top of page

Privacy Policy 

​

Last updated: [13.11.2025]
Business name: Epping Osteopathy Clinic
Website: https://eppingosteopathy.co.uk
Contact: theeppingosteo@gmail.com

​

1. Introduction

​

Epping Osteopathy Clinic (“we”, “our”, or “us”) is committed to protecting and respecting your privacy.
This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website or receive osteopathic treatment from us.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

​

2. Information We Collect

​

We may collect and process the following types of information:

a. Personal Information

  • Full name

  • Date of birth

  • Address

  • Telephone number

  • Email address

​​

b. Health Information (Special Category Data)

As a registered osteopathic clinic, we must collect details about your health and medical history to provide appropriate treatment. This may include:

  • Relevant medical history and lifestyle information

  • Details of your current health, symptoms, and treatment plans

  • GP or other healthcare provider details

This information is treated as confidential and handled with the highest level of care.

​

c. Website and Technical Data

When you visit our website, we may collect:

  • IP address

  • Browser type and version

  • Device type

  • Pages visited and time spent on site

  • Cookies

​

3. How We Use Your Information

​

We use your personal data to:

  • Provide osteopathic assessment, treatment, and follow-up care

  • Manage appointments and billing

  • Communicate with you about your care or upcoming bookings

  • Maintain accurate clinical and financial records

  • Comply with legal and professional obligations

We will never sell or share your data for marketing purposes without your explicit consent.

​

4. Legal Basis for Processing

We process your personal data based on the following lawful grounds:

  • Contract: To deliver osteopathic care and manage your appointments.

  • Legal obligation: To maintain proper clinical records as required by healthcare regulations.

  • Consent: When you provide information voluntarily through our website or agree to communication about your care.

  • Legitimate interests: For essential administrative functions such as appointment reminders and business record keeping.

​

5. How We Store and Protect Your Data

​

  • All clinical and booking records are securely stored using Cliniko, a GDPR-compliant practice management platform.

  • Cliniko’s servers are located in the UK and EU, and all data is encrypted in transit and at rest.

  • Access to patient information is restricted to authorised clinic staff only.

  • We retain patient records for 8 years after your last appointment (or until a child’s 25th birthday, whichever is later), as required by the General Osteopathic Council and UK law.

  • After this period, records are securely deleted.

​

6. Sharing Your Information

​

We will only share your information when necessary and lawful, such as:

  • With another healthcare professional, but only with your consent

  • With our insurers or regulators if legally required

  • With service providers (such as Cliniko) who securely process data on our behalf

We do not transfer personal data outside the UK unless equivalent safeguards are in place.

​

7. Your Rights

​

You have the right to:

  • Access the personal data we hold about you

  • Request correction of inaccurate data

  • Request erasure of your data (where legally possible)

  • Restrict or object to processing

  • Request a copy of your data in a portable format

  • Withdraw consent at any time (where consent is the lawful basis for processing)

To exercise any of these rights, please contact theeppingosteo@gmail.com.

If you are not satisfied with our response, you can contact the Information Commissioner’s Office (ICO) at www.ico.org.uk.

​

8. Cookies and Website Tracking

​

Our website, https://eppingosteopathy.co.uk, may use cookies to enhance your browsing experience and to analyse website traffic.

You can control or disable cookies through your browser settings at any time.
If you would like more details about the cookies we use, please refer to our Cookie Policy (if available).

​

9. Changes to This Policy

​

We may update this Privacy Policy from time to time.
Any updates will be posted on this page with a revised “Last updated” date.

​

10. Contact Us

 

If you have any questions about this Privacy Policy or how we handle your personal data, please contact:

Epping Osteopathy Clinic
Email: theeppingosteo@gmail.com
Website: https://eppingosteopathy.co.uk

© 2025 by Epping Osteopathy 

bottom of page