Who we are

Our website address is: https://brightgreenchiropractic.co.uk.

What personal data we collect and why we collect it

Contact forms

We take data from you when you fill out a contact form. This data includes, name, email address, phone number and the nature of your enquiry. This data is sent to a secure online email account that is access via password. The email account may be accessed via a mobile phone which is protected with a security key or via a Chromebook which also has password protection initiated. Once the information has been used to contact you it will be logged on our secure data storage platform internally and retained while you remain a client of Brightgreen Chiropractic. If you do not access our services you will be asked once if you want to join our newsletter subscription list and if you choose not to your data will be destroyed.

Cookies

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We use Google Analytics to analyse website data including traffic, goal completions, audience attributes. This data is quantitative and does not hold any personal identification string. It does mean that the website will cookie you to track your movements while on the website but that data remains anonymous at all times.

Please use the following if you wish to enhance your experience in any way:

 

 

 


Who we share your data with

We do not share your data with anyone unless we have sought your permission first. You may wish us to share your data with other service providers if we feel they could be beneficial in your treatment. We never share data without your prior consent.

How long we retain your data

If you fill out one of our contact forms we hold the data you enter for 60 days only if you do not enter our chiropractic services. If you opt into our newsletter we retain your name and email address that we retain while you are subscribed to the account.

What rights you have over your data

You can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Your data will not be stored unless we get in direct contact with you via email. In this instance your data will immediately be stored in a secure email platform. If you enter our services your data will then be stored in a secure online cloud platform. Any physical notes recorded during a consultation will be scanned into a computer, stored securely and shredded. All computers are password protected.

Your contact information

Your contact information will not be stored unless you enter our services. Any enquiries will be stored no longer than 60 days . If you respond to marketing communication your name and email address will be stored on a database in a secure online email platform (Mailchimp).

What data breach procedures we have in place

In the event that data is breached we will notify the effected parties immediately. A full investigation will be launched into what happened and third parties would be contacted for explanation. We have an appointed GDPR officer who will deal with any breaches and investigate them fully.