GDPR and Privacy Policy
Tip2Toe are committed to maintaining the trust and confidence of our visitors to our website. In particular, we want you to know that we never sell, rent or trade personal data or email lists with any other company. In this Privacy Policy, we’ve provided detailed information on when and why we collect your personal information, how we use it, the limited conditions under which we may disclose it to others and how we keep it secure.
Types of Data We Collect
Website Enquiries
When someone makes an enquiry via www.tip2toehealth.co.uk, the enquiry data will be stored on our system for a maximum period of 12 months when it will be destroyed. The data collected is only used for the purposes of handling the enquiry and will not be used for any other purpose. Data collected for the purposes of handling enquiries includes; Your Name, Your Email Address and the Enquiry Notes themselves.
Treatment Bookings
When someone makes a booking online via www.tip2toehealth.co.uk or by phone, we will store the data collected in our systems specifically for the purpose of providing the treatment and the data is kept for a period of 24 months to help with internal workload monitoring and also to aid any future treatments booked by the same customer. Data collected for the purposes of handling bookings includes; Your Name, Your Email Address, Your Mobile Number, The Treatment Name and any Notes provided by you.
A booking will always result in a call or an email being made by us to confirm treatment details and to check medical history. Any notes collected regarding medical history will also be kept on file within our booking system for health and safety reasons and so they can be referenced prior to any treatment being given.
Please be aware that if you send us any sensitive medical or health information then we will only hold and use this if we proceed to treatment at which time we will require explicit consent from you to continue to hold this data. If your booking does not proceed to treatment then this information will be erased.
Therapist Name: Lesley Cameron
Therapist Contact Details: Tel. 07966327257, Email info@tip2toehealth.co.uk
Google Analytics
When someone visits www.tip2toehealth.co.uk we use a third party service, Google Analytics, to collect anonymous aggregated standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.
Protecting Your Data
Tip2Toe takes the security of client data very seriously and we take every reasonable measure and precaution to protect and secure the personal, sensitive and general data that we process. We have robust information security policies and procedures in place to protect personal information from unauthorised access, alteration, disclosure or destruction and have several layers of security measures, including:
- SHA256 SSL data encryption between server and client browser
- Password protected access control to all client data
- Encryption of personal and sensitive data
- Physical protection of hosted data through secure data centre access control in data centres at London, Manchester and Brussels
Access to your Personal Information
You are entitled to view, amend, or request that personal information we hold about you be deleted. Email your request to our data protection officer Lesley Cameron at info@tip2toehealth.co.uk.
Data Sharing
As part of providing our services to You your data may be shared with the following GDPR compliant suppliers for the sole purpose of providing our services:
- Altido Group Limited - Processing enquiries, bookings, customer and relationship data
- LCN.com - Processing of emails
- PayPal.co.uk - Processing PayPal payments
- Stripe.com - Processing debit and credit card payments
Data Breaches
Following GDPR guidelines, Tip2Toe have a notification process in place for any data breach.
Employee Training
Tip2Toe understands that continuous employee awareness and understanding is vital to the continued compliance of the GDPR and we have committed to provide full and detailed training to all our employees going forward.
Changes to this Privacy Notice
This privacy policy was last reviewed on 25th April 2018 and will be periodically reviewed to ensure Tip2Toe comply with GDPR updates, other legal requirements and security updates.