Myway Clinic (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read this policy carefully to understand our views and practices regarding your personal data and how we will treat it.

This privacy policy complies with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

1. Who We Are

Myway Clinic is a private healthcare service registered in England and Wales. Our registered address is Chadderton Way, Oldham, Greater Manchester, OL9. We are the data controller for the personal information you provide to us through this website.

If you have questions about this policy or wish to exercise your rights, contact us at: info@mywayclinic.co.uk or call 0161 637 0105.

2. What Information We Collect

We may collect and process the following personal data:

Identity data: your full name
Contact data: email address, telephone number
Health-related data: the service you are enquiring about, any relevant information you voluntarily include in messages
Booking data: preferred appointment date, time, and location
Technical data: IP address, browser type, pages visited, and cookies (see our Cookie Policy)

We do not collect more information than is necessary for the purposes described in this policy. We do not store sensitive medical records or diagnostic data through this website — those are handled through our clinical records systems.

3. How We Use Your Information

We use the personal data we collect to:

Process and respond to appointment enquiries and booking requests
Confirm, manage, and follow up on bookings and consultations
Send appointment reminders and related communications
Improve our website, services, and user experience
Comply with our legal and regulatory obligations as a healthcare provider
Maintain records of patient enquiries for audit purposes

4. Legal Basis for Processing

Under UK GDPR, we process your personal data on the following legal bases:

Consent: Where you have provided explicit consent (e.g., ticking the consent checkbox on our forms). You may withdraw consent at any time.
Contract: Where processing is necessary to fulfil a booking or service you have requested.
Legitimate interests: Where processing is necessary for our legitimate business interests (e.g., improving our services) and does not override your rights.
Legal obligation: Where we are required to retain records under healthcare regulations and law.

5. How We Store Your Data

Enquiry and booking data is stored securely in our Supabase database, hosted within the European Economic Area (EEA). We apply appropriate technical and organisational security measures including encrypted storage, access controls, and restricted administrative access.

We retain patient enquiry records for a minimum of 8 years in line with NHS and healthcare regulatory guidance, unless you request deletion and there is no overriding legal obligation to retain the data.

6. Data Sharing

We do not sell, rent, or trade your personal data to third parties. We may share data with:

EmailJS: used to send confirmation emails — subject to their privacy policy
Supabase: our secure database provider — subject to their data processing agreement
Google Analytics (if enabled): for anonymised website analytics
Regulatory bodies: where we are required to disclose information by law or for regulatory compliance

7. Your Rights

Under UK GDPR, you have the right to:

Access the personal data we hold about you
Correct inaccurate or incomplete data
Request deletion of your personal data (“right to be forgotten”)
Restrict or object to our processing of your data
Data portability (receive your data in a structured format)
Withdraw consent at any time, where processing is based on consent

To exercise any of these rights, contact us at info@mywayclinic.co.uk. We will respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO).

8. Cookies

Our website uses cookies. For full details of the cookies we use and how to manage them, please see our Cookie Policy.

9. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites and encourage you to review their privacy policies.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by updating the “Last updated” date at the top of this page. Continued use of our website after changes have been published constitutes your acceptance of the updated policy.

11. Contact Us

For any privacy-related questions or to exercise your rights:

Email: info@mywayclinic.co.uk
Phone: 0161 637 0105
Address: Chadderton Way, Oldham, Greater Manchester, OL9

Privacy Policy