Question

What are my privacy obligations as a health business?

Answer

If you're running a health business, you're likely to be collecting and managing customers' health information. Under UK privacy laws, health information is considered much more sensitive than standard data. As such, there are additional requirements that apply.

For instance, if your health business is collecting health information, you are legally required to have a Privacy Policy in place in accordance with the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR) regardless of your business size.

The sensitive nature of health information means that your business needs to have well-drafted Privacy Policies, Cookie Policies, NDAs, and Terms and Conditions in compliance with privacy laws.

If you're conducting business in the EU, your Privacy Policy will need to comply with the EU GDPR.

Rowan Gardoce

Rowan is the Marketing Coordinator at Sprintlaw. She is studying law and psychology with a background in insurtech and brand experience, and now helps Sprintlaw help small businesses

Have a Question?
Ask Us!

Enter your details to get started

* Proceeding confirms you agree to our Privacy Policy

What our clients are saying

“Can't speak highly enough of my experience with Sprintlaw - quality advice, fast and efficient responsiveness and a professional product."

“I'm so glad I used Sprintlaw - it was easy, affordable and their lawyers gave top quality advice. I could tell they really cared about my business.”

“They’ve helped us tremendously and are seriously knowledgeable and honest. Couldn’t recommend the crew at Sprintlaw more!”

What are my privacy obligations as a health business?

Have a Question? Ask Us!

Your legals made easy

Have a Question?
Ask Us!