Privacy Policy
Privacy & Data Protection at Rosa Wellness Centre
When you share your personal information with us, we treat it with the utmost care and respect. Here’s how we manage and protect your data:
Why We Collect Your Information
We collect and store your details for two main reasons:
- Medical Obligation – We are legally required to keep clinical notes to provide you with safe, effective treatment.
- Communication – With your consent, we may contact you to confirm appointments or update you on matters related to your care. This is considered a Legitimate Interest under GDPR.
How Long We Keep Your Records
We are required by law to retain your records for:
- 8 years after your most recent appointment
- Until age 25 for children and young people (if under 18 when treated)
After this period, your records will be securely destroyed.
How Your Data is Stored
Your information is securely stored using:
- Cliniko – our practice management system
- Cloud-based backup systems, both fully GDPR-compliant
Access is strictly password-protected, and security measures are reviewed and updated regularly.
Who Has Access
Only those who need your information for your care and appointments will have access:
- Reception staff – to manage bookings and send reminders
- Your practitioner(s) – to provide safe, personalised treatment
We will never share your data without your written consent, unless legally required to do so.
Need More Information?
If you have any questions or concerns about how your data is handled, please don’t hesitate to contact us directly.