Skip to main content
MioHealth – Private GP Services
Effective Date: 17/4/2025
Website: https://www.miohealth.co.uk

1. Introduction

miohealth (“we”, “us”, or “our”) is committed to protecting your privacy and ensuring the lawful and transparent processing of your personal data. This Privacy Policy explains how we collect, use, share, and protect your data when you use our services or visit our website, in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Who We Are

MioHealth is a private general medical practice based in Birmingham, UK. We provide health assessments, diagnostics, and personalised medical consultations.

Data Controller:

miohealth
95 Albion St, Birmingham, UK B1 3AA
Email: hello@miohealth.co.uk
Phone: 07738397594

3. Personal Data We Collect

a) Directly from you:

When you book an appointment or use our services:

  • Full name
  • Date of birth
  • Contact information (email, phone, address)
  • Medical history, medications, allergies, symptoms
  • Health and lifestyle information
  • Payment details
b) Automatically from website use:
  • IP address
  • Browser and device information
  • Date and time of visit
  • Pages viewed and interactions (via cookies or analytics tools)
c) From third parties (where applicable):
  • Referral letters or results from partner clinics
  • Laboratory and diagnostic reports
  • Information from your NHS GP (with consent)

4. Special Category Data

We process Special Category Data, including medical and health records.
We do this under Article 9(2)(h) of the UK GDPR: “…necessary for the purposes of preventive or occupational medicine… the provision of health or social care…”.

5. How We Use Your Information

We use your data to:

  • Provide safe and effective medical care
  • Schedule and manage appointments
  • Communicate clinical updates, referrals, and results
  • Process payments and manage accounts
  • Ensure clinical governance and regulatory compliance
  • Improve our services and website functionality (anonymised data)

6. Legal Bases for Processing

We process personal data under the following lawful bases:

  • Consent (e.g. for marketing or sharing with third parties)
  • Contract (to provide medical services you’ve requested)
  • Legal obligation (e.g. to retain medical records)
  • Vital interests (emergency care)
  • Legitimate interests (e.g. improving our services)

For medical data, the basis is typically:

  • Provision of healthcare (Article 9(2)(h))

7. Marketing Communications

We will only send you marketing emails or newsletters with your explicit consent.
You can opt out at any time by clicking “unsubscribe” in the email or contacting us directly.

8. Sharing Your Data

We may share your data with:

  • Partner diagnostic services (e.g. labs, imaging centres)
  • Specialists or consultants for referrals (with your consent)
  • Our clinical team (including doctors, nurses, physiotherapists)
  • IT and hosting providers (under contract and data protection agreements)
  • Regulators or legal bodies when required by law

We never sell your data.

9. International Transfers

Your data is stored in the UK or within the European Economic Area (EEA).
If any service provider transfers data outside the UK or EEA, appropriate safeguards (e.g. Standard Contractual Clauses) are in place.

10. Data Retention

We retain data in accordance with UK medical standards:

  • Adults: 8 years after last contact
  • Children: Until age 25 (or 8 years after last contact, whichever is longer)
  • For financial records: 6 years (for HMRC purposes)
    After this period, data is securely deleted or anonymised.

11. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate or incomplete data
  • Request deletion of your data (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability (in certain cases)
  • Withdraw consent at any time (where applicable)
  • Lodge a complaint with the Information Commissioner’s Office (ICO):
    www.ico.org.uk

To exercise your rights, contact: hello@miohealth.co.uk

12. Data Security

We have robust measures in place to protect your data:

  • Encrypted storage and secure transmission
  • Access controls and clinical system security
  • Regular risk assessments and audits
  • Staff training in data protection and confidentiality

13. Cookies & Website Analytics

We use cookies to:

  • Enhance website performance
  • Analyse usage via tools like Google Analytics
  • Store user preferences (e.g. login sessions)

For full details, see our Cookie Policy.

14. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those websites.

15. Updates to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page and dated. Continued use of our services after changes are published signifies acceptance.

16. Contact Us

If you have any questions or wish to exercise your data rights, contact:

miohealth
Email: hello@miohealth.co.uk
Phone: 07738397594
Address: 91 Albion St, Birmingham, UK, B1 3AA