Privacy, GDPR & Disclaimer Policy

Effective: 2nd February 2026

North Bristol Home Physio is committed to protecting your privacy and ensuring personal information is handled lawfully, safely, and transparently in accordance with:

UK General Data Protection Regulation (UK GDPR)
Data Protection Act 2018
Professional regulatory standards
CQC expectations

This policy explains how we collect, use, store, and protect personal information, and your rights regarding your data.

Data Controller

North Bristol Home Physio acts as the Data Controller for personal data collected in connection with physiotherapy services.

1. Information We Collect

To provide safe and effective physiotherapy care, we may collect:

Personal Details
- Name
- Date of birth
- Address
- Telephone number
- Email address
- Emergency contact details

Health Information
- Medical history
- Assessment findings
- Treatment records
- Referral information
- Medication information
- Clinical notes

This includes special category health data under UK GDPR.

Payment Information
- Where applicable, payment or invoicing information.

Communication Records
- Appointment correspondence, emails, and feedback.

2. How Information Is Collected

Information may be collected through:

Telephone or email enquiries
Website contact forms
Referral from healthcare professionals
Assessment and treatment sessions
Communication with you or your representatives

3. Lawful Basis for Processing

We process personal data under UK GDPR lawful bases:

Article 6(1)(b) – Contractual necessity (to provide services you request)
Article 6(1)(c) – Legal obligations, including clinical record keeping
Article 6(1)(f) – Legitimate interests in operating and managing our service
Article 9(2)(h) – Provision of health or social care and treatment

4. How We Use Your Information

Your information is used to:

Arrange and manage appointments
Provide safe assessment and treatment
Maintain clinical records
Communicate regarding your care
Process payments or invoices where necessary
Ensure continuity and safety of care

5. Data Storage & Security

We take appropriate technical and organisational measures to protect your data.

Electronic records are stored in encrypted, password-protected systems
Paper records, where used, are stored securely with controlled access
Paper records are digitised and securely destroyed where possible

Data Retention

Healthcare records are retained for a minimum of 8 years after last treatment, or longer where legally required, after which data is securely destroyed.

Records relating to children may be retained until the patient reaches age 25 in line with healthcare record guidance.

Data Breaches

Procedures are in place to manage data breaches, including notification to the Information Commissioner’s Office (ICO) where required.

6. Sharing of Information

Information is only shared when necessary and appropriate:

With healthcare professionals involved in your care
When required by law or safeguarding concerns
With insurers or third parties where consent has been provided

All third parties are required to comply with data protection requirements.

We never sell personal data.

7. Your Rights

Under UK GDPR, you have the right to:

Access your personal data
Correct inaccurate information
Request deletion (subject to legal record-keeping obligations)
Restrict or object to processing in certain circumstances
Request data portability where applicable
Lodge a complaint with the Information Commissioner’s Office (ICO)

Requests are normally free of charge, and we aim to respond within one month.

Information Commissioner’s Office (ICO) - Website: www.ico.org.uk - Helpline: 0303 123 1113

8. Confidentiality

All information shared with North Bristol Home Physio is treated confidentially. Information will not be disclosed without consent unless required by law or necessary to protect safety.

9. Contact Details

For questions or data requests, contact:

North Bristol Home Physio
Emma Pilkington

Email: info@northbristolhomephysio.co.uk
Telephone: 07438 183546

10. Policy Updates

This policy may be updated periodically to reflect changes in legislation or service practice. The most recent version is available on request or via our website.

11. Privacy Policy Notice

This Privacy & Data Protection Policy explains how personal data is handled when using North Bristol Home Physio services. A copy is available on request or via our website.

Disclaimer

This disclaimer should be read alongside our Privacy & Data Protection Policy.

North Bristol Home Physio is committed to handling personal information safely, lawfully, and transparently, in line with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and relevant professional and regulatory guidance.

Information provided by North Bristol Home Physio, whether verbally, in writing, on this website, or through associated materials, is intended for general information and support purposes only and does not replace medical advice, diagnosis, or treatment from a medical practitioner or appropriate healthcare professional.

Physiotherapy Services

All physiotherapy assessments, advice, and treatment provided by North Bristol Home Physio are delivered by a qualified and registered physiotherapist and are tailored to the individual, based on information available at the time of assessment.

Responses to physiotherapy vary between individuals, and no guarantees can be made regarding specific outcomes or recovery times.

Physiotherapy advice should not be considered a substitute for medical assessment or treatment where medical investigation or care is required. Clients are advised to consult their GP, consultant, or appropriate healthcare professional if symptoms are new, worsening, or concerning.

Medical Emergencies

North Bristol Home Physio does not provide emergency or urgent medical services.

If you experience sudden or severe symptoms, including but not limited to chest pain, severe breathlessness, loss of consciousness, stroke symptoms, or acute neurological changes, you should seek immediate medical assistance by contacting emergency services or attending an Accident & Emergency department.

Accuracy of Information

Reasonable steps are taken to ensure information provided is accurate and up to date. However, North Bristol Home Physio cannot accept responsibility for outcomes resulting from reliance on general information provided outside a formal physiotherapy assessment and treatment session.

Exercise and Self-Management Advice

Exercises, techniques, and self-management strategies are provided based on clinical assessment. Clients are advised to follow guidance provided and stop any activity that causes unexpected pain, discomfort, or concern, and seek further professional advice where required.

External Links and Resources

Links to external websites or resources may be provided for information purposes only. North Bristol Home Physio has no control over external content and accepts no responsibility for the accuracy, availability, or data handling practices of external websites. Users are encouraged to review the privacy policies of any external sites visited.

Limitation of Liability

North Bristol Home Physio accepts responsibility for services delivered in accordance with professional standards. Liability cannot be excluded where injury or loss results from negligence or where exclusion of liability is not permitted under applicable law.

Changes to This Disclaimer

This disclaimer may be updated periodically to reflect changes in legislation, professional guidance, or service provision. The most recent version will be available on request or via our website.

Contact

For questions regarding this disclaimer or services provided, please contact:

North Bristol Home Physio
Email: info@northbristolhomephysio.co.uk
Telephone: 07438 183546

This disclaimer supports transparency and safe practice and should be read alongside the Privacy & Data Protection Policy.