Privacy Policy

Last updated: October 15, 2024

1. Introduction

LightStep Foot Health Clinic ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website light-step.co.uk or use our services.

2. Information We Collect

2.1 Personal Information

We may collect the following personal information:

  • Name and contact information (email, phone number, address)
  • Medical information relevant to foot health treatment
  • Appointment preferences and history
  • Payment information (processed securely through third-party providers)

2.2 Automatically Collected Information

We automatically collect certain information when you visit our website:

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent on our site
  • Referring website information
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use your information for the following purposes:

  • Providing foot health services and treatments
  • Scheduling and managing appointments
  • Processing payments and billing
  • Communicating with you about appointments and services
  • Improving our website and services
  • Complying with legal obligations
  • Marketing communications (with your consent)

4. Analytics and Tracking

Our website uses the following analytics and tracking services:

4.1 Google Analytics

We use Google Analytics to analyze website traffic and user behavior. Google Analytics collects information such as:

  • Pages visited and time spent on pages
  • Geographic location (country/city level)
  • Device and browser information
  • Traffic sources and referrals

Google Analytics uses cookies to collect this information. You can opt-out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

4.2 Umami Analytics

We use Umami Analytics for privacy-focused website analytics. Umami:

  • Does not use cookies
  • Does not collect personal information
  • Provides anonymized website statistics
  • Respects user privacy and GDPR compliance

4.3 reCAPTCHA

We use Google reCAPTCHA to protect our contact forms from spam and abuse. reCAPTCHA may collect:

  • IP address
  • Browser and device information
  • User interaction data

5. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Remember your preferences
  • Analyze website performance
  • Provide personalized content
  • Ensure website security

You can control cookies through your browser settings. However, disabling cookies may affect website functionality.

6. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations
  • To protect our rights and safety
  • With trusted service providers who assist in our operations (under strict confidentiality agreements)
  • In case of business transfer or merger (with notice to affected users)

7. Data Security

We implement appropriate security measures to protect your personal information:

  • Encryption of sensitive data
  • Secure data transmission (HTTPS)
  • Regular security assessments
  • Limited access to personal information
  • Staff training on data protection

8. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing of your personal data
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at hello@light-step.co.uk.

9. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy or as required by law. Medical records are retained according to healthcare regulations.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

11. Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect personal information from children under 16. If we become aware of such collection, we will take steps to delete the information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

13. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us: