Privacy Policy
22nd March 2025
New Vision Nursing Limited
Email: Info@newvisionnursing.co.uk
At New Vision Nursing Limited, we are committed to protecting and respecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR). This Privacy Policy outlines how we collect, use, store, and share your personal information, including through trusted platforms such as **Zanda** and **Xero**.
1. Who We Are
New Vision Nursing Limited is a UK-based independent consultancy offering mental health nurse therapies, training, supervision, and risk assessment expertise to mental health professionals and services.
2. What Information We Collect
We may collect and process the following categories of personal data:
For Customers:
For Therapy Clients:
Sensitive data is processed with your explicit consent or where it is necessary for the provision of health-related services.
3. How We Collect Your Information
We collect your data directly when you:
- Contact us via email, website forms, or telephone
- Book sessions or services (e.g., training, supervision, consultancy)
- Interact with us via Zanda (secure portal for communication and file sharing)
- Receive invoices or payment requests via Xero or Zanda
- Subscribe to updates or download resources
4. How We Use Your Data
We process your personal data on a lawful basis. Specifically, we may use your information to:
- Deliver agreed services (consultancy, supervision, training)
- Communicate with you about sessions, resources, or enquiries
- Send invoices and manage accounts via **Xero**
- Share documents or updates securely via **Zanda**
- Maintain records for professional, regulatory, and safeguarding purposes
- Improve and monitor service quality
5. Platforms We Use
-Zanda: Used for secure communication, record-keeping, session scheduling, and document sharing. Zanda complies with UK GDPR. [Review Zanda’s privacy policy:https://zandahealth.com/uk/privacy-policy/#:~:text=and%20compliance%20tools.-,We%20do%20not%20share%20any%20Personal%20Health%20Data%20or%20Customer,data%20storage%2C%20and%20payment%20processing. ]
- Xero: Used to issue invoices, track payments, and manage financial records. Xero is GDPR-compliant. [Review Xero’s privacy policy: https://www.xero.com/uk/about/legal/privacy/]
6. Data Sharing
We do not sell your personal data. We may share data only when necessary with:
- Service providers acting under confidentiality agreements (e.g., accountants using Xero)
- Legal or regulatory bodies where required (e.g., for safeguarding or professional conduct)
- Professional indemnity insurers if needed
All third parties are required to comply with data protection law and may only process your data on our instructions.
7. Data Retention
We retain personal data for 10 years following your last interaction with our services. This ensures compliance with legal, contractual, and safeguarding requirements. After this period, your data will be securely deleted or anonymised.
8. Your Rights Under UK GDPR
You have the right to:
-Access the personal data we hold about you
-Request rectification of inaccurate or incomplete data
- Request erasure of your data (where no legal obligation exists to retain it)
- Restrict or object to processing
- Withdraw consent (where processing is based on consent)
- Lodge a complaint with the Information Commissioner’s Office (ICO)
To exercise any of your rights, please contact us at:
9. Data Security
We take data protection seriously and have appropriate measures in place to prevent unauthorised access, loss, or misuse of your information.
10. Changes to This Policy
This policy may be updated periodically. The latest version will always be available on our website or upon request.
Raising concerns
Should you have any concerns about our data protection practices, you can raise these directly with your us. You can also notify the ICO. Our ICO reference is ZB265948