Privacy Policy

1. Introduction

This Privacy Policy explains how I (Nicolas Rossi) collect, use, and protect your personal information when you use my website (https://rossi.physio) or engage my services. I am committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller Details

• Name: Mr Nicolas Rossi
• Trading Name: Nicolas Rossi Physiotherapy
• Business Address: Mount Lennox Business Centre, 683 Antrim Road, Belfast, BT15 4EG, United Kingdom
• Contact Information: nicolas@rossi.physio
• Information Commisionner’s Office Registration Reference: ZB842050

3. Information I Collect

I may collect and process the following types of personal information:

• Contact Information: Name, email address, and any other information you provide when contacting me or booking an appointment.
• Medical Information: Relevant health information necessary for the provision of physiotherapy services.
• Transaction Information: Payment details processed securely by third-party providers (e.g., Stripe, Inc.).
• Website Usage Data: Information about your visits to my website, such as IP address, browser type, and pages visited, collected through cookies and analytics tools.

4. How I Use Your Information

I use your personal information for the following purposes:

• Service Provision: To provide physiotherapy consultations and manage appointments.
• Communication: To respond to inquiries, send appointment confirmations, and provide updates about my services.
• Legal and Regulatory Compliance: To comply with legal and professional obligations.
• Website Functionality: To improve my website and ensure its security.

5. Legal Basis for Processing

I process your personal data based on the following lawful bases:

• Consent: Where you have provided explicit consent, such as subscribing to updates.
• Contract: To fulfill my obligations under a contract for services.
• Legal Obligation: To comply with applicable laws and regulations.
• Legitimate Interests: For the purposes of running my business, such as improving services and ensuring security, provided that these interests do not override your rights.

6. Data Sharing

I will not sell, rent, or trade your personal information. I may share your information with:

• Service Providers: Third-party companies like Calendly LLC and Stripe, Inc., to facilitate appointment scheduling and payment processing.
• Legal Authorities: When required to comply with legal obligations or enforce my terms.
• Professional Obligations: In compliance with healthcare regulations or professional standards.

7. Data Retention

I will retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including for legal, accounting, or reporting requirements. Medical records are retained for a minimum of eight years following your last consultation, in accordance with professional standards.

8. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

• Access: Request access to the personal data I hold about you.
• Rectification: Request corrections to inaccurate or incomplete information.
• Erasure: Request deletion of your data, subject to legal obligations.
• Restriction: Request a limitation on the processing of your data.
• Data Portability: Request a copy of your data in a structured, machine-readable format.
• Objection: Object to the processing of your data for certain purposes.
• Withdrawal of Consent: Withdraw your consent at any time where consent is the legal basis for processing.

To exercise your rights, please contact me at nicolas@rossi.physio.

9. Data Security

I implement appropriate technical and organisational measures to protect your personal data from unauthorised access, alteration, disclosure, or destruction. While I strive to protect your data, no method of transmission over the internet is completely secure.

10. Cookies

My website uses cookies to enhance user experience and gather analytical data. For more details about the types of cookies used and how to manage them, please refer to my Cookie Policy.

11. Third-Party Links

My website may include links to third-party websites. I am not responsible for the privacy practices of these external sites. I can only encourage you to review their respective privacy policies.

12. Changes to this Privacy Policy

I may update this Privacy Policy from time to time. Changes will be posted on this page with a ‘Last Updated’ date. Continued use of my services or website after such changes indicates your acceptance of the revised policy.

13. Complaints

If you have concerns about how I handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

• Website: https://www.ico.org.uk
• Telephone: 0303 123 1113

14. Contact Information

If you have any questions or concerns about this Privacy Policy or your personal data, please contact me via:

• E-mail: nicolas@rossi.physio
• Telephone: +44 7468 431 592
• Business Address: Mount Lennox Business Centre, 683 Antrim Road, Belfast, BT15 4EG, United Kingdom

---

By using this website and accessing my services, you confirm that you have read, understood, and agreed to this Privacy Policy.

Last updated: 11/11/2025