top of page
Man stretching.png

Privacy policy

​

Business Name: The Physio Box
Website: www.thephysiobox.co.uk
Email: info@thephysiobox.co.uk

 

1. Introduction

This Privacy Policy explains how The Physio Box collects, uses, stores, and protects your personal data in accordance with the UK GDPR and the Data Protection Act 2018.

2. Data We Collect

We may collect the following information:

  • Name, date of birth, and contact details

  • Medical history and treatment information

  • Payment information

  • Website usage data (via analytics tools)

3. How We Use Your Data

We use personal data to:

  • Provide physiotherapy assessment and treatment

  • Manage appointments and communication

  • Process payments

  • Maintain clinical records

  • Improve website performance

  • Meet legal and professional obligations

4. Lawful Basis for Processing

Our primary lawful bases include:

  • Consent

  • Contract (providing physiotherapy treatment to you)

  • Legal obligation (record keeping)

  • Legitimate interests (clinic administration)

5. Sharing of Personal Data

We do not share your personal data unless required for:

  • Referrals to your GP or other healthcare providers (with consent)

  • Insurance reporting (with consent)

  • Legal or safeguarding requirements

We never sell personal data.

6. Data Storage & Security

Your data is stored securely using:

  • Encrypted devices

  • Password protection and dual factor authentication where available

  • Secure clinical software (if applicable)

  • Locked cabinets for paper notes

7. Retention of Data

Physiotherapy records are kept for:

  • 8 years after last treatment (adults)

  • Until age 25 for children under 18
    After this, records are securely destroyed.

8. Your Rights

You have the right to:

  • Access your personal data

  • Rectify incorrect information

  • Request deletion (where appropriate)

  • Restrict or object to processing

  • Request data transfer

To exercise these rights, email info@thephysiobox.co.uk

9. Cookies

The website may use cookies to improve user experience and analyse website performance. You may disable cookies in your browser settings.

10. Complaints

If you believe your data rights have been breached, you can contact the Information Commissioner’s Office (ICO) at www.ico.org.uk.

11. Contact

For privacy-related enquiries, please email:
info@thephysiobox.co.uk

bottom of page