0333 210 2146

info@theprivatemedicalgroup.co.uk

Privacy Policy

Privacy Policy

Last updated: 21/06/2025

The Private Medical Group is committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This privacy policy explains how we collect, use, store, and protect your personal data when you use our services.

  1. Who We Are

The Private Medical Group
Registered Address: 7- The Avenue, Eastbourne, East Sussex, BN21 3YA
Phone: 0333 2102146
Email: info@theprivatemedicalgroup.co.uk
Data Protection Officer: Operations Manager
ICO Registration Number: ZB826393

We are a registered healthcare provider regulated by the Care Quality Commission (CQC).

  1. What Information We Collect

We collect the following personal information to provide safe and effective care:

Personal Data:

  • Name, date of birth, address, phone number, email
  • NHS number (if applicable)
  • Emergency contact details
  • Payment and billing details (for private patients)

Health Information (Special Category Data):

  • Medical history and health conditions
  • Medications and allergies
  • Treatment plans and progress notes
  • Diagnostic images (e.g. mole mapping, scans, photographs)
  • Correspondence with other healthcare providers
  1. Why We Collect Your Data

We collect and process your personal and health data to:

  • Provide medical care and treatment
  • Keep accurate and up-to-date medical records
  • Communicate with you about appointments and care
  • Refer you to other healthcare providers where necessary
  • Meet our legal, regulatory, and professional obligations
  • Process payments and manage accounts
  1. Lawful Basis for Processing

Under the UK GDPR, we process your data based on the following lawful bases:

  • Article 6(1)(b) – Contract (providing care and treatment)
  • Article 6(1)(c) – Legal obligation (e.g. CQC regulations)
  • Article 6(1)(f) – Legitimate interests (clinical audits, service improvement)
  • Article 9(2)(h) – Provision of health or social care
  1. How We Store Your Data

Your data is stored securely using encrypted practice management systems (e-Clinic) and secure servers. We do not collect or store paper records . We retain data in line with:

  • CQC requirement
  1. Sharing Your Information

We only share your data when necessary and with your consent (unless required by law), including:

  • GPs, consultants, or hospitals involved in your care
  • Pathology/laboratory services
  • Regulators (e.g. CQC, ICO) when required
  • Our IT and administrative service providers (under strict contracts)

We do not share your data for marketing or with third parties unrelated to your care.

  1. Your Rights

You have the right to:

  • Access your medical records
  • Correct inaccuracies
  • Request deletion of your data (where applicable)
  • Restrict or object to processing
  • Data portability (where relevant)
  • Withdraw consent (if processing is based on consent)
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

ICO contact: www.ico.org.uk | Tel: 0303 123 1113

  1. Website and Cookies

If you use our website, we may collect limited personal data via forms or cookies. Our cookie policy is available [insert link].

  1. How to Contact Us

If you have any questions or concerns about this privacy policy or how your data is used, please contact:

The Private Medical Group – Data Protection Lead
Email: info@theprivatemedicalgroup.co.uk
Phone: 0333 2102146

  1. Policy Updates

We may update this policy periodically. The latest version will always be available in-clinic and on our website.