Privacy Policy

Last reviewed: January 2026

This Privacy Policy describes how and when I collect, use, and share information when you attend an appointment at my clinic, purchase a product, contact me, or otherwise use my services. It complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

About me

I am a State Registered Podiatrist and Member of the Health and Care Professions Council. As a private practitioner, I diagnose and treat health conditions in line with the appropriate professional governing bodies. I am a member of the College of Podiatry.

What information I collect

To provide treatment or fulfil a purchase, you'll typically provide me with information such as:

• Your name, date of birth, and contact details
• Postal address
• Email address and telephone number
• Medical history relevant to your treatment
• Payment information (cards processed via my payment provider — I do not store card details)

I only collect information that is needed to provide the service you require. I do not sell or broker your personal data.

How I use your information

Your information is used to:

• Diagnose and treat your foot health conditions
• Maintain accurate clinical records for continuity of care
• Contact you about appointments and follow-ups
• Comply with legal, regulatory, and professional obligations
• Process payments and issue receipts

Who I share your information with

I share your personal information only in limited circumstances:

• Medical professionals. With your consent, I may share information with your GP or consultant to support continuity of care.
• Service providers. Trusted third parties who help run the practice (such as external reception services or my electronic patient record provider) may have limited access, only to the extent necessary.
• Legal compliance. I may share information where required by law, court order, or to enforce my agreements.
• Business transfers. If I sell or merge my practice, your information may be disclosed as part of that transaction, only as permitted by law and with your consent where required.

How long I keep your information

I retain personal information only as long as necessary to provide my services and to meet legal obligations. Specifically:

• Adult patients — clinical records held for a minimum of 8 years after your last appointment, in line with podiatry record-keeping guidelines.
• Children — records retained until the patient reaches the age of 25.
• Product purchases (non-patients) — records held for at least 6 years to meet HMRC tax requirements.

All records are reviewed and updated annually.

How your information is protected

Patient records are stored on a password-protected, encrypted electronic patient record system. Paper records, where they exist, are kept securely on premises. I take appropriate technical and organisational measures to protect your data against loss, misuse, and unauthorised access.

Your rights

Under UK GDPR you have the right to:

• Request a copy of the personal information I hold about you
• Ask me to correct inaccurate information
• Ask me to delete your information, subject to my legal record-keeping obligations
• Withdraw consent for marketing communications at any time
• Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk

Cookies

This website uses minimal cookies, only those required for the site to function. I do not use tracking or advertising cookies.

Contact

For any questions about this policy or to exercise any of your rights, please contact me:

Email: jemma@jemsfootcare.co.uk
Phone: 07818 438552