Privacy Policy

1. Who We Are

Teeling Podiatry is a podiatry practice based in Ireland. We are the data controller responsible for your personal information collected through this website and in the course of providing podiatry services.

If you have any questions about this policy or how we handle your data, please contact us using the details at the bottom of this page.

2. What Information We Collect

We may collect the following types of personal information:

• Contact details — your name, phone number, and email address when you make a booking or enquiry
• Health information — details about your foot health and medical history that you share with us during consultations, which we record in your patient file
• Booking information — appointment dates, times, and appointment types, managed through our booking system (Cliniko)
• Website usage data — basic information about how you use our website, collected through cookies (see Section 6)

3. How We Use Your Information

We use your personal information for the following purposes:

• To book and manage your appointments
• To provide podiatry treatment and maintain your clinical records
• To contact you about your appointments (reminders, confirmations, follow-ups)
• To respond to enquiries you send us
• To comply with our legal and professional obligations as registered healthcare practitioners

We will only contact you for marketing purposes (such as newsletters or health tips) if you have explicitly given us permission to do so.

4. Our Legal Basis for Processing

Under GDPR, we process your data on the following legal bases:

• Contract — to fulfil the appointment and treatment services you have requested
• Legal obligation — to comply with our obligations as registered healthcare practitioners, including maintaining clinical records
• Legitimate interests — to respond to enquiries and manage our practice
• Consent — where we rely on your consent (e.g. for marketing), you may withdraw it at any time

For health data (which is a special category of personal data under GDPR), we process it on the basis of providing healthcare treatment.

5. Who We Share Your Data With

We do not sell your personal data. We may share it only in the following limited circumstances:

• Cliniko — our appointment booking and patient management system. Cliniko is GDPR compliant and stores data on EU-based servers. You can view their privacy policy at cliniko.com/policies/privacy
• Referring healthcare providers — such as your GP, if we need to share clinical information as part of your care (we will always inform you when this is necessary)
• Legal or regulatory bodies — if we are required to do so by law

6. Cookies

Our website uses cookies — small text files stored on your device — to help the site function correctly. The Cliniko booking widget embedded on our site may also set its own cookies in order to process your booking.

We do not currently use advertising or tracking cookies. If this changes, we will update this policy and ask for your consent.

You can control cookies through your browser settings. Blocking certain cookies may affect the functionality of the booking form.

7. How Long We Keep Your Data

We retain patient records for a minimum of 8 years from the date of your last appointment, in line with Irish healthcare guidelines. For children, records are kept until the patient turns 26.

Enquiry data (where no appointment is made) is deleted after 12 months.

8. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of access — you can request a copy of the data we hold about you
• Right to rectification — you can ask us to correct inaccurate data
• Right to erasure — you can ask us to delete your data, subject to our legal obligations to retain clinical records
• Right to restrict processing — you can ask us to limit how we use your data
• Right to data portability — you can request your data in a portable format
• Right to object — you can object to certain types of processing, including direct marketing

To exercise any of these rights, please contact us using the details below. We will respond within one month.

9. Keeping Your Data Secure

We take reasonable technical and organisational measures to protect your personal data from unauthorised access, loss, or disclosure. Our website is served over HTTPS and patient records are managed through Cliniko, which is independently security audited.

If you have any concerns about the security of your data, please contact us immediately.

10. Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Data Protection Commission (DPC), the Irish supervisory authority for data protection matters.

DPC website: www.dataprotection.ie
DPC helpline: +353 (0)761 104 800

We would appreciate the opportunity to address your concerns directly before you contact the DPC — please reach out to us first.

11. Changes to This Policy

We may update this privacy policy from time to time. Any significant changes will be noted at the top of this page with a revised date. We encourage you to review this policy periodically.