Loading...
Legal
Your privacy is important to us. This policy explains how Screen My Bones collects, uses, and protects your personal information.
Last updated: January 2025
Screen My Bones Ltd ("we", "us", "our") is committed to protecting and respecting your privacy. We are registered as a data controller with the Information Commissioner's Office (ICO) and comply fully with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
This policy describes how we collect and use personal data about you when you use our website, book our services, or interact with us. Please read this policy carefully to understand our practices regarding your personal data.
When you book a scan or contact us, we may collect: your name, email address, phone number, date of birth, postal address, and payment information.
To provide our screening services, we collect: bone density scan results, medical history relevant to bone health, risk factors, and lifestyle information you choose to share.
When you visit our website, we automatically collect: IP address, browser type, device information, pages visited, and cookies (see our Cookie Policy for details).
We use your information to: schedule and conduct bone density scans, generate your results report, provide personalized health recommendations, and communicate about your appointments.
With your consent, we may share your results with your GP or other healthcare providers you designate. You control who receives your health information.
We use anonymized, aggregated data to improve our services, conduct research, and enhance our screening technology. Individual data is never shared without consent.
We implement industry-standard security measures including: SSL/TLS encryption for data transmission, encrypted storage for sensitive data, secure access controls and authentication, regular security audits and penetration testing.
All our staff receive comprehensive training on data protection, confidentiality, and GDPR compliance. Access to personal data is restricted to authorized personnel only.
Your data is stored on secure servers within the UK/EEA. We do not transfer personal data outside of these regions without your explicit consent and appropriate safeguards.
You have the right to request a copy of all personal data we hold about you. We will provide this in a commonly used electronic format within 30 days.
You can request correction of inaccurate data or deletion of your data (subject to legal retention requirements). Contact us at privacy@screenmybones.co.uk to exercise these rights.
You can withdraw consent for data processing at any time. This won't affect the lawfulness of processing based on consent before withdrawal.
If you're unhappy with how we handle your data, you can lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
We do not sell your personal data. We may share your information with:
If you have any questions about this privacy policy or how we handle your data, please contact our Data Protection Officer.
Email: privacy@screenmybones.co.uk
Post: Data Protection Officer, Screen My Bones Ltd, London, UK