About This Privacy Notice
This notice explains how, why and when we collect personal data, how and why we use it, how we keep it secure and your rights in relation to it. In this context, personal data is that which can be used to identify an individual. The collection and processing of personal data is governed by the EU General Data Protection Regulation (GDPR) ,with which The Ki Clinic complies.
The GDPR is regulated in the UK by the Information Commissioners Office( ICO) .
For the purpose of the GDPR ,the legal basis upon which we collect your personal data is consent,ie,that you give your consent for us to collect and use your database set out in this Privacy Notice.You do this by means of the buttons and tick boxes which are found on the cookie notice, contact form, health form and online checkout via E bay.
What data do we collect and why?
The following sections cover different ways/places on our website etc. which personal data is collected, they also outline the length of time that data is kept.
3.1 Entire Website
The website uses Google Analytics to collect various items of data about visitors to the site and to do this it creates cookies on your computer or (tablet /phone) .This is why on visiting the website for the first time ,you saw a cookie notice asking for your consent- that is your consent to create cookies on your device.
At the same time as creating a cookie, data is passed back to Google. It is important to note that both data in the cookie and that passed to Google is ANONYMISED, i.e. - it is changed so that it is not possible to use to identify you as an individual. Consequently we don't really have to notify you, under GDPR that we are sending data to Google, but we do to reassure you that no personally identifiable data is sent to them.
3.2 Contact Form.
The contact form on our website is used for you to communicate with us, we ask for your name, email and telephone number, these are required so that we can answer your query. When you click the send button and email is sent to our office. As with any other email sent to one of our contact email addresses ,you email will arrive and be saved in the email reader, who will reply to you with an answer to your query.
How long your email is kept, varies but it may be kept indefinitely. If you wish it to be deleted after your query has been answered then please indicate this on your email, or you may also do this at anytime thereafter by contacting us and requesting that it be done.
3.3 Health form.
We need a health form by Law and our Insurers ,we use Google Forms and when you completed the form you automatically receive a copy. You may keep this for your own records. By law we have to keep health records for 10 years. The data that is one the health form is kept in a secure format by Google ,we also save the information and keep /store it on a encrypted separate digital drive. You can request a copy if you lose yours by writing to us.
3.4 Online Shop via PayPal.
When you purchase our goods via PayPal, any information that you enter in to with them and used to pay for goods is not used by us and is collected by PayPal and these details are not made available to us.
How we Protect your Data
a) All communication between you and our website is securely encrypted ( as indicated by the https: at the beginning of the website address and often a green padlock symbol on may browsers).Data on our website is stored on servers within the EU.
b) Your data will not be transferred out of the EU, without your explicit consent( we don't envisage any need to do so).
c) All online transactions are received through recognised on line secure payments provider (PayPal).
d) We will notify you promptly in the event of nay data breach which might expose you to serous risk.
e) In some cases we may refuse to delete your personal data when requested by you. This occurs if we need to keep it in order to comply with future legal obligations e.g.- compliance with tax requirement and insurance documents and the establishment or defense of legal claims.
Who else has access to your Data
We do not share your personal data outside our Company.
We will never sell your personal data.
We will not disclose your personal data to any third party without prior consent ,except where required to do so by Law.
Regrading the personal information that we keep about you ,the GDPR provides you with the following rights:
If you wish to exercise any of your rights, please get in touch.