Privacy Policy

Who we are

Our website address is: https://glasgowprivateclinic.co.uk.

Privacy Policy
Last updated: [Insert date]

  1. Introduction
    Welcome to Glasgow Private Clinic (“we”, “us”, “our”). We are committed to protecting and respecting your privacy. This privacy policy explains how we collect, use, disclose and safeguard your personal data in compliance with the UK GDPR and the Data Protection Act 2018. By accessing or using our website (https://glasgowprivateclinic.co.uk

) and any related services, you consent to the data practices described herein.

  1. Data Controller
    Glasgow Private Clinic
    224-226 Ayr Road,
    Newton Mearns, G77 6DR
    info@glasgowprivateclinic.co.uk
    Phone: 0141 384 2485

We are the data controller responsible for your personal data.

  1. Personal Data We Collect
    We may collect, use, store and transfer different kinds of personal data about you, including:
  • Identity data: name, date of birth, gender, title.
  • Contact data: postal address, email address, telephone number.
  • Health/medical data (where relevant): for patients, information about your medical history, treatments, prescriptions, test results, health conditions.
  • Transaction data: services you have purchased from us, payment method details (card details are processed via a third party and we do not store full card numbers).
  • Technical data: IP address, browser type/preferences, device type, operating system, pages visited on our website, referral URL, time and date of access, click-stream data.
  • Marketing and communications data: your preferences in receiving marketing from us and your communication preferences.
  1. How We Collect Your Data
    We use different methods to collect personal data including:
  • Direct interactions: when you make enquiries, book appointments, register with us, complete forms on our website, send us emails or phone us.
  • Automated technologies or interactions: when you use our website, we may automatically collect technical data via cookies, server logs, analytics services.
  • Third parties or publicly available sources: e.g., analytics providers, referral sources, medical professionals you have authorised, previous healthcare providers (where applicable and with your consent).
  • Halaxy Booking system :https://www.halaxy.com/article/privacy-eu
  • 123 ContactForm: https://www.123formbuilder.com/termsofservice.html#data-privacy
  1. Purposes for Processing Your Data & Lawful Basis
    We will only process your personal data when we have a lawful basis to do so. The main purposes we process your data for include:
  • To provide you with our healthcare services and manage your treatment, appointments, records and follow-ups (lawful basis: performance of a contract and/or provision of health care, and where necessary for medical diagnosis and treatment).
  • To respond to enquiries and communicate with you (lawful basis: legitimate interests and/or consent).
  • To process payments and keep records of services provided (lawful basis: performance of a contract).
  • To improve our website and services via analytics and technical monitoring (lawful basis: legitimate interests).
  • To comply with legal or regulatory obligations (lawful basis: compliance with legal obligation).
  • To send you marketing communications (lawful basis: consent or legitimate interests — you will have the right to opt-out).
  1. Sharing Your Data
    We may share your personal data with:
  • Other medical/healthcare professionals, laboratories, pharmacies or specialists involved in your treatment (with your consent or as necessary for your care).
  • Our third-party service providers (e.g., IT hosting providers, analytics providers, payment processors) who provide services on our behalf and are bound by data-protection obligations.
  • Regulatory, legal or governmental authorities, if required by law (e.g., for health records, audits, inspections).
  • In the event of a business restructuring or sale of assets, your data may be disclosed to the purchaser (subject to confidentiality and appropriate protections).
    We do not sell your personal data to third-parties for marketing purposes.
  1. International Transfers
    Where we transfer your personal data outside the UK/EEA, we ensure appropriate safeguards are in place (e.g., standard contractual clauses, adequacy decisions) to ensure your data remains protected in accordance with the GDPR.
  2. Data Retention
    We will retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including the purposes of satisfying any legal, accounting, or reporting requirements.
    For example:
  • Medical/healthcare records: retained in accordance with medical/health-care professional guidelines.
  • Financial/accounting records: retained in accordance with tax and accounting laws.
  • Marketing data: until you opt-out or withdraw consent.
    After the retention period ends, data will be securely deleted or anonymised.
  1. Your Rights
    Under the GDPR and UK data protection law you have a number of rights in relation to your personal data, including the right to:
  • Request access to your personal data (a “subject access request”).
  • Request correction of your personal data if it is inaccurate or incomplete.
  • Request erasure of your personal data (in certain circumstances).
  • Request restriction of processing of your data (in certain circumstances).
  • Request transfer of your data to another organisation (data portability) in certain circumstances.
  • Object to processing of your data where we rely on legitimate interests (in certain circumstances).
  • Withdraw your consent at any time where we are relying on consent to process your data.
  • Lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data has been mishandled – contact details: https://ico.org.uk

If you wish to exercise any of these rights, please contact us using the contact details above. We may ask you to verify your identity before responding.

  1. Cookies & Tracking Technologies
    We use cookies and similar tracking technologies on our website. Cookies are small text files placed on your device. They help us to provide, secure and improve our services, to understand usage patterns, and to personalise your experience. You can control cookies via your browser settings and other tools. Our cookie banner (if shown) provides further detail about the types of cookies we use (e.g., essential cookies, analytics cookies, marketing cookies).
  2. Security
    We take the security of your personal data seriously. We have implemented appropriate technical and organisational measures to protect your data against unauthorised or unlawful processing, accidental loss, destruction or damage. These include secure servers, firewalls, access controls, encryption where applicable, staff training, and regular reviews of our practices.
  3. Changes to This Privacy Policy
    We may update this privacy policy from time to time (e.g., to reflect changes in our business, law, or data-processing practices). We will publish any changes here and update the “Last updated” date above. We encourage you to review the policy periodically.
  4. Contact Us
    If you have any questions, concerns or requests regarding this privacy policy or how we handle your data, please contact:
    Email: info@glasgowprivateclinic.co.uk
    Phone: 0141 384 2485]
    Address: 224-226 Ayr Rd, Newton Mearns, Glasgow G77 6DR

Thank you for trusting Glasgow Private Clinic with your personal data.