Your privacy and patient confidentiality are important to both you and me.

I am registered with the Information Commissioners Office and fully compliant with GDPR regulations.

I am a member of the British Acupuncture Council and have full professional indemnity and public liability insurance.

The General Medical Council ethical guidelines allow doctors to refer their patients to members of this professional body.

Members of the British Acupuncture Council are regulated by the Professional Standards Authority.

What information do I collect and process from you?

In order to deliver a high standard of care I will need to collect detailed information about your health, lifestyle and other factors which affect your overall wellbeing. This is in order to make a diagnosis and treat you effectively.

In addition to this I will collect and store your name address and contact details, financial information (if you paid online or by card) and website user statistics.

The UK General Data Protection Regulation states that I must have your consent for this- you may withdraw it at anytime by contacting me at acupiper@icloud.com.

How and why do I collect this information?

Prior to your first appointment: I will contact you via email with information about your first appointment. You will also receive appointment scheduling emails. I need your contact details in case we need to reschedule and appointment or I want to update you on anything relating to your treatment.

At your appointments: To ensure I have all the information I need to diagnose you I will initially carry out a “Full Traditional Diagnosis” where I will ask you questions relating to your health and lifestyle and the condition you’ve come to have treated. As treatment progresses we will review and update this information to keep your treatments relevant to your current condition

What happens to your data?

All of your data will be stored in an encrypted cloud account and can only be accessed by me (Jude Piper) using an MFA (MultiFactorial Authentication) secured account. Any data synced and worked on locally will be protected through an encrypted local hard drive. No data will be stored or transferred using any type of removable medium. All devices used to access the data enforce password protection, have login timeouts and password protected screen savers. My login details are never shared or accessed by anyone else.

I am legally obliged to retain you records for seven years after your last treatment, in the case of minors, records must be kept until the patient reaches the age of twenty-five (seven years after reaching age eighteen). After this time they will be permanently deleted.

Will my data be shared with anybody?

I will not share your data with anybody else unless I have a legal obligation to do so. In this instance I will require your consent.

What if I need to complain?

If you are concerned about how your data is being used you can contact me at acupiper@icloud.com, or if you wish to contact the Information Commissioner’s Office regarding this they can be reached at www.ico.org.uk.