Privacy Notice – Weymouth Chiropractic Clinic 

Your privacy is important to us. This notice explains how we use and protect your personal information in line with UK GDPR and the Data Protection Act 2018. 

 

1. Who We Are 

​

Weymouth Chiropractic Clinic provides chiropractic care and related health services. 
We are the “data controller,” which means we are responsible for how we use your personal data. 

Contact details: 
Weymouth Chiropractic Clinic 
Unit 15 Oxford Court, Cambridge Rd, Weymouth, Dorset. DT4 9GH 
Tel: 01305 768393 
Email: weymouthchiropractic@gmail.com 

 

2. What Information We Collect 

​

We may collect and store: 

• Your name, date of birth, address, phone number, and email. 

• Your health information, including medical history and treatment notes. 

• Payment information (if relevant). 

• For staff: employment records, qualifications, and payroll details. 

 

3. Why We Collect Your Information 

​

We use your personal data to: 

• Provide safe and effective chiropractic treatment. 

• Contact you about appointments or changes to your care. 

• Keep accurate records as required by law and professional bodies. 

• Process payments for services. 

• For staff: manage employment and meet legal obligations. 

We will not use your information for purposes that are not related to your care or employment without your permission. 

 

4. Lawful Basis for Processing 

​

We process your information because: 

• It is necessary for providing healthcare services. 

• We have a legal and professional duty to keep health records. 

• Sometimes we rely on your consent (e.g., for marketing or newsletters). 

 

5. Sharing Your Information 

​

We will only share your information when necessary, for example: 

• With your GP or other healthcare providers (with your consent). 

• With insurers, if you are claiming treatment costs. 

• With regulatory bodies if required by law. 

• With trusted service providers (e.g., IT support, booking software) who must keep your information safe. 

We do not sell your information to anyone. 

 

6. How Long We Keep Your Information 

​

• Patient records: kept for 8 years after your last treatment, or until age 25 if you were under 18 at the time of your last visit. 

• Staff records: kept as long as required by employment law. 

• Financial records: kept for 7 years for tax purposes. 
  After this time, records are securely destroyed. 

 

7. Your Rights 

​

You have the right to: 

• See the personal data we hold about you. 

• Ask us to correct or update information. 

• Ask us to delete information (where legally possible). 

• Restrict or object to how your data is used. 

• Request a copy of your information in a portable format. 

To exercise your rights, please contact us using the details above. 

 

8. Data Security 

​

We take your privacy seriously. 

• Electronic records are password protected and encrypted. 

• Paper records are stored securely. 

• Only authorised staff can access your information. 

 

9. Data Breaches 

​

If something happens that puts your information at risk, we will take action immediately. If required, we will inform you and the Information Commissioner’s Office (ICO). 

 

10. Complaints 

​

If you are unhappy with how we use your information, please contact us first so we can put things right. 
If you are still concerned, you can contact the Information Commissioner’s Office (ICO): 

• Website: www.ico.org.uk 

• Tel: 0303 123 1113 

 

11. Updates to This Notice 

​

We may update this notice from time to time. The latest version will always be available at reception and on our website.