Your Privacy & Data Protection

Your privacy is important to us. TaoHeal is committed to protecting your personal information and complying with UK data protection laws, including the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

This policy explains how we collect, use, store, and protect your personal and health information.

1. What Information We Collect

We only collect personal information necessary to provide you with our clinical services. This may include:

  • Contact Details: Name, email address, phone number, and address
  • Health Information: Medical history, current symptoms, treatment notes, and health concerns
  • Appointment Information: Booking details, attendance records, and treatment plans

We collect this information with your knowledge and consent, and we clearly explain why we need it and how it will be used.

2. How We Store & Protect Your Data

Secure Cloud Storage

Your personal and health information is securely managed using Google Workspace, a GDPR-compliant cloud platform that provides enterprise-level security, encryption, and data protection.

Clinical Note Anonymization

To enhance your privacy, clinical treatment notes are maintained using a pseudonymization system:

  • Your full name is collected only once during initial registration
  • Clinical notes and records use code identifiers instead of your real name
  • This practice minimizes the risk of unauthorized identification while maintaining accurate clinical records

Data Security Measures

We protect your data through:

  • Encrypted storage and secure access controls
  • Regular security updates and monitoring
  • Limited access to authorized personnel only
  • Compliance with healthcare data protection standards

3. How We Use Your Information

Your information is used solely for:

  • Providing clinical treatment and continuity of care
  • Communicating about appointments and health matters
  • Maintaining accurate medical records as required by professional standards
  • Complying with legal and regulatory obligations

4. Data Retention

We retain your personal and health information only as long as necessary to:

  • Provide ongoing clinical care
  • Meet legal and professional requirements for medical record-keeping
  • Fulfill any legitimate business or legal purposes

In accordance with healthcare guidelines, clinical records are typically retained for a minimum period as required by law, after which they are securely deleted.

5. Sharing Your Information

We do not share your personal or health information with third parties, except:

  • When you have given explicit consent
  • When required by law or regulatory authorities
  • In medical emergencies where disclosure is necessary for your care

We will never sell or publicly disclose your personal information.

6. Your Rights Under GDPR

You have the right to:

  • Access your personal data and request a copy
  • Correct any inaccurate or incomplete information
  • Request deletion of your data (subject to legal retention requirements)
  • Object to certain types of data processing
  • Withdraw consent at any time
  • Request data portability in a structured, commonly used format

To exercise any of these rights, please contact us at info@taoheal.co.uk.

Our website may contain links to external sites not operated by TaoHeal. We have no control over the content, privacy practices, or policies of these third-party sites and cannot accept responsibility for them. We encourage you to review the privacy policies of any external sites you visit.

8. Updates to This Policy

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. Any updates will be posted on this page with a revised effective date.

9. Contact Us

If you have any questions about how we handle your data, or if you wish to exercise your data protection rights, please contact us:

TaoHeal Integrative Clinic
Email: info@taoheal.co.uk
Address: Greater Manchester, UK

Last Updated: 6 Dec 2035