Privacy Policy

1. Introduction

Buckinghamshire Medical is committed to protecting your privacy and maintaining the confidentiality and security of your personal information. This Privacy Policy explains how we collect, use, store, and share your personal data, including medical information, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Buckinghamshire Medical is registered with the Information Commissioner’s Office (ICO) and complies with professional standards relating to medical confidentiality, including guidance issued by the General Medical Council (GMC).

2. Information We Collect

We may collect and process the following types of personal data:

  • personal details such as your name, date of birth, address, telephone number, and email address;
  • medical and health information, including consultation records, medical history, medications, and allergies;
  • information provided through online forms, suitability questionnaires, booking requests, and enquiries;
  • technical information such as IP address, browser type, and website usage data.

3. How We Use Your Information

We use your personal information for the following purposes:

  • to provide medical care, advice, assessment, and treatment where appropriate;
  • to conduct clinical triage and assess suitability for consultations, services, or healthcare-related products;
  • to manage appointments, communications, and follow-up care;
  • to support clinical governance, audit, and quality improvement;
  • to respond to enquiries and manage communications;
  • to comply with legal, regulatory, and professional obligations.

4. Lawful Basis for Processing

We process personal data under one or more of the following lawful bases:

  • provision of health or social care and treatment;
  • consent, where applicable;
  • compliance with legal obligations;
  • legitimate interests relating to service delivery, safety, and quality assurance.

Special category data, including health information, is processed in accordance with UK GDPR provisions relating to healthcare and public interest.

5. Sharing Your Information

In clinically relevant situations, we may share your information with other healthcare professionals or organisations involved in your care, such as your NHS GP or specialist.

Where possible, we will do so with your knowledge and consent. However, in certain circumstances, information may be shared without consent where:

  • it is necessary to protect you or others from serious harm;
  • it is required by law or court order; or
  • it is necessary for safeguarding purposes.

You may object to the sharing of your information; however, this may affect our ability to provide safe and effective care.

6. Safeguarding

Buckinghamshire Medical takes safeguarding seriously. Where there are concerns about the safety or welfare of a child or vulnerable adult, we may share relevant information with appropriate authorities or professionals, in line with legal and professional requirements.

7. Data Storage and Security

Your information is stored securely within approved IT systems and is accessible only to authorised personnel.

We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, or disclosure.

8. Retention of Information

Personal and medical information is retained in accordance with legal, regulatory, and professional guidance. Data is not kept for longer than necessary for the purposes for which it was collected.

9. Your Rights

Under data protection law, you have the right to:

  • access your personal data;
  • request correction of inaccurate or incomplete information;
  • request restriction of processing;
  • object to processing in certain circumstances;
  • withdraw consent where consent is relied upon;
  • request erasure of data where applicable.

Please note that some rights may be limited where data is required for the provision of healthcare or compliance with legal obligations.

10. Website Use and Cookies

When you visit our website, technical information such as your IP address, date and time of access, and pages visited may be recorded.

We use cookies to analyse website usage and improve functionality. Cookies store anonymised data, including truncated IP addresses. You may disable cookies in your browser settings without affecting access to the website.

11. Third-Party Links

Our website may contain links to third-party websites. Buckinghamshire Medical is not responsible for the content or privacy practices of external sites.

12. Enquiries and Complaints

If you have any questions, concerns, or complaints about how your personal information is used, please contact Buckinghamshire Medical directly (info@bucksmedical.co.uk)

You also have the right to raise concerns with the Information Commissioner’s Office (ICO):

Telephone: 0303 123 1113 Website: www.ico.org.uk