Last updated 4th March 2026
1. Introduction
This Privacy Policy explains how [Carespine Ltd] collects, uses, and protects your personal information when you use our website [www.carespine.co.uk] or contact us.
We are committed to protecting your personal data and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Data controller
The dtat controller responsible for your personal data is:
Carespine Limited
29 Howard Street
NorthShields NE30 1AR
UK
Email: spinesurgeon@outlook.com
If you have any questions about this policy or your data, please contact us using the details above.
3. Information we collect
We may collect and process the following personal information:
Information you provide directly
When you complete an enquiry form or contact us, we may collect:
- Name
- Email address
- Telephone number
- Information contained within your enquiry message
We advise you not to include detailed medical information in the website enquiry form.
Automatically collected information
When you use our website, we may collect:
- IP address
- Browser type and device information
- Pages visited and time spent on the website
This information is used to improve website performance and user experience.
4. How we use your information
We use your personal information to:
- Respond to enquiries submitted via our website
- Provide information about appointments or services
- Improve our website and services
- Comply with legal and regulatory requirements
We will only use your personal data when permitted under UK data protection law.
5. Legal basis for processing
We process personal data under the following lawful bases:
Consent
Where you provide information through our website enquiry form and consent to us contacting you.
Legitimate Interests
To respond to enquiries and manage communications with patients or potential patients.
Legal Obligations
Where required to comply with healthcare regulations or legal requirements.
6. Sharing information
We do not sell your personal data. Your information may be shared with:
- Healthcare providers involved in your care (if relevant)
- Secure IT and website service providers
- Legal or regulatory authorities where required by law
- All third parties are required to respect the security of your personal data.
7. Data security
We take appropriate technical and organisational measures to protect your personal data from:
- Unauthorised access
- Loss
- Misuse
- Disclosure
However, no internet transmission is completely secure.
8. Data retention
We retain enquiry information only for as long as necessary to respond to your enquiry and maintain appropriate records.
If you become a patient, your data will be retained in accordance with medical record retention requirements.
9. Your rights
Under UK GDPR, you have the right to:
- Access your personal data
- Request correction of inaccurate data
- Request deletion of your data (where applicable)
- Restrict processing of your data
- Object to processing
- Request transfer of your data (data portability)
To exercise these rights, please contact us using the details above. You also have the right to complain to the Information Commissioner’s Office (ICO).
ICO contact:
https://www.ico.org.uk
10. Cookies
Our website may use cookies to improve user experience and analyse website traffic.
You can control cookie settings through your browser.
11. Third-party links
Our website may contain links to external websites.
We are not responsible for the privacy practices of those sites.
12. Changes to this policy
We may update this Privacy Policy from time to time.
The latest version will always be available on our website.