GDPR Privacy Policy AHDC
HomeGDPR Privacy Policy AHDC

Privacy Statement

This privacy policy sets out how Aldgate House Dental Care uses and protects any information that you give when you use this website.

Aldgate House Dental Care is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.

This policy complies with:

  • UK General Data Protection Regulation (UK GDPR)
  • Data Protection Act 2018
  • Privacy and Electronic Communications Regulations (PECR)
  • EU GDPR (where applicable)

Our practice is registered with the Information Commissioner’s Office (ICO) and regulated by the Care Quality Commission (CQC). We comply with all relevant requirements regarding the handling of patient and website data.

What information we collect and how

Using our website, forms, or communication channels, we may collect the following information:

  • Name
  • Contact information including email address and phone number
  • Demographic information such as postcode, preferences, and interests
  • Information relevant to customer surveys and/or offers
  • Details of enquiries, feedback, or correspondence (including email, phone, or social media)
  • Website usage data (via cookies and analytics tools)

We collect this information either:

  • Directly from you (e.g. forms, emails, enquiries)
  • Indirectly (e.g. cookies, website usage data)

What we do with the information we gather

We require this information to understand your needs and provide you with a better service, including:

  • Internal record keeping
  • Improving our products and services
  • Responding to enquiries and communications
  • Customising the website according to your interests
  • Sending promotional emails about new services, offers, or updates (where consent or legitimate interest applies)
  • Market research purposes

Legal basis for processing

Under UK GDPR, we rely on the following legal bases:

  • Consent – where you have agreed to receive marketing or communications
  • Contract – where processing is necessary to provide services you request
  • Legal obligation – to comply with regulatory requirements
  • Legitimate interests – to improve our services and manage our business

Patient Records

As a dental practice, we maintain patient records in accordance with legal and regulatory obligations, including CQC requirements.

  • Patient data may be held electronically or in paper format
  • All records are kept securely and confidentially
  • Access is restricted to authorised personnel only

How we use cookies

A cookie is a small file placed on your device when you use our website.

We use cookies to:

  • Analyse website traffic (e.g. via Google Analytics)
  • Improve website functionality
  • Tailor content to your preferences

Cookies do not give us access to your computer or personal information beyond what you choose to share.

You can choose to accept or decline cookies via your browser settings. More details are available in our Cookie Policy.

Analytics and Advertising

We may use third-party analytics tools (such as Google Analytics) to understand how visitors use our website.

We may also work with marketing providers who use cookies or similar technologies to deliver relevant advertising.

These third parties operate under their own privacy policies, and we do not control their data practices. 

What we do with your information

Any personal information we collect will be used in accordance with UK GDPR and the Data Protection Act 2018.

We will not sell your personal data. We may share it with:

  • Trusted third-party service providers (e.g. IT systems, marketing tools)
  • Healthcare professionals or insurers where necessary
  • Regulatory or legal authorities where required

All third parties are required to comply with data protection laws.

Controlling your personal information

You have the following rights under data protection law:

  • The right to access your personal data
  • The right to correct inaccurate data
  • The right to request deletion (where applicable)
  • The right to restrict or object to processing
  • The right to data portability
  • The right to withdraw consent at any time

If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by:

  • Clicking the unsubscribe link in emails
  • Contacting us directly

Access to your information

You may request details of personal information which we hold about you (Subject Access Request).

To request a copy of your data, please email: aldgatehdc@gmail.com

We will respond within one month, in accordance with UK GDPR.

Data retention

We retain personal data only for as long as necessary:

  • Website and enquiry data – retained for operational purposes
  • Patient records – retained in line with legal and regulatory requirements

Data is securely deleted or anonymised when no longer required.

Security

We are committed to ensuring that your information is secure. We have implemented suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect.

Data breaches 

In the event of a data breach:

  • We will investigate and take appropriate action
  • Where required, we will notify the ICO within 72 hours
  • Affected individuals will be informed if there is a high risk

Other websites

This privacy policy only covers this website. Any other websites linked from our site are subject to their own privacy policies.

Changes to this policy

We may update this policy from time to time by updating this page.

All the patient should check this page periodically to ensure they are happy with any changes.

Contact us

If you have any questions about this privacy policy or your personal data, please contact us via:

Accessibility

If you require this policy in another format (e.g. large print, audio), please contact us.

instagram whatsapp-icon