Privacy Policy

Privacy Policy – Skyline Hospitals

Skyline Hospitals is committed to protecting your privacy and handling your personal data securely and responsibly. This policy explains how we collect, use and protect your information when you use our website, contact us, or receive care from us. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who we are
Skyline Hospitals is a private healthcare provider offering consultations, assessments and treatments.
Email: [insert email]
Telephone: [insert number]
Address: [insert address]
Please contact us using the above details if you have questions about this policy or your data.

Information we collect
We may collect and process the following information:

• Name, date of birth, address and contact details

• GP details and referral information

• Medical and health information

• Appointment and enquiry details

• Payment and billing information

• Information submitted via website forms

• Website usage data, IP address and cookies

As a healthcare provider we process medical information (special category data). This is handled with strict confidentiality and appropriate safeguards.

How we use your information
We use your information to:

• Provide medical care, assessments and reports

• Manage appointments and follow-ups

• Respond to enquiries

• Process payments and invoices

• Improve our services and website

• Meet legal and regulatory obligations

We only use your data where we have a lawful basis to do so.

Lawful basis
We process data under the following lawful bases:

• Provision of healthcare and treatment

• Contract for requested services

• Legal and regulatory obligations

• Legitimate interests in managing services

• Consent where required (e.g. marketing)

You may withdraw consent at any time.

Sharing your information
We may share your data with:

• Clinicians involved in your care

• Your GP (where appropriate)

• Diagnostic or laboratory providers

• Payment processors

• IT and system providers

• Regulators or legal authorities where required

We only share necessary information and never sell personal data.

Data security
We use appropriate technical and organisational measures to protect your information, including secure systems, encryption, access controls and staff confidentiality obligations. Data is stored securely within the UK or approved jurisdictions.

Data retention
We retain records in line with UK healthcare guidance. Medical records are typically kept for at least 8 years after last treatment (longer for children or where required by law). Enquiry data is kept only as long as necessary.

Your rights
You have the right to:

• Access your data

• Correct inaccurate data

• Request erasure where applicable

• Restrict or object to processing

• Data portability

• Withdraw consent

To exercise your rights contact: [insert email]
You may also complain to the Information Commissioner’s Office (ICO): www.ico.org.uk

Cookies
Our website may use cookies to improve functionality and analyse traffic. You can control cookies through your browser settings.

Marketing
We only send marketing where permitted or where you have opted in. You can unsubscribe at any time.

Third-party links
Our website may contain links to external sites. We are not responsible for their privacy policies.

Updates
We may update this policy periodically. The latest version will always appear on our website.