Privacy Statement
Effective Date: 11th April 2025
Lotus Care and Support is committed to protecting the privacy, confidentiality, and rights of all individuals whose data we hold. This includes clients receiving care services, their families, our staff, and others we engage with. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
Lotus Care and Support is a domiciliary care provider, delivering personal care and support to individuals in their own homes.
Contact Email: admin@lotuscareandsupport.co.uk
Phone: 07958498566
2. What Personal Data We Collect
We collect and process personal data to deliver our services effectively, safely, and legally. This may include:
Clients and Service Users:
-Full name, address, date of birth, and contact details.
-Health and care needs, GP and NHS details.
-Risk assessments, care plans, and medical history.
-Emergency contact information.
-Financial details for invoicing and payment.
Staff and Applicants:
-Contact information, CV, and employment history.
-DBS (Disclosure and Barring Service) checks.
-Training and qualifications.
-Right to work documentation.
-Payroll and bank details.
Website Visitors:
-Cookies and usage data such as IP address and browser type.
3. Why We Collect Your Data
We collect data for the following reasons:
-To provide safe and effective care services.
-To meet legal and regulatory obligations (e.g. CQC compliance).
-To manage staff and employment matters.
-To respond to enquiries or complaints.
-To maintain business operations and quality improvement.
-To safeguard individuals and prevent harm.
4. Legal Bases for Processing
We process personal data under one or more of the following legal bases:
– Consent, where you have given explicit permission.
– Contract, where processing is necessary to fulfil a service agreement.
– Legal obligation, to comply with laws or regulatory requirements.
-Vital interests, where processing is necessary to protect life.
– Legitimate interests, for operational purposes, where this does not override your rights.
5. Sharing Your Data
We only share personal data when necessary and with appropriate safeguards in place. Recipients may include:
-Healthcare professionals (e.g. GPs, district nurses)
-Local authorities and social services
-Care Quality Commission (CQC)
-Law enforcement or safeguarding bodies
-Payroll, HR, or IT service providers under contract
We do not sell your data or share it for marketing purposes.
6. How Long We Keep Your Data
We retain personal data only for as long as necessary to meet our legal and business obligations. For example:
– Client records: usually retained for 7 years after care ends.
– Staff records: retained for 6 years after employment ends.
7. Your Rights
Under the UK GDPR, you have the right to:
– Access the personal data we hold about you.
– Request correction of inaccurate or incomplete data.
-Request erasure of your data (in certain circumstances).
– Object to or restrict our processing.
– Withdraw consent where applicable.
– Data portability (for data provided directly).
8. How We Protect Your Data
We have appropriate technical and organisational security measures in place, including:
– Secure storage systems and access controls.
– Staff training on confidentiality and data protection.
– Regular audits and risk assessments.
9. Contact Us
If you have questions, concerns, or wish to exercise your data rights, please contact our office contact number or email address;
Lotus Care and Support
07958498566