Privacy Notice

Privacy Notice (UK GDPR & Data Protection Act 2018)

Last updated: 21 June 2026

Who I am

I am Danica Apolline-Matić, a homeopath providing complementary healthcare services. I am the Data Controller for the personal information you provide to me.

Contact details:

Name: Danica Apolline-Matić

Practice Name: Danica Apolline-Matić

Email: danica.apolline@gmail.com

Phone: +44 (0)7739967841

Website: danicaapollinematic.com

Your Privacy

Protecting your privacy is important to me. This Privacy Notice explains what personal information I collect, why I collect it, how it is used, how it is stored, and your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

What information I collect

I may collect the following information:

  • Your name, address, telephone number and email address.

  • Date of birth and emergency contact details (where provided).

  • Medical and health information, including symptoms, medical history, medications, allergies, lifestyle information and consultation notes.

  • Information relating to your emotional wellbeing that you choose to share.

  • Appointment records and correspondence.

  • Payment information (where applicable).

I only collect information that is relevant to providing safe and effective homeopathic care.

How I collect your information

Information is collected when you:

  • Complete my online intake form.

  • Contact me by email, telephone or message.

  • Attend consultations.

  • Provide updates about your health during treatment.

Why I collect your information

Your information is used to:

  • Provide homeopathic care.

  • Assess your health and wellbeing.

  • Maintain accurate clinical records.

  • Arrange and manage appointments.

  • Communicate with you regarding your care.

  • Meet my legal, professional and insurance obligations.

  • Respond to enquiries.

I will never sell your personal information.

Lawful basis for processing

Under UK GDPR, I process your information because:

Article 6 UK GDPR

  • Processing is necessary for the performance of a contract (providing the services you have requested).

Article 9 UK GDPR (Special Category Data)

  • I process your health information with your explicit consent for the purposes of providing complementary healthcare.

Confidentiality

Everything you tell me during consultations is treated as confidential.

Your information will only be shared if:

  • You have given your permission.

  • I am required to do so by law.

  • There is a safeguarding concern.

  • There is a serious risk of harm to you or another person.

Where possible, I will discuss this with you first.

Electronic storage

My client records are submitted through Tally Forms and stored securely within Tally, as well as in a secure digital file. Written records are kept in a locked and secure filing cabinet.

Reasonable technical and organisational measures are used to protect your information from unauthorised access, alteration, disclosure or loss.

Only I (and, where applicable, authorised administrative support working under confidentiality obligations) have access to your records.

How long I keep your information

Clinical records are retained in accordance with professional guidance and legal requirements.

Unless a longer period is required by law or professional obligations, records are generally kept for:

  • Adults: 7 years after your last consultation

  • Children: Until age 25 (or 26 if aged 17 at the end of treatment), or 7 years after the last consultation, whichever is longer

Records are securely destroyed when they are no longer required.

Sharing your information

Your information will not normally be shared with anyone outside my practice.

With your permission, I may communicate with other healthcare professionals involved in your care if this would benefit your treatment.

I may also share information where required by law.

Your rights

Under UK GDPR you have the right to:

  • Request access to the personal information I hold about you.

  • Request correction of inaccurate information.

  • Request erasure of your information where applicable.

  • Request restriction of processing in certain circumstances.

  • Object to certain types of processing.

  • Request a copy of your information in a portable format where applicable.

  • Withdraw your consent for future processing of health information, where consent is the lawful basis relied upon.

Please note that I may be required to retain certain records to meet legal, insurance or professional obligations.

Data security

I take appropriate steps to protect your information, including:

  • Secure password-protected systems.

  • Encrypted electronic storage where available.

  • Restricted access to records.

  • Regular software and security updates.

Complaints

If you have any concerns about how your information is handled, I encourage you to contact me first so that I can try to resolve the issue.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO).

Information Commissioner's Office

Website: https://ico.org.uk

Telephone: 0303 123 1113

Changes to this Privacy Notice

This Privacy Notice may be updated from time to time. The latest version will always be available on my website and provided on request.

Contact

If you have any questions about this Privacy Notice or how your information is used, please contact:

Danica Apolline-Matić

Email: danica.apolline@gmail.com

Telephone: +44 (0) 7739967841