Last Updated: 28/09/2025
Please read this Privacy Policy carefully. Contact PectusConnectUs at pectusconnectus@gmail.com with any questions or concerns about this policy.
About This Policy
This Privacy Policy explains how PectusConnectUs (PCU), registered at 25 Hatton Lane, Northwich, Cheshire, CW8 1JY (“we,” “us,” or “our”) collects, uses, stores, and protects your personal information when you use our services or purchase our goods. This policy applies to all clients, including case managers, physiotherapists, and similar healthcare professionals who use our services.
Information We Collect
Personal Information
We collect personal information that you provide directly to us, including:
- Name, address, phone number, and email address
- Medical history and health information relevant to your treatment
- Payment information and billing details
- Photographs and videos for orthosis design and medical documentation
- X-ray images and other diagnostic materials
- Communication records (emails, phone calls, text messages)
Automatically Collected Information
When you visit our website, we may automatically collect:
- IP address and device information
- Browser type and version
- Pages visited and time spent on our website
- Referring website information
How We Use Your Information
We collect and process your personal data only with your express consent for the following purposes:
Primary Uses
- Service and Goods Provision: To assess, treat, and provide orthotic braces and pectus-related devices
- Payment Processing: To process payments and manage billing
- Communication: To contact you via phone, email, or text regarding your treatment
- Medical Documentation: To maintain accurate medical records and treatment notes
Secondary Uses (With Your Consent)
- Orthosis Design: Using photographs, videos, and X-rays to create bespoke orthotic devices
- Training Purposes: Using anonymized photographs and videos for staff training
- Marketing: Using anonymous photographs focusing on chest area only (without face, name, or any identifying features) for promotional materials as consented to through your purchase agreement
- Information Sharing: Sharing relevant information with specialists involved in your care (unless you object via pectusconnectus@gmail.com)
AI Technology
We use AI technology to enhance patient care in a GDPR-compliant manner. You may inform your clinician if you prefer that AI technology is not used in your treatment.
Legal Basis for Processing
We process your personal data under the following legal bases:
- Consent: For treatment, photography, video recording, and marketing communications
- Contract: To fulfill our service agreements with you
- Legitimate Interest: For business administration and improving our services
- Legal Obligation: To comply with healthcare regulations and professional standards
Data Storage and Security
Security Measures
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.
Retention Period
We retain your personal data for:
- Medical Records: In accordance with healthcare regulatory requirements
- Financial Records: As required by law for accounting and tax purposes
- Marketing Consent: Until you withdraw consent or we no longer need it
Your Rights
Under GDPR and Data Protection Act 2018, you have the right to:
Access and Portability
- Request a copy of your personal data
- Receive your data in a portable format
Correction and Deletion
- Correct inaccurate or incomplete personal data
- Request deletion of your personal data (subject to legal obligations)
Restriction and Objection
- Restrict processing of your personal data
- Object to processing based on legitimate interests
- Object to marketing communications
Withdrawal of Consent
- Withdraw consent for specific processing activities
- Note: Withdrawal may affect our ability to provide services
To exercise these rights, contact us at pectusconnectus@gmail.com.
Data Sharing
We do not share your personal data with third parties without your permission, except:
With Your Consent
- Relevant specialists involved in your care
- Training purposes (anonymized data)
- Marketing and publicity (with explicit consent)
Legal Requirements
- When required by law or court order
- To protect our rights, property, or safety
- In case of medical emergencies
International Transfers
If we transfer your data outside the UK/EEA, we ensure appropriate safeguards are in place to protect your information in accordance with GDPR requirements.
Cookies and Website Data
Our website may use cookies to improve your browsing experience. You can control cookie settings through your browser preferences.
Patient Consent Integration
By attending your PectusConnectUs appointment (physical or virtual), you confirm your understanding and agreement to this Privacy Policy alongside our Terms & Conditions and Consent to Treatment.
Special Consent for Under 18s
For patients under 18 or those unable to provide consent, a parent or legal guardian must provide all necessary consents on their behalf.
Complaints and Concerns
If you have concerns about how we handle your personal data:
- Contact us directly at pectusconnectus@gmail.com
- Contact the Information Commissioner’s Office (ICO) at ico.org.uk
- We follow HCPC standards of conduct: https://www.hcpc.uk.org/aboutregistration/standards/standardsofconductperformanceandethics/
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
- Email notification to your registered email address
- Notice on our website
- During your next appointment
Contact Information
For questions about these Terms & Conditions, contact:
PectusConnectUs
25 Hatton Lane
Northwich, Cheshire, CW8 1JY
Email: pectusconnectus@gmail.com
This Privacy Policy complements our Terms & Conditions and forms part of your agreement with PectusConnectUs.