Arrow BOOK
APPOINTMENT
How We Handle Your Information

Privacy Policy

This Privacy Policy explains what personal information we collect, why we collect it, how we keep it secure, and your rights under UK data protection law.

Last updated: 03 January 2026

This Privacy Policy explains how Pain Consultants collects, uses, stores, and protects personal information when you use this website, contact us, or request information. It is intended to meet the requirements of UK GDPR and the Data Protection Act 2018.

1. Who we are

1.1 Data controller

Pain Consultants is the data controller responsible for personal information collected through this website.

1.2 How to contact us about privacy

Please contact us using the contact details shown on this website, including the Contact page, email address, or telephone number published on the site. For privacy related requests, include Privacy Request in your message subject.

2. Information we collect

2.1 Information you provide to us

We may collect information you choose to submit, such as:

  • Your name

  • Your email address

  • Your telephone number

  • The content of your message or enquiry

  • Any appointment or information request details you include

2.2 Information you create on the website

If blog comments are enabled, we may collect:

  • The comment text you submit

  • The name and email address you enter in the comment form

  • Any other details you choose to include

2.3 Technical information collected automatically

When you visit the website, we may automatically collect:

  • IP address

  • Device and browser information

  • Pages visited and basic usage information

  • Security and diagnostic logs created by the server or security tools

2.4 Special category data

If you include health information in a message to us, that information may be treated as special category data under UK GDPR. Please only share health details where necessary.

3. How we use your information

We may use personal information for the following purposes:

3.1 Responding to enquiries

To reply to messages, questions, and requests submitted through the website.

3.2 Providing services and managing appointment enquiries

To communicate with you about availability, next steps, and relevant administrative details.

3.3 Website operation and security

To operate the website, prevent misuse, detect and respond to security issues, and maintain system reliability.

3.4 Improving the website

To understand how the website is used, fix issues, and improve content and performance.

4. Lawful bases for processing

We rely on one or more of the following lawful bases under UK GDPR, depending on the situation:

  • Consent where you choose to submit your details or request information

  • Contract where processing is necessary to take steps you request or provide services

  • Legitimate interests for website security, preventing fraud, and improving the website

  • Legal obligation where we must comply with applicable laws

If special category data is provided, we will only process it where a valid UK GDPR condition applies, such as explicit consent or where processing is necessary for health care related purposes where applicable.

5. Who we share information with

We may share personal information only where necessary, including with:

  • Website hosting and technical support providers

  • Email or communication service providers

  • Security and performance service providers

  • Professional advisers such as accountants or legal advisers where required

  • Regulators or authorities where we must comply with a legal obligation

We do not sell your personal information.

6. International transfers

If any service provider processes personal information outside the United Kingdom, we will ensure appropriate safeguards are in place, such as adequacy regulations or approved contractual protections.

7. How long we keep information

We keep personal information only for as long as necessary for the purposes set out in this policy, including to:

  • Respond to and manage enquiries

  • Maintain records of communications where appropriate

  • Support security, troubleshooting, and audit requirements

  • Meet legal, regulatory, or insurance requirements where applicable

8. Cookies and similar technologies

This website may use cookies and similar technologies for:

  • Essential website functionality

  • Remembering preferences where enabled

  • Security and performance

You can control cookies through your browser settings. Blocking some cookies may affect website functionality.

9. Your rights

You have rights under UK GDPR, including:

  • The right to access your personal information

  • The right to correct inaccurate information

  • The right to request deletion in certain situations

  • The right to restrict processing in certain situations

  • The right to data portability where applicable

  • The right to object to certain processing

  • The right to withdraw consent at any time where processing is based on consent

To exercise your rights, contact us using the details provided on this website.

10. Complaints

If you have concerns, please contact us first so we can try to resolve the issue.

You also have the right to complain to the Information Commissioner’s Office:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Telephone: 0303 123 1113

11. Security

We use reasonable technical and organisational measures to protect personal information. No website or system can be guaranteed as completely secure, but we take appropriate steps to reduce risk.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will update the Last updated date at the top of this page when changes are made.