HealthHub logo black and white small

Privacy Policy

Inner Hope Holdings Limited trading as HealthHub (“Company,” “we,” or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.healthhub-kingsbridge.co.uk (the “Website”), as well as your rights under UK and European data protection law, including the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

1. Who We Are

Inner Hope Holdings Limited is a company incorporated in England and Wales (Company No. 3374363), trading as HealthHub. Our registered office is at 3 Church Cottages, Thurlestone, Kingsbridge, Devon, TQ7 3NJ.

As a healthcare provider, we comply with the relevant data protection standards set by the Health and Care Professions Council (HCPC) and the Chartered Society of Physiotherapy (CSP).

2. Data We Collect

We may collect and process the following data:

a. Information You Provide to Us:
  • Personal Data: Includes data such as your name, address, email address, phone number, and any other details you provide when filling out forms on our Website (e.g., contact forms, booking appointments, subscribing to newsletters, purchasing services).
  • Health Data: As a healthcare provider, we may collect sensitive data regarding your physical or mental health, only when necessary for providing services (e.g., physiotherapy, psychotherapy). Health data will be handled in accordance with GDPR and the Data Protection Act’s requirements for special category data.
b. Information We Collect Automatically:
  • To Provide Services: To schedule and manage appointments, respond to enquiries, and provide the services you request.
    Marketing: With your consent, to send you information about our services, promotions, and events via email. You can opt-out at any time by clicking the “unsubscribe” link in our emails.
  • Legal Obligations: To comply with healthcare regulations, including maintaining proper records for the HCPC and CSP.
    Website Improvement: To monitor and improve the user experience and functionality of our Website using analytical tools.

4. Lawful Basis for Processing Your Data

We rely on the following lawful bases under the GDPR for processing personal data:

  • Consent: For marketing communications or where sensitive health data is shared.
  • Contract: To fulfill services you request (e.g., making a booking).
  • Legal Obligation: To comply with legal requirements, such as maintaining health records in compliance with HCPC and CSP regulations.
  • Legitimate Interests: For running our business, including monitoring website usage and improving our services, where such interests do not override your fundamental rights and freedoms.

5. Special Category Data (Health Information)

If we collect information about your health (e.g., as part of physiotherapy or psychotherapy services), this is considered special category data under the GDPR. We will obtain your explicit consent for the collection and use of this data and ensure that it is only used for the purpose of providing care, fulfilling legal requirements, or with your consent for other related purposes.

6. How We Protect Your Data

We are committed to ensuring the security of your data. We use industry-standard encryption and secure transmission technologies (such as SSL) to protect your information while it is being transmitted over the internet. We also employ strict access controls, data anonymisation, and physical security measures to protect your data while it is stored on our systems.

Please note that no method of data transmission or storage is entirely secure, and while we do our best to protect your information, we cannot guarantee absolute security.

7. Sharing Your Data

We will not share your personal data with third parties unless:

  • It is necessary for providing services (e.g., sharing with healthcare professionals or service providers);
  • You give explicit consent;
  • We are required by law or regulatory bodies (e.g., HCPC, CSP);
  • In the event of a business transfer (e.g., merger or acquisition), your data may be transferred to the new owner;
  • We use third-party service providers, such as email newsletter platforms or website hosting, who are bound by data protection agreements.

8. Your GDPR Rights

If you are in the UK or the European Economic Area (EEA), you have the following rights under GDPR:

  • Access: You can request a copy of the personal data we hold about you.
  • Rectification: You can ask us to correct any inaccurate or incomplete data.
  • Erasure: You can request the deletion of your personal data where it is no longer necessary for the purposes we collected it for, subject to certain legal obligations.
  • Restriction: You can request a restriction on the processing of your data in certain circumstances.
  • Portability: You can request your data be transferred to another service provider in a structured, commonly used, and machine-readable format.
  • Objection: You can object to the processing of your data for certain purposes, such as direct marketing.
  • Withdraw Consent: If processing is based on your consent, you can withdraw it at any time.

You can exercise these rights by contacting us at info@healthhub-kingsbridge.co.uk. We may require proof of identity before we action your request.

9. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for legal, accounting, or reporting requirements. Health records will be retained in line with statutory healthcare retention periods set out by the HCPC and CSP.

10. Third-Party Services

Our Website may contain links to third-party websites. We are not responsible for the privacy practices of these websites. Please review the privacy policies of any third-party services before submitting your personal data.

11. Cookies Policy

We use cookies to enhance your experience on our Website. You can manage your cookie preferences through your browser settings. For detailed information on the cookies we use and how you can manage them, please see our Cookie Policy.

12. Changes to This Privacy Policy

We may update this policy from time to time to reflect changes in legal requirements or our business operations. Any changes will be posted on this page, and if the changes are significant, we will notify you via email or a prominent notice on our Website. Please check back regularly for updates.

13. Contact Us

If you have any questions about this Privacy Policy or our data protection practices, please contact us:

The HealthHub, Fore Street, Kingsbridge, Devon, TQ7 1AX

Email: info@healthhub-kingsbridge.co.uk

Last Updated: October 2024