Skip to content

Privacy policy


The Treatment Rooms London complies with the UK Data Protection Act 2018, UK GDPR and the Freedom of Information Act 2000, and this Policy describes our procedures for ensuring that personal information about clients and patients is processed fairly and lawfully.

In order to provide you with a high standard of care and attention, we need to hold personal information about you. This personal data comprises:

  • Personal details such as your name, age, address, telephone numbers, email  address, date of birth and your general medical practitioner;
  • Your past and current medical conditions;
  • Information about the treatment we have provided or propose to provide (and its cost);
  • Photographs of treatment areas before and after any treatments are given;
  • Notes of conversations or incidents that might occur for which a record needs to be kept;
  • Records of consent to treatment;
  • Any correspondence (relating to you) with other healthcare professionals: such as referrals to specialists, where required and/ or when consented for

We need to keep comprehensive and accurate personal data about our clients in order to provide them with safe and appropriate care.

We will process personal data that we hold about you in the following way:

We will retain your medical records while you are a patient at The Treatment Rooms. If you cease to be a client, we will continue to hold them for at least another eleven years.

Personal data about you is held on an encrypted hard drive stored offline and also online with our cloud based electronic healthcare records management system MedDbase. The information is not accessible to the public and only authorised members of staff have access to it. If you would like your healthcare data to only be visible to your Surgeon and clinic owners only we can customise this accordingly. Should you wish to remain completely offline with the storage of your healthcare data please inform our staff at the point of enquiry.

In order to provide proper and safe care, we may need to disclose personal information about you to:

  • Your general medical practitioner;
  • The hospital services;
  • Other health professionals caring for you;

Disclosure will take place on a “need-to-know” basis. Information will only be given to those individuals/organisations who need to have it in order to provide care to you and for the proper administration of Government (whose personnel are also covered by strict confidentiality rules). The recipient will only be given the information that they need to know for these purposes.

In very limited circumstances or when required by law or by a court order, personal data may have to be disclosed to a third party not connected with your care. In all other situations, disclosure that is not covered by this Policy will occur only when we have your specific consent. Where possible you will be informed of these requests for disclosure.

You have the right to access the data that we hold about you and to receive a copy. Access may be obtained by making a request in writing. We will aim to provide a copy of the record within 20 days of receipt of the request.

If you do not wish personal data we hold about you to be disclosed or used in the way that is described in this Policy, please discuss the matter with our Doctors. You have the right to object, but please remember that this may affect our ability to provide you with care.

020 8706 0076 Enquire