name, date of birth, gender
-
Contact Data: Address, phone, email
-
Health Data: Medical history, treatment notes, imaging reports, referrals
-
Appointment Data: Booking details, communication logs
-
Payment Data: Invoicing and transaction records (we do not store card details)
-
Technical Data: IP address, browser type, device information (via cookies)
-
Usage Data: How you interact with our website
How we collect your data
-
Directly from you when you contact us, book, or fill forms
-
During your clinical consultations or assessments
-
Through referrals from GPs, consultants, or insurers (with your consent)
-
Via cookies and analytics on our website
Legal basis for processing
We process your data under the following legal bases:
-
Contractual necessity: To provide our services
-
Legal obligation: To meet regulatory and professional healthcare record-keeping requirements
-
Consent: For marketing communications or sharing reports with third parties
-
Legitimate interest: For business administration, service improvement, and ensuring a secure website
How we use your data
We use your personal data to:
✅ Provide healthcare services, assessments, reports, and referrals
✅ Manage appointments, billing, and payments
✅ Communicate with you regarding your care
✅ Share data with insurers, GPs, or specialists (with your permission)
✅ Send marketing communications where you have opted in
✅ Improve and secure our website
Marketing
We will only send marketing emails or updates about our services if you have given explicit consent. You can unsubscribe at any time by clicking the link in our emails or contacting us directly.
Who we share your data with
We may share data with:
-
Healthcare professionals (e.g. consultants, imaging providers) with your consent
-
Insurers funding your care
-
Our secure practice management software and IT support providers
-
Regulators or legal authorities where required
We do not sell or rent your data to third parties.
Data security
We use appropriate security measures (e.g. encryption, access controls) to protect your data. Health records are retained securely for at least 8 years (adults) or until age 25 for children, in line with professional guidelines.
Cookies
Our website uses cookies to improve user experience and gather analytics. You can adjust your cookie settings in your browser.
Your rights
Under UK GDPR you have the right to:
-
Access your data
-
Request correction or deletion (where lawful)
-
Object to or restrict processing
-
Withdraw consent at any time
-
Request data portability
To exercise these rights, contact us at info@primeperformancephysio.co.uk
Making a complaint
If you have concerns about how we handle your data, please contact us first. You also have the right to complain to:
Information Commissioner’s Office (ICO)
📍 Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
📞 0303 123 1113
Third-party links
Our website may contain links to other sites (e.g. booking platforms, imaging partners). We are not responsible for their privacy practices — please review their policies.
Changes to this policy
We may update this policy periodically. The latest version will always be available on our website.
Contact us for any questions or to exercise your rights.