Privacy PolicY

Privacy Policy for Rapha Physio

Effective Date: 11.06.2025

At Rapha Physio, your privacy is important to us. This Privacy Policy outlines how we collect, use, store, and share your personal information when you interact with our services, website, or contact us directly.

1. Data Controller

The data controller responsible for your personal information is:

Carolina Murineanu
Rapha Physio
Email: info@raphaphysio.com

If you have any questions or concerns about how we handle your data, you can contact us at the email address above.

2. What Information We Collect

We may collect the following types of personal data:

• Name, date of birth, and contact information (email, phone number, address)

• Medical history and treatment details

• Payment and appointment details

• Communications with us via email, phone, or website contact forms

3. How We Use Your Data

We use your personal data to:

• Provide physiotherapy and related healthcare services

• Schedule and manage appointments

• Maintain clinical records in line with legal and professional obligations

• Communicate with you about your care

• Comply with regulatory requirements

4. Sharing Your Data

We use Cliniko, a third-party practice management system, to securely store and manage client data, including appointment information and clinical notes.

You can read Cliniko’s full Privacy Policy here:
https://www.cliniko.com/policies/privacy/

Cliniko is fully GDPR-compliant and stores your data on secure servers.

We do not sell or rent your personal information to third parties. Your data will only be shared with others if legally required or with your explicit consent.

5. Your Rights

Under the UK GDPR and Data Protection Act 2018, you have the right to:

• Access your personal data

• Request correction of inaccurate or incomplete data

• Request deletion of your data (subject to legal obligations)

• Object to or restrict certain data processing

• Lodge a complaint with the Information Commissioner’s Office (ICO)

6. Data Retention

We retain your information only for as long as necessary to fulfil our legal, medical, and regulatory obligations. Typically, this will be for a minimum of 8 years after your last appointment, as required by healthcare regulations.

7. Security

We take reasonable steps to protect your personal information from loss, misuse, and unauthorised access, including the use of secure systems and encrypted communications.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page and, where appropriate, notified to you by email.

If you have any questions or concerns about your privacy or this policy, please contact us at:

Carolina Murineanu
Email: info@raphaphysio.com