Privacy Policy
Last updated: May 2026
WE Cardiology is committed to protecting your personal information and handling it in accordance with applicable data protection laws, including the UK GDPR and the Data Protection Act 2018.
This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website or contact us through our online form, email, or telephone.
Who we are
WE Cardiology is the data controller for personal information collected through this website. If you have any questions about this Privacy Policy or how we use your data, please contact us using the details listed on our website.
Information we collect
We may collect the following information when you use our website or contact form:
Your first name and last name.
Your email address.
Your telephone number.
Any message or enquiry you send to us.
Technical information such as your IP address, browser type, device type, and website usage data.
Cookie and analytics data, where applicable.
Our contact form is intended for general enquiries only. Please do not include urgent medical information.
How we use your information
We use your personal information to:
Respond to your enquiries.
Arrange appointments or follow up on communication.
Provide information about our services.
Manage and improve our website.
Keep internal records of correspondence.
Meet legal, regulatory, or professional obligations.
Lawful basis for processing
We rely on the following lawful bases under UK GDPR:
Consent, where you voluntarily submit an enquiry or accept non-essential cookies.
Legitimate interests, for responding to enquiries and operating our website.
Legal obligation, where we must keep or disclose information to comply with law.
Medical diagnosis or health care, where information is processed in connection with an appointment or care enquiry.
Explicit consent or another valid condition under UK GDPR and the Data Protection Act 2018, if you voluntarily provide special category health data through the form.
Special category data
The contact form is not designed for emergencies or urgent symptoms. Please do not send sensitive medical information unless it is necessary for your enquiry. If you choose to provide health-related information, we will only process it where we have a lawful basis and a condition for processing special category data.
Cookies and analytics
Our website may use cookies and similar technologies to support essential site functions, improve performance, and measure traffic. Some cookies are necessary for the website to work properly, and others may only be used with your consent.
If analytics or other third-party services are used, they may collect information such as page views, device information, and browsing behaviour. You can manage cookies through your browser settings and, where available, the cookie banner on our website.
Sharing your information
We do not sell your personal information. We may share data with:
Squarespace and other website service providers.
Email and communication providers.
Professional advisers.
Regulators, insurers, or legal authorities where required.
Healthcare or administrative staff involved in handling your enquiry.
Any third parties we use are expected to handle your data securely and in line with data protection law.
International transfers
Some service providers may store or process data outside the UK or the European Economic Area. Where this happens, we will use appropriate safeguards to protect your personal data.
How long we keep your information
We keep personal data only for as long as necessary for the purpose it was collected, or for as long as we are required to keep it by law or professional guidance. Enquiry form submissions are generally retained for a reasonable period so we can manage follow-up communication and maintain records.
Security
We use appropriate technical and organisational measures to protect your personal information from unauthorised access, loss, misuse, or disclosure. No website or email system is completely secure, so we cannot guarantee absolute security.
Your rights
Under data protection law, you may have the right to:
Access your personal data.
Request correction of inaccurate information.
Request erasure of your data in certain circumstances.
Restrict or object to processing in certain circumstances.
Request data portability where applicable.
Withdraw consent where processing is based on consent.
Complain to the Information Commissioner’s Office if you are unhappy with how your data has been handled.
Links to other websites
Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and recommend reviewing their privacy policies separately.
Changes to this policy
We may update this Privacy Policy from time to time to reflect legal, technical, or operational changes. Any updates will be posted on this page with a revised date.