Effective Date: 20th March 2026
Last Updated: 26 March 2026
1. Who We Are
Podia Health (“we”, “us”, “our”) is a healthcare provider specialising in podiatry and related services. We are the data controller responsible for your personal data.
Contact Details:
Podia Health
LUMANERI HOUSE BLYTHE GATE, BLYTHE VALLEY PARK, SOLIHULL, WEST MIDLANDS, ENGLAND, B90 8AH
Email: info@podiahealth.co.uk
2. Purpose of This Privacy Policy
This Privacy Policy explains how we collect, use, store, and protect your personal data when you:
Visit our website: https://www.podiahealth.co.uk/
Use our services
Contact us or submit enquiries
Under UK GDPR, we must ensure your data is processed lawfully, fairly, and transparently.
3. What Personal Data We Collect
We may collect and process the following categories of personal data:
a) Identity & Contact Data
Name
Email address
Phone number
Address
b) Health & Medical Data (Special Category Data)
Medical history
Treatment records
Clinical notes
Medication details
c) Technical Data
IP address
Browser type and version
Website usage data (via cookies)
d) Communication Data
Enquiries submitted via forms
Emails and correspondence
Healthcare data is classified as special category data, requiring additional protection.
4. How We Collect Your Data
We collect data through:
Direct interactions (forms, bookings, consultations)
Automated technologies (cookies, analytics tools)
Referrals or other healthcare professionals (with consent where required)
5. How We Use Your Data
We use your data to:
Provide medical assessment and treatment
Manage appointments and patient records
Communicate with you regarding your care
Improve our website and services
Meet legal and regulatory obligations
6. Lawful Basis for Processing
Under UK GDPR, we rely on the following lawful bases:
Article 6(1)(b) – Contract (providing healthcare services)
Article 6(1)(c) – Legal obligation
Article 6(1)(f) – Legitimate interests (e.g. service improvement)
Article 9(2)(h) – Provision of healthcare (for medical data)
7. Data Sharing
We may share your data with:
Healthcare professionals involved in your care
IT and service providers (e.g. booking systems, hosting providers)
Regulatory bodies where required by law
We do not sell your personal data to third parties.
8. Data Retention
We retain your data only as long as necessary:
Medical records: typically minimum 7 years after last treatment (or longer where required)
Website enquiry data: retained only as needed to respond and manage enquiries
9. Data Security
We implement appropriate technical and organisational measures to protect your data, including:
Secure systems and encrypted storage
Restricted access to sensitive information
Staff confidentiality obligations
10. Your Rights Under UK GDPR
You have the right to:
Access your personal data
Correct inaccurate data
Request deletion (where legally applicable)
Restrict or object to processing
Data portability
Withdraw consent at any time
You also have the right to lodge a complaint with the
Information Commissioner's Office (ICO).
11. Cookies & Website Tracking
Our website may use cookies and analytics tools to:
Improve user experience
Understand website performance
You can manage cookie preferences via your browser settings.
12. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for their privacy practices.
13. Children’s Data
We only process children’s data where necessary for treatment and with appropriate parental or guardian consent.
14. Data Transfers Outside the UK
Where data is transferred outside the UK, we ensure appropriate safeguards are in place (e.g. standard contractual clauses).
15. Changes to This Policy
We may update this Privacy Policy periodically. Changes will be posted on this page with an updated revision date.
16. Contact Us
If you have any questions about this Privacy Policy or your data, please contact:
Email: info@podiahealth.co.uk