Data Collection
This website is for information only. Connected Flow does not collect personal information from customers through the use of our website. We do not use analytics tools, tracking technology or marketing pixels. We do not use contact forms. Our website host, Cloudflare, may use cookies and similar technologies to enable security and functionality. According to their policies, they do not collect user information from static websites hosted on their platform. More details can be found at the following links:
Cloudflare Cookie Policy: https://www.cloudflare.com/en-gb/cookie-policy/
Cloudflare Cookies Documentation: https://developers.cloudflare.com/fundamentals/reference/policies-compliances/cloudflare-cookies/
Client Data and Use of Information
We do not indirectly collect client data through our website. If you contact us directly via email or telephone, you are voluntarily providing personal data should you choose to do so. Personal/Client data that is provided is used solely for internal company administration purposes. These purposes are as follows: Responding to your enquiry, Arranging appointments, Providing requested services, and meeting legal and insurance obligations. By contacting us directly, you consent to our processing your data for these purposes. Data is never sold, rented or shared with other organisations. It is not used for profiling or automated decision making. We keep the minimum amount of data necessary to provide our services and this data anonymized wherever possible. In the event of legal or insurance requirements, it may become necessary to release client information. If this is necessary, the client will be given due notice of this in writing.
Marketing
Connected Flow does not currently operate a mailing list or send marketing communications.
If we introduce marketing communications in the future: We will only send marketing emails where you have provided explicit consent (opt-in). You will be able to withdraw your consent at any time. Every marketing communication will include a clear unsubscribe option. Your personal data will never be used for marketing without your permission.
Data Retention and Security
We take appropriate steps to keep your personal data secure.
Digital calendar entries are recorded generically (e.g., “Appointment”) and do not contain personal or health details. Treatment notes, where required, are kept securely and are not stored in structured digital systems. Access to personal data is restricted only to company personnel. We apply the principles of data minimisation and confidentiality at all times.
Client data is generally retained for 7 years (or 7 years following a client's 18th birthday) following the last treatment for insurance purposes, after which it is securely destroyed. We employ industry-standard measures to protect your data against unauthorized access, loss, or disclosure.
Communication
We do not engage in direct communication with general site visitors. If you make an inquiry, we may respond via email, telephone, text messages, or postal mail regarding appointments, treatments, disputes, or updates about our services.
Cookies and Tracking Tools
Connected Flow does not directly use cookies or tracking tools. Cloudflare may use cookies to provide site functionality and security. We do not access any of this data.
Withdrawal of Consent
As we do not collect data from general website users, any cookies used are solely for functionality and security by Cloudflare. Client data that is collected as part of our business relationship with clients is maintained confidentially and can be destroyed upon request by contacting us at info@connectedflow.co.uk, except for the above clause regarding data retention, and cases of potential, ongoing or pending investigations.
Data Subject Rights
You have the right to access, rectify, erase, restrict processing, data portability, and object to data processing. To exercise these rights, please contact us at info@connectedflow.co.uk. Please be aware that limitation of data access/processing may impact our ability to provide services to you. In these instances, you will be informed of this at the point of request.
Data Breach Notification
In the event of a data breach, we will notify affected individuals and relevant authorities in accordance with GDPR requirements.
International Transfers
If we transfer your data outside the EU, we ensure that appropriate safeguards are in place to protect your data in accordance with GDPR. Any intention to do this will be communicated to you in writing prior to its occurrence.
Data Protection Officer (DPO)
As a small business we do not employ a Data Protection Officer, as per the guidelines of the Information Commisioners Office. All data is maintained and secured by us as the Data Controller. You can contact us regarding this at: info@connectedflow.co.uk
Policy Updates
We reserve the right to modify this privacy policy at any time. Changes will take effect immediately upon posting on our website. For material changes, we will notify you here.
Contact Us
For access, correction, amendment, or deletion of personal information, please contact us at info@connectedflow.co.uk