For the purpose of the Data Protection Act 1998 (the Act), the data controller is Hugo Isaac
- Your personal information is not required to visit this website.
- Any personal information collected is knowingly provided by you and only required when you use the form on the ‘Contact‘ page to send The Arch Clinic a message. No personal data collected from either of these contact forms are stored on this website.
- We do not allow ‘comments’ on this website blocking this feature sitewide, therefore no personal data is stored on this website.
- We do not allow visitors to ‘register’ as a ‘user’ on this website, therefore no personal data is stored on this website.
Site Visitation Tracking
Like most websites, this site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website.
Although GA records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer’s IP address which could be used to personally identify you but Google does not grant us access to this. We consider Google to be a third party data processor.
- Your IP address is a numeric address assigned to your computer, assigned by your Internet service provider. We automatically collect your IP address as traffic data so that we can send information back to you when requested. This is not used to identify your personal information.
- Referrers are references to the web address you linked from and is automatically passed along by your web browser. We collect referrers your browser sends as part of traffic data. This is not attached to personally identifiable information.
- System information such as your operating system/platform, and the type of web browser you use. This is not attached to personally identifiable information.
Links to 3rd Party Data Processors / Websites
The Arch Clinic includes links to other websites whose privacy practices may differ from those of The Arch Clinic. If you submit personal information to any of those sites, your information is governed by their privacy statements. It is our suggestion that you carefully read the privacy statement of any website you visit.
- Your information is maintained on a secure web server in what we believe to be a well-protected environment.
- The Arch Clinic do not share personal information collected with any other third-party company for any purpose, under any circumstance.
- The Arch Clinic makes every effort to preserve your privacy, personal information may be disclosed when required by law where we have a good-faith belief that such action is necessary to comply with a judicial proceeding, court order or legal process.
Services we supply are intended for general audiences and not for children under the age of 13. We do not knowingly process data of EU residents under the age of 16 without parental consent. If we become aware that we have collected data from an EU resident under the age of 16 without parental consent, we will take reasonable steps to delete it as soon as possible.
This website takes every precaution to protect visitor’s information. When visitors submit personal information via this website, their information is protected both online and off-line.
Our website uses specialist security software (WP Cerber) to ensure data breaches do not occur. WP Cerber protects and monitors web traffic and web server logs, WP Cerber blocks potential hacks and notifies our IT support instantly should there be any hack or breach.
Should our website be hacked, no personal data can be compromised, no personal data is stored on our website, either by contact forms, user registration or comments.
We do everything in our power to protect user-information off-line. All of our client information, not just the personal information, is restricted in our office, our computers are password protected. The servers that store personally identifiable information online are in a secure data centre environment, protected by SSL.
The Arch Clinic use Mailprotector Bracket – Email Encryption to send any emails containing personal information, passwords and account usernames as and when clients request those details, this ensures client data is fully encrypted and protected from being read by other entities than the intended recipient.
Right to Access
If you have any questions regarding Right to Access please email us directly: [email protected]
If you have any questions regarding Data Portability please email us directly: [email protected]
Right to Be Forgotten
If a client only has quotations with The Arch Clinic and no Invoice has been created for services/products, we are able to completely delete that clients details from our Invoice system, including all associated quotations. If however a client requests to be forgotten but has invoices for services/products provided, we are, by UK Tax laws, required to keep these records for 7 years.
To request a ‘Right To Be Forgotten’ please email us directly: [email protected]
Retention of your Information
We keep your information for no longer than necessary for the purposes for which it is processed. The length of time for which we retain information depends on the purposes for which we collected and use it and/or as required to comply with applicable UK laws.