Whenever you share any personal information with me it is my duty to keep it safe. I have operated on that principle from the outset of my practice 15 years ago, and the recent GDPR regulations haven’t altered that. I am more than happy to share any information I have stored with you at any time. I am also happy to send and receive documents through a secure route (e.g. dropbox) or encrypted format.
I have found, however, that clients generally do not want the bother of having to log into different sites to receive their recommendations so I don’t do it by default. If you are worried about sensitive information falling into the wrong hands please let me know and let’s agree a method of information sharing that makes you feel comfortable.
If you would like all emails to be encrypted, please see the following link: https://www.comparitech.com/blog/vpn-privacy/how-to-encrypt-email/#gref
and then get in touch with a specific request.
Alternatively I can send all files via Dropbox if you have an account. If this is your preferred choice please let me know.
Below you will find the statutory statement about the way I store and use your information.
Effective date: Friday 25 May 2018
For the purposes of the EU General Data Protection Regulation (GDPR) (EU) 2016/679, the responsible entity and data controller is:
Dawn Waldron, 16 Modest Corner, Tunbridge Wells, Kent, UNITED KINGDOM, TN4 0LS
If you have any questions about the way I store your information please contact me:
Dawn Waldron operates the following websites:
and Facebook Page:
When you subscribe to either of my websites I store the following data:
- your email address
When you book a consultation I store the following data:
- your name
- your email address
- phone number
- anything you tell me about your health in the initial communication
When we work together I keep all of the above plus the following data:
- the information on your questionnaire that you choose to share*
- any additional medical and health information you send to me
- my notes made during our meetings
- copies of my recommendations to you
- any test results that we commission together
*You are not obliged to answer all of the questions on my questionnaire but it may affect the quality of the service I am able to provide.
Using Your Data
I use the data your provide to:
- analyse your health and lifestyle situation
- provide you with relevant personalised advice
- steer you towards services I offer
- detect and monitor trends in my clients and protocols
I will never share your information with anyone without expressly seeking your permission. Specifically I will never, ever share your information with anyone for marketing purposes.
I may from time to time use your information to contact you to offer further services relevant to your situation.
I may from time to time refer to your data when preparing lectures, talks or designing protocols but that would always be anonymously used.
I may discuss your information with carefully chosen test laboratories (e.g. Lifecode Gx, Genova Diagnostics, Regenerus Labs) in order to analyse technical findings of testing we have commissioned.
I am required by my professional body to keep your data for 8 years following our consultations.
The information I store may be on paper or it may be stored digitally on computer and cloud. I will take all reasonable steps to ensure your data is secure and confidential but your name will be on the documents and they will not be encrypted.
The security of your data is important to me but I rely on digital transmission and this can never be 100% secure. My office is based at home and, while the majority of documents are received digitally or scanned and kept on a password protected computer, handwritten summary notes relating to our most recent meetings will be kept in my desk drawer. I do not carry any confidential papers outside my home and all papers are shredded before disposal.
Third Party Data
Accessing Your Data
You are welcome to ask for copies of all the data I have kept on you by emailing me at firstname.lastname@example.org. I will send them to you digitally, as .pdf files. You may also ask me to correct any information you believe to be inaccurate or incomplete. You have the right to ask me to stop using your data but you cannot ask me to delete it before the statutory 8 year period has expired.
Again, if you have any questions or objections, please contact me: email@example.com