Legal

Privacy Policy

KT Healthcare | Last updated: 27th April 2026

‍

This Privacy Policy explains how Kirsop-Taylor Healthcare Limited (trading as KT Healthcare) collects, uses, and protects personal data when you visit or interact with our website and its associated services.

‍

KT Healthcare is committed to handling your personal data responsibly and in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

‍

1. Data Controller

The data controller for this website is:

Kirsop-Taylor Healthcare Limited Trading as KT Healthcare Registered in England and Wales β€” Company Number: 06643542

First Floor, Unit 2-3, Block B, Southern Gate, Chichester, PO19 8GR

Email: office@kirsoptaylorhealthcare.com

‍

2. Personal Data We Collect

Depending on how you interact with our website, we may collect the following types of personal data.

‍

Data You Provide Directly

  • First name and last name
  • Date of birth
  • Email address
  • Phone number
  • The content of messages or enquiries you send us

‍

Data Collected Automatically

  • IP address and approximate location (city level)
  • Browser type and version
  • Device information
  • Pages visited, session duration and usage statistics
  • Referral sources and navigation paths
  • Cookies and tracking identifiers

Automatically collected data is gathered through the analytics and infrastructure services described in Section 4 below.

‍

3. How We Collect Your Data

‍

Contact and Booking Forms

When you submit a contact or booking/appointment enquiry form on our website, the data you provide is transmitted via Make.com (our workflow automation service) and stored in Airtable. Depending on the nature of your enquiry, your data may also be passed to Semble, our clinical CRM system, to manage your care or appointment record. You will also receive a confirmation email sent via Resend.

‍

Cookie Consent and Accessibility

We use CookieYes to manage your cookie preferences and to provide an accessibility toolbar. When you visit our site, CookieYes presents a consent banner. Your choices are recorded and respected throughout your visit.

‍

Careers Page

Our careers page displays live job listings retrieved via the Talos API. The careers page itself does not collect any personal data. If you choose to apply for a position, you will be directed to a branded application portal hosted by Talos on a subdomain of our website. Any personal data you submit as part of a job application (such as your name, email address, CV, or supporting documents) is collected and processed by Talos in accordance with their privacy policy.

‍

4. Third-Party Services and Data Processors

We use the following third-party services to operate and improve our website. Each acts as a data processor on our behalf, or as an independent controller where noted.

‍

Analytics

Google Analytics 4

‍Provider: Google Ireland Limited. We use Google Analytics 4 to analyse website usage and generate reports. Data processed includes browser information, device details, approximate location (city), session statistics, and usage data. Place of processing: Ireland / EEA

‍

Plausible Analytics

‍Provider: Plausible Insights OÜ. We also use Plausible Analytics, a privacy-friendly analytics tool that does not use cookies and does not collect personally identifiable information. It measures aggregate traffic statistics only. Place of processing: European Union

‍

Tag Management

Google Tag Manager

‍Provider: Google Ireland Limited. We use Google Tag Manager to manage and deploy tracking scripts on our website. GTM itself does not collect personal data, but it may load third-party tags (such as Google Analytics) that do. Place of processing: Ireland / EEA

‍

Cookie Consent and Accessibility

CookieYes

‍Provider: CookieYes Limited. CookieYes manages cookie consent on our website and provides an accessibility toolbar. It records your consent preferences and processes usage data and tracker data. Place of processing: United Kingdom / EEA

‍

Forms, Workflow Automation and Data Storage

‍

Make.com

‍Provider: Celonis SE (Make)Make.com automates the movement of form submission data between our services. Personal data processed includes name, email address, phone number, and message content. Place of processing: European Union

‍

Airtable

‍Provider: Airtable Inc. Form submission data is stored in Airtable as our operational database. Personal data processed includes name, email address, phone number, and enquiry details. Place of processing: United States (Standard Contractual Clauses apply)

‍

Resend

‍Provider: Resend Inc. Resend is used to send confirmation emails following form submissions. Personal data processed includes name and email address. Place of processing: United States (Standard Contractual Clauses apply)

‍

Semble

‍Provider: Heydoc Ltd. For contact and booking/appointment enquiries, data may be shared with Semble, our clinical CRM, to manage patient and appointment records. Personal data processed includes name, email address, phone number, and enquiry details. Place of processing: United Kingdom

‍

Hosting and Infrastructure

Webflow

‍Provider: Webflow, Inc. Our website is hosted and built on Webflow. Code and assets are hosted on Webflow Cloud infrastructure. Personal data processed includes trackers and usage data as specified in Webflow's privacy policy. Place of processing: United States (Standard Contractual Clauses apply)

‍

Cloudflare

‍Provider: Cloudflare, Inc. We use Cloudflare for traffic optimisation, content delivery, and DDoS protection. Personal data processed includes trackers and various types of data as specified in Cloudflare's privacy policy. Place of processing: United States / EEA (Standard Contractual Clauses apply)

‍

Careers and Recruitment

Talos360

‍Provider: Talos360 Limited. Job listings on our careers page are displayed using the Talos API. If you apply for a role, you will be redirected to a Talos-hosted application portal. Personal data submitted during an application is processed by Talos as an independent data controller. Please refer to Talos's own privacy policy for details. Place of processing: United Kingdom

‍

5. Purposes and Legal Basis for Processing

We process your personal data for the following purposes and on the following legal bases under UK GDPR:

  • Responding to your enquiries and providing our services β€” Legitimate interests / Performance of a contract
  • Managing appointments and clinical records via Semble β€” Performance of a contract / Legal obligation
  • Sending confirmation emails following form submissions β€” Legitimate interests
  • Operating and improving our website through analytics β€” Consent (where cookies are used) / Legitimate interests (for privacy-preserving analytics such as Plausible)
  • Managing cookie preferences and accessibility β€” Legal obligation / Consent
  • Protecting the security and integrity of our website β€” Legitimate interests
  • Complying with legal obligations and responding to lawful requests β€” Legal obligation

‍

6. Cookies and Tracking

We use cookies and similar tracking technologies on our website. These are managed through CookieYes, which provides you with a consent banner when you first visit the site.

Cookies are used for the following purposes:

  • Remembering your cookie consent preferences
  • Analytics and measuring website usage (Google Analytics 4)
  • Delivering and optimising website content (Cloudflare, Webflow)

You can update your cookie preferences at any time using the cookie settings link in the footer of our website. Please note that disabling certain cookies may affect the functionality of the site.

Plausible Analytics does not use cookies and does not track individuals.

‍

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law.

  • Enquiry and contact form data: retained for up to 3 months in order to respond to and follow up on your enquiry unless you become a patient or client
  • Clinical and appointment records (Semble): retained in accordance with applicable healthcare regulations and NHS guidance
  • Analytics data: retained in accordance with the respective service provider's data retention settings

On expiry of the applicable retention period, personal data will be securely deleted or anonymised.

‍

8. International Data Transfers

Some of our third-party service providers are based outside the United Kingdom. Where personal data is transferred to countries not deemed to provide an adequate level of protection, we ensure appropriate safeguards are in place, such as UK-approved Standard Contractual Clauses (SCCs) or the UK International Data Transfer Agreement (IDTA).

Providers based outside the UK or EEA include: Make.com, Airtable, Resend, and Webflow. Each of these providers operates under appropriate transfer mechanisms.

‍

9. Your Rights Under UK GDPR

You have the following rights in relation to your personal data:

  • Right to access β€” request a copy of the personal data we hold about you
  • Right to rectification β€” request correction of inaccurate or incomplete data
  • Right to erasure β€” request deletion of your data in certain circumstances
  • Right to restrict processing β€” request that we limit how we use your data
  • Right to data portability β€” receive your data in a structured, machine-readable format
  • Right to object β€” object to processing based on legitimate interests
  • Right to withdraw consent β€” where processing is based on consent, you may withdraw it at any time
  • Right to lodge a complaint β€” with the Information Commissioner's Office (ICO)

‍

Exercising Your Rights

To exercise any of the above rights, please contact us at: office@kirsoptaylorhealthcare.com

We will respond to all requests within one month. There is no charge for making a request. If your request is complex or numerous, we may extend this period by a further two months and will notify you accordingly.

‍

Complaints

If you are unhappy with how we handle your personal data, you have the right to lodge a complaint with the UK's supervisory authority:

Information Commissioner's Office (ICO) Website: www.ico.org.uk Telephone: 0303 123 1113

‍

10. Data Security

We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration, or disclosure. These include:

  • Secure hosting via Webflow and Cloudflare
  • Encrypted data transmission (HTTPS/TLS)
  • Access controls limiting data access to authorised personnel only
  • Use of reputable, contractually bound third-party processors

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO and, where required, affected individuals, in accordance with our legal obligations.

‍

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or processing activities. We encourage you to review this page periodically.

Where changes are material and affect processing activities based on your consent, we will seek fresh consent as required.

This policy was last updated on 21st April 2026.

‍

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

Kirsop-Taylor Healthcare Limited Trading as KT Healthcare, First Floor, Unit 2-3, Block B, Southern Gate, Chichester, PO19 8GR, United Kingdom

Email: office@kirsoptaylorhealthcare.com