Privacy Policy
How we collect, store and use your personal and health data.
Last updated: January 2026
1. Who we are
The Medical is a UK-registered private healthcare provider operating 10 clinics across the South West and beyond. We are registered with the Information Commissioner's Office (ICO) as a data controller.
2. What data we collect
- Contact details (name, email, phone, address)
- Health and medical information relevant to your care
- Insurance and payment information
- Website usage data (cookies, analytics)
3. How we use it
- To provide, record and bill for clinical care
- To communicate with you about appointments and treatment
- To meet our legal, regulatory and insurance obligations
- To improve our services (where you have consented)
4. Sharing your data
We do not sell your data. We share it only where necessary — for example, with your insurer (with your consent), with other treating clinicians, or where required by law.
5. Your rights
Under UK GDPR you have the right to access, correct, delete or restrict processing of your data, and to object to processing or request portability. To exercise these rights, email privacy@themedical.co.uk.
6. Data retention
Clinical records are retained for a minimum of 8 years (adults) or until the patient's 25th birthday (children), in line with professional guidance.
7. Cookies
Our website uses cookies for essential functionality and, with your consent, analytics. You can manage your preferences via your browser settings.
8. Contact us
Questions about privacy? Email privacy@themedical.co.uk.