1. Introduction
Welcome to HM Ear Care (“we,” “us,” or “our”). We are committed to protecting your privacy and ensuring that your personal data is handled securely. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website and services, including ear wax removal, hearing assessments, tinnitus treatment, hearing aids, and custom ear protection.
By using our services, you agree to the collection and use of your personal information in accordance with this policy.
2. Information We Collect
We may collect the following types of personal data:
A. Personal Information
- Full name
- Contact details (email address, phone number)
B. Medical Information
- Health history related to ear care and audiology services
- Hearing assessment results and treatment plans
C. Financial Information
- Payment details for booking appointments and purchasing services (we do not store credit/debit card details)
D. Technical & Usage Data
- IP address, browser type, device information
- Website usage, cookies, and analytics data
3. Legal Basis for Processing Data (GDPR Compliance)
Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:
✅ Consent – When you provide explicit consent for marketing communications or data collection.
✅ Contractual Necessity – To provide services like hearing tests, wax removal, and hearing aid recommendations.
✅ Legal Obligation – To comply with regulatory and legal requirements.
✅ Legitimate Interest – For service improvements, fraud prevention, and security.
4. How We Use Your Data
We use your personal data to:
- Provide ear health services, including hearing tests and treatments.
- Manage appointments, billing, and customer support.
- Send service updates, reminders, and marketing communications (if opted-in).
- Improve our website, services, and patient experience.
- Comply with legal and regulatory obligations.
5. Data Sharing & Third-Party Services
We do not sell, rent, or trade your personal data. However, we may share data with:
- Healthcare professionals for treatment referrals.
- Payment processors to complete transactions securely.
- Regulatory authorities if required by law.
- IT service providers for website maintenance and security.
All third-party providers are GDPR-compliant and bound by confidentiality agreements.
6. Data Retention & Security
We take strict measures to protect your data against unauthorized access, loss, or misuse.
- Personal data is stored securely and retained only as long as necessary.
- Health records are stored in compliance with healthcare data protection laws.
- Payment data is processed through secure, encrypted payment gateways.
7. Your Rights Under GDPR
Under GDPR, you have the right to:
✔ Access your personal data and request copies.
✔ Correct inaccurate or incomplete information.
✔ Request deletion (“Right to be Forgotten”) under certain conditions.
✔ Withdraw consent for marketing at any time.
✔ Object to processing for direct marketing or legitimate interest.
✔ Data portability – request data transfer to another provider.
To exercise these rights, email us at [Email Address]. We respond to requests within 30 days.
8. Cookies & Tracking Technologies
We use cookies and tracking tools (Google Analytics, Facebook Pixel) to improve website functionality. You can manage cookie settings in your browser.
9. International Data Transfers
If we transfer your data outside the UK/EU, we ensure it is protected under Standard Contractual Clauses (SCCs) or other legal safeguards.
10. Changes to This Policy
We may update this policy periodically. Any changes will be posted on our website and, where appropriate, notified via email.
11. Contact Us
If you have any questions about this Privacy Policy or your data rights, contact us:
hmearcare.co.uk