top of page
name logo white.png
name logo white.png

Privacy Policy

1. Introduction

 

At Wellcare Health, we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and protect your personal information when you:

- Use our healthcare services (e.g. autism assessments for children)

- Attend or access our training packages (including corporate training)

- Visit or interact with our website [www.wellcarehealth.co.uk]

 

We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and relevant healthcare confidentiality standards.

 

2. Who We Are

Wellcare Health is a UK-based healthcare provider currently offering:

- Diagnostic autism assessments for children and young people

- Training services for organisations, professionals, and carers

 

Data Controller: Steffan Wilkinson, Wellcare Health

Suite 217 Colonial House, Swinemoor Lane, Beverley, HU17 0LS

Email: admin@wellcarehealth.co.uk

Tel: 07916 425331

 

3. What Personal Data We Collect

We collect and process different types of personal data depending on your

interaction with us.

a) For Clinical Services (e.g. Autism Assessments):

- Child’s name, date of birth, and contact details

- Parent or guardian information

- Medical, developmental, and educational history

- Referral letters and health records

- Assessment results and clinical notes

b) For Training Services:

- Attendees name, email addresses, and job titles

- Organisation name and contact details

- Course feedback and participation data

c) For Website Users:

- IP address and browser type

- Website usage data (via cookies or analytics tools)

- Any information submitted via contact forms or booking systems

 

4. How We Collect Your Data

We collect personal data when you:

- Fill in a form on our website

- Contact us via email, phone, or social media

- Register for a training session or consultation

- Are referred by a healthcare professional

- Use our services directly

 

5. Legal Basis for Processing

 

We only process your data when we have a valid legal reason. This may include:

- Consent – e.g. signing up for a training event

- Contractual necessity – e.g. providing you with a booked assessment

- Legal obligation – e.g. safeguarding concerns or clinical documentation

- Vital interests – e.g. protecting a child at risk

- Legitimate interests – e.g. improving our services

For health-related data (special category data), we process under Article 9(2)(h) –provision of health or social care.

 

6. How We Use Your Data

We may use your data to:

- Schedule and provide autism assessments

- Deliver and evaluate training programmes

- Respond to enquiries and referrals

- Maintain clinical records in line with professional standards

- Improve our services, website, and communications

- Comply with legal and regulatory requirements

7. Sharing Your Data

We do not sell your personal data.

We may share data with:

- NHS services or referring professionals (with your consent)

- Local authorities or safeguarding agencies (if legally required)

- IT service providers (e.g. secure cloud storage, booking software)

- External trainers or clinical professionals (under confidentiality agreements)

All third parties are contractually obligated to protect your data under UK GDPR

standards.

 

8. Data Storage and Security

Your personal data is stored securely using appropriate technical and organisational

measures. This includes:

- Encrypted devices and systems

- Password protection and access controls

- Staff confidentiality training and data protection policies

 

We regularly audit our security practices and take immediate steps in the event of a

data breach.

 

9. Data Retention

 

We retain personal data only for as long as necessary:

- Clinical records – in accordance with NHS guidance (Child: Until 25th birthday, or 8 years, whichever is the longest; Adult: 8 years after last contact)

- Training and booking data – for up to 3 years

- Website contact forms – up to 12 months, unless part of an ongoing service

 

After this, data is securely deleted or anonymised.

 

10. Your Rights Under UK GDPR

 

You have the right to:

- Access your personal data

- Correct inaccurate or incomplete data

- Request deletion (where applicable)

- Restrict or object to certain types of processing

- Request transfer of your data (data portability)

- Withdraw consent at any time (where processing is based on consent)

 

To exercise your rights, contact us at:

admin@wellcarehealth.co.uk

We will respond within 30 calendar days.

 

11. Cookies and Website Tracking

Our website uses cookies to enhance your browsing experience and collect anonymous analytics data.

You can manage or disable cookies in your browser settings.

For more details, see our Cookies Policy.

 

12. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices of other sites. Please review their privacy policies before sharing any personal information.

 

13. Children’s Data

 

We process children’s data only with the informed consent of a parent or legal guardian and strictly for healthcare purposes. All child data is handled with the highest level of confidentiality and in compliance with healthcare regulations.

 

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, best practice, or our service. The latest version will always be available on our website.

 

15. Contact Us

 

If you have any questions or concerns about this Privacy Policy or how we handle

your data, please contact:

Data Controller

Steffan Wilkinson, Wellcare Health

Email: admin@wellcarehealth.co.uk

Tel: 07916 425331

 

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

www.ico.org.uk | Tel: 0303 123 1113

bottom of page