• Home
  • Services
  • The Team
  • Testemonials
  • Contact Us
  • Cancellation Policy
  • Privacy Policy

Privacy Policy

Privacy & Cookie Policy

Elevate Performance Healthcare
Effective date: 01/10/2025


At Elevate Performance Healthcare, we are committed to protecting and respecting your privacy. This Privacy & Cookie Policy explains how we collect, use, store, and protect your personal data when you use our website www.elevateperformancehealthcare.co.uk or our services.

We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws.


What Data We Collect

We may collect and process the following categories of personal data:

Personal identification data: name, date of birth, contact details (phone number, email, address).

Health information: medical history, treatment notes, referrals,      and any information you provide relevant to physiotherapy care (special category data under GDPR).

Payment information: billing details, payment method, transaction history.

Technical data: IP address, browser type, device information, cookies, and analytics data when you visit our website.

Communication data: emails, phone calls, or messages exchanged with us.


How We Use Your Data

We will use your personal data only for purposes permitted by law, including:

To provide physiotherapy treatment and healthcare services.

To manage appointments, bookings, and patient records.

To communicate with you (e.g., reminders, follow-ups, responding to queries).

To process payments and maintain financial records.

To comply with legal and regulatory obligations (such as medical record-keeping).

To improve our services and website performance (through analytics).

With your consent, to send updates, news, or marketing information about our services.


Legal Bases for Processing

We rely on the following legal grounds under GDPR:

Consent – where you have given explicit consent (e.g., receiving marketing emails or accepting cookies).

Contract – processing necessary to deliver treatment and services you request.

Legal obligation – maintaining health records as required by healthcare regulators.

Legitimate interests – ensuring the effective running of our practice and website.

Special category data – health information is processed under Article 9(2)(h) GDPR (provision of health or social care).


Data Sharing and Third Parties

We will never sell your data. We may share personal data with:

Healthcare professionals involved in your treatment (with your consent or where legally required). 

Service providers (e.g., website hosting, IT support, booking software, payment processors). 

Regulatory or legal authorities to which we are mandated to report by law. 

All third parties are required to keep your information secure and comply with GDPR.


Data Retention

Health records: retained for the period required by UK law (currently 8 years from the date of last treatment, or until a child turns 25, whichever is later).

Other data: retained only as long as necessary for the purpose collected.


Your Rights Under GDPR

You have the following rights:

Right to access your personal data.

Right to rectification (correction of inaccurate data).

Right to erasure (“right to be forgotten”) in certain circumstances.

Right to restrict processing.

Right to data portability.

Right to object to processing (including marketing).

Right to withdraw consent at any time (where consent is the basis for processing).

To exercise these rights, please contact us.


Cookie Policy

What Are Cookies?

Cookies are small text files placed on your device when you visit our website. They help us provide a better browsing experience, understand how visitors use our site, and support certain functions (such as booking forms or remembering preferences).


Types of Cookies We Use

Strictly Necessary Cookies: essential for the website to function (e.g., security, booking forms).

Performance & Analytics Cookies: Collect anonymous data on how visitors use our site (e.g., Google Analytics) so we can improve it.

Functionality Cookies: remember your preferences (such as language or location settings).

Marketing & Third-Party Cookies: may be used, with your consent, for targeted advertising or social media integration.


Managing Cookies

On your first visit, you will be asked to set your cookie preferences via a cookie consent banner. You can change or withdraw your consent at any time by adjusting your browser settings or cookie preferences.

Please note: disabling certain cookies may affect website functionality.


Third-Party Services

We may use third-party services (e.g., Google Analytics) that set cookies on our website. These providers have their own privacy and cookie policies.


Data Security

We implement appropriate technical and organisational measures to protect your data against loss, misuse, or unauthorised access. Access to health records is strictly limited to authorised personnel only.


Children’s Privacy

We do not knowingly collect personal information from children under the age of 16 without obtaining prior parental or guardian consent.


Contact Information

If you have any questions or wish to exercise your rights, please contact us:

Data Protection Officer (DPO)
Elevate Performance Healthcare
Director: Tom Dell
Email: tom@elevateperformancehealth.co.uk
If you are not satisfied with our response, you also have the right to complain to the Information Commissioner’s Office (ICO): www.ico.org.uk.


Updates to This Policy

We reserve the right to update this Privacy & Cookie Policy from time to time. The latest version will always be available on our website with the “Effective Date” noted at the top.

Copyright © 2025 Elevate Performance Healthcare - All Rights Reserved.

  • Privacy Policy

This website uses cookies.

We use cookies to analyse website traffic and optimise your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.

DeclineAccept