What we collect
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
We may collect the following via our Contact & Booking forms:
- Contact information including email address & telephone number and address details
What we do with the information we gather
We require this information to understand your needs and provide you with a better service, and in particular for the following reasons:
- Booking appointments
- Internal record keeping
- We may use the information to improve our products and services
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect online.
What is a cookie?
Cookies are text files containing small amounts of information which are downloaded to your device when you visit a website. Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. Cookies are useful because they allow a website to recognise a user’s device.
You can find more information about cookies at:
Cookies do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences, and generally improve the user experience. The cookies used on this website have been categorised based on the categories found in the ICC UK Cookie guide.
Category 1: Essential cookies
These cookies are essential in order to enable you to move around the website and use its features, such as accessing secure areas of the website. Without these cookies, services you have asked for, like shopping baskets or eBilling, cannot be provided.
Category 2: Analytics cookies
These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and if they get error messages from web pages. These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works.
By using our website, you agree that we can place these type of cookies on your device.
By using our website, you agree that we can place these type of cookies on your device.
A list of all the cookies used on this website by category is set out below.
Category 1 Essential cookies :
- If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
- If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
- When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
- If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Category 2 Analytics & Third Party Cookies:
- Google Analytics :
Google provides anonymised data about the visits made to our website.
- We have no control over third parties cookies on this site or how they are used by the Third Parties.
Links to other websites
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites, and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
Controlling your personal information
Ashburton Therapy is committed to protecting and respecting your privacy. For any personal data you provide as a client of Ashburton Therapy, Ashburton Therapy is the Data Controller and is responsible for storing and otherwise processing that data in a fair, lawful, secure and transparent way.
GDPR gives you the following rights:
• The right to be informed: To know how your information will be held and used.
• The right of access: To see your therapist’s records of your personal information, so you know what is held about you and can verify it.
• The right to rectification: To tell your therapist to make changes to your personal information if it is incorrect or incomplete.
• The right to erasure (also called “the right to be forgotten”): For you to request your therapist to erase any information they hold about you
• The right to restrict processing of personal data: You have the right to request limits on how your therapist uses your personal information
• The right to data portability: under certain circumstances you can request a copy of personal information held electronically so you can reuse it in other systems.
• The right to object: To be able to tell your therapist you don’t want them to use certain parts of your information, or only to use it for certain purposes.
• Rights in relation to automated decision-making and profiling.
• The right to lodge a complaint with the Information Commissioner’s Office:
• To be able to complain to the ICO if you feel your details are not correct, if they are not being used in a way that you have given permission for, or if they are being stored when they don’t have to be.
Full details of your rights can be found at https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/.
If you wish to exercise any of these rights, please use the contact details given above.
If you are dissatisfied with the response you can complain to the Information Commissioner’s Office; their contact details are at: www.ico.org.uk
• If you don’t agree to your therapist keeping records of information about you and your treatments, or if you don’t allow them to use the information in the way they need to for treatments, the therapist may not be able to treat you
• Your therapist has to keep your records of treatment for a certain period as described above, which may mean that even if you ask them to erase any details about you, they might have to keep these details until after that period has passed
• Your therapist can move their records between their computers and IT systems, as long as your details are protected from being seen by others without your permission
FOR CLIENTS: THE FOLLOWING INFORMATION IS PROVIDED TO YOU AT YOUR FIRST APPOINTMENT, AND YOU WILL BE REQUESTED TO READ AND SIGN IF YOU AGREE.
Why do I need to collect personal information?
As a healthcare professional, I have a requirement to retain information in order to provide you with the best possible treatment outcomes and advice. I also have a legal requirement via my insurance (Holistic Insurance Services) to keep a record of treatments given.
What information is being collected?
Information may include: your name, date of birth, address, contact phone number, contact email address and relevant information relating to your health and treatment.
How is it collected?
Collection of data will mainly happen via pen and paper note taking during your appointment, which may then be written up electronically; or via information you have provided by email or text messages. At times I will use photographs or videos taken during the session – these are strictly with your consent only and are stored as part of your electronic records in the same way. No personal data will be collected via social media.
Where is it stored?
Written information is stored in a locked room.
Electronic records are imputed via my computer, which is protected by s secure private password. Records are stored in password protected files.
Client contact numbers are only stored on my iPhone if you have given me permission to contact you via phone or text and only saved onto my phone if I need to contact you in this way. The phone is protected by fingerprint access and a 6 digit pass code.
No client files are left on surfaces for other clients / staff to read.
Any data taken whilst on a mobile treatment will be transported in a locked bag, out of sight in the boot. No notes are left unattended in a vehicle at any time.
How long is it kept for?
In accordance with GDPR regulations, records are kept for 7 years after the last appointment. For children under 17, records will be kept until the child is 25; or if 17 when treated, then 26.
Who is collecting it?
As your practitioner, I will collect data at the start of your first session. Some information may be requested by email or text message to ensure the smooth running of your treatment. On occasion data from relevant medical notes / letters and scans may also form part of the data collected.
Why is it being collected?
Data is collected to record, guide and supervise your progress, and to be able to communicate effectively with you regarding the best outcomes. It is used to compare any changes as you progress through treatments, to highlight any red flags or cautions, action to be taken and a detailed dialogue of treatment provided.
How will it be used?
Data will be used to inform your treatment plan, communicate appointments, session information, and document progress.
Contact information will be used to send email correspondence, including newsletters, if you have opted to receive this. You can change your preferences regarding newsletter / correspondence at any time.
Who will it be shared with?
I will NOT share your information with anyone else, other than within my own practice, for purpose of referral to another practitioner, or as required for legal process, without explaining why it is necessary, and getting your explicit consent.
Client experiences can be shared with the public via Ashburton Therapy social media pages only with full consent from the client themselves and they will remain anonymous. This will be confirmed in writing by the client prior to sharing.
What will be the effect of this on the individuals concerned?
There should be no data leakage with regards to clients.
No data is shared with third parties without consent.
No data is sold to third parties for business reasons.
No data is held on phones unless encrypted with a pin number / finger print recognition. No phones are left unattended. Lost / stolen phones need to be locked remotely to prevent 3rd parties reading any sensitive information.
No sensitive / identifiable data is sent by email together in the same posting.
All computers / laptops and tablets are locked with pass codes and not left unattended.
PROTECTING YOUR PERSONAL DATA
I am committed to ensuring that your personal data is secure. In order to prevent unauthorised access or disclosure, I have put in place appropriate technical, physical and managerial procedures to safeguard and secure the information I collect from you.
We will not sell, distribute, or lease your personal information to third parties unless we have your permission or are required by law to do so. .
You may request details of personal information which we hold about you under the Data Protection Act 1998.
A small fee will be payable.
If you would like a copy of the information held on you, please write to:
If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible at the above address. We will promptly correct any information found to be incorrect.