top of page

Privacy Policy

Privacy Policy – Nexus HealthHub

Last updated: 18/11/25

Nexus HealthHub (“we”, “our”, “the clinic”) is committed to protecting your privacy and ensuring that your personal information is handled safely, securely, and transparently. This Privacy Policy explains how we collect, store, process, and share your data when you engage with our services, website, or booking platforms.

By using our services, you consent to the practices outlined in this policy.

1. What Information We Collect

We collect personal and health-related information necessary to provide you with safe and effective clinical care. This may include:

1.1 Personal Information

  • Name

  • Date of birth

  • Contact details (email, phone number, address)

  • Emergency contact information

1.2 Health & Medical Information

  • Medical history

  • Current symptoms and conditions

  • Medications and supplement use

  • Injury history

  • Diagnostic reports and imaging results

  • Movement assessments and exercise data

  • Clinical notes and treatment plans

1.3 Administrative Information

  • Appointment history

  • Billing and payment information

  • Consent forms and agreements

1.4 Automatically Collected Information

When you visit our website or digital platforms, we may collect:

  • IP address

  • Browser type

  • Cookies and usage data

2. How We Collect Your Information

We collect data through the following methods:

  • Directly from you during consultations, assessments, forms, and questionnaires

  • Via digital systems used within Nexus HealthHub (see below)

  • Through partner systems when you provide explicit consent

  • When you contact us by phone, email, website forms, or social media

3. Digital Systems & Third-Party Providers

We use several secure digital platforms to support your care. Each provider has its own GDPR-compliant privacy and security protocols.

3.1 Cliniko (Practice Management)

Used for:

  • Appointment booking

  • Clinical notes

  • Patient files

  • Payments
    Cliniko stores personal and clinical data securely on encrypted servers.

3.2 VALD Performance Systems

Used for:

  • Strength and movement assessments

  • Force testing (e.g., NordBord, ForceDecks, etc.)
    VALD stores assessment data linked to your patient profile for clinical decision-making.

3.3 MoveHealth

Used for:

  • Exercise prescription

  • Rehabilitation programme delivery
    Stores exercise progress, feedback, and communications regarding your programme.

3.4 Akuis SinèTesi® System

Used for:

  • Neuromuscular activation and rehabilitation data
    Collects movement and activation data used to build personalised training plans.

3.5 Heidi Scribe

Used for:

  • Secure clinical dictation

  • Documentation support for clinical notes

3.6 WIBBI

Used for:

  • Exercise programming

  • Movement tracking
    Stores limited personal identifiers to allow programme delivery and monitoring.

Each third-party provider adheres to GDPR and uses encrypted systems to protect your data.

4. How We Use Your Information

We use your information to:

  • Provide safe and effective healthcare

  • Develop personalised treatment and rehabilitation plans

  • Communicate with you about appointments, updates, or results

  • Process payments and manage accounts

  • Coordinate care with other healthcare providers (with your consent)

  • Improve clinical services and internal processes

  • Meet legal, regulatory, and safeguarding requirements

5. Sharing Your Information

We will never sell your data.
We may share your information only when necessary:

5.1 With Your Consent

  • To communicate with your GP

  • To refer you to specialists or partner clinics

  • To provide reports requested by you (e.g., insurance or employer)

5.2 Without Consent (only when legally required)

  • If there is a safeguarding concern

  • If required by law, court order, or regulatory authority

  • If there is risk of harm to yourself or others

5.3 With Third-Party Service Providers

  • Cliniko, VALD, MoveHealth, Akuis, Heidi Scribe, WIBBI (see Section 3)

All third parties are bound by strict confidentiality and data protection standards.

6. How We Store Your Information

  • Data is stored securely on encrypted servers

  • Only authorised clinicians and administrators have access

  • Paper records (if used) are locked securely

  • Digital access is password-protected and audited

  • We retain records in line with legal and clinical guidelines (typically 8 years, or until age 25 for minors)

7. Your Rights Under GDPR

You have the right to:

  • Access your personal data

  • Correct inaccurate data

  • Request deletion (where legally appropriate)

  • Restrict or object to processing

  • Request transfer of your data to another provider

  • Withdraw consent at any time

To exercise your rights, contact us using the details below.

8. Data Breach Procedure

In the unlikely event of a data breach:

  • We will investigate immediately

  • Take steps to minimise impact

  • Notify affected individuals

  • Report to the ICO when required

9. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights:

Nexus HealthHub
Email info@nexushealthhub.co.uk
Phone: 07379005214
Address: 15 Victoria Street, Wetherby, LS226RE

10. Updates to This Policy

We may update this Privacy Policy periodically. The latest version will always be available on our website

bottom of page