Privacy Policy & Your Rights

Information Collected:

I receive, collect and store any information you enter on my website or provide to me in any other way (including but not limited to phone, text, email, and in person). In addition, I collect the Internet protocol (IP) address used to connect your computer to the Internet; login; e-mail address; password; computer and connection information and booking history. I may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page. I also collect personally identifiable information (including name, email, phone number, password, communications) if you contact me via email or you book a session with me either via online or when I book you in directly after you request to have me do so. 

The information is only collected and retained when you choose to email me or book a session in. This is to ensure that I can deliver the services you request in a manner of way that is efficient and typical, whether it be via email, text, voice call, or scheduling an appointment. Your information will only be used in the manner stated above and all personal information is kept private and confidential from unnecessary third parties.

I collect said information in order:

- to ensure ongoing care is provided without interruption;

- to be of assistance to Users with help outside a booking an appointment, whether this be in communication about my services or in regards to general understanding about my profession;

- to be able to contact our Visitors and Users with general or personalized service-related notices and promotional messages;

- to create aggregated statistical data and other aggregated and/or inferred Non-personal Information, which we or our business partners may use to provide and improve our respective services; 

- to comply with Retention of client records 3.1 Section B8 of the CNHC Code. This requires registrants to keep client records safely and in good condition for eight years from the date of the client’s last visit or, if the client is a child, until his or her 25th birthday, or 26th birthday if the client was 17 when the treatment ended.

This site is hosted on the Wix.com platform. Wix.com provides me with the online platform that allows me to sell my services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall. In addition to wix, I utilize the Wix Scheduling tool and Google Calendar for arranging bookings which send you reminder texts/emails for your requested appointment, Gmail for email communication, and either apps like Whatsapp or phone text (iMessage or standard) for text messaging. For payment, if you choose to pay by debit or credit card, I process payments via Square who, like the other companies, have become GDPR compliant.

Communications

When you have given me a method to connect with you, I will do so either respond to any enquiries about my services, to notify you about upcoming appointments and any updates regarding my services, to poll your opinions through surveys or questionnaires, to send updates about my practice, or as otherwise necessary to contact you to enforce our User Agreement, applicable national laws, and any agreement I may have with you. For these purposes I may contact you via email, telephone, text messages, and postal mail.

GDPR - Lawful Collection & Your Rights

Historically, I have relied on client consent for handling and processing ‘personal data’ (name, contact details and email address) and what was referred to as ‘sensitive personal data’ (health information and care provided). GDPR now uses the terminology of ‘special categories of personal data’ for health details. Effectively, I now require two lawful bases for processing data • consent or contract for personal data and • the fact that the processing of the special category of personal data is necessary for the provision of healthcare. This basically means that I cannot effectively and sometimes safely treat you without this information. 

Under the GDPR, EU-resident individuals are entitled to request the following from businesses that manage their personal data:

  • Information about the data being held;

  • To have any inaccuracies in the data corrected;

  • To have information erased;

  • To object to direct marketing;

  • To restrict the processing of their information, including automated decision-making (i.e., a decision made solely by automated means without any human intervention) or profiling (i.e., automated processing of personal data to evaluate certain things about an individual); and

  • Data portability (to have data produced in a portable form or sent to another party at the request of the individual).

Your personal information is provided free to you at your request and within 30 days of you requesting it. If you feel your data protection rights are being infringed upon, that you can make a complaint directly to the Information Commissions Office https://ico.org.uk/concerns/

Withdrawing Consent

If you do not want me to process your data anymore, please contact me at rmckinnonrmt@gmail.com where you will be removed from online data storage. Please be aware that according to my insurance requirements, personal information and treatment notes will be kept on file for 8 years (and in the case of minors, 8 years from the time they reach the age of majority).

Policy Updates

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it. 

Cookies

Cookies are used on this site in order to provide a better service for you. The following cookies are used: svSession, XSRF-TOKEN (for security); hs (for security); _wixUIDX, _wix_browser_sess, userType, PHPSESSID, 

Questions and Contact

If you would like to: access, correct, amend or delete any personal information I have about you, you are invited to contact me at RmckinnonRMT@gmail.com

​© London, UK 2017  Ruth McKinnon. Proudly created with Wix.com

  • Black Facebook Icon
  • Black Instagram Icon