← Back to home
Privacy Policy
Last updated: October 2025
At Physio Health, protecting your personal data is an absolute priority.
This policy informs you about how we collect, use, and protect your data in accordance with the General Data Protection Regulation (GDPR) and Belgian legislation.
1. Data Controller
Physio Health
Home physiotherapy practice
Email: info@physiohealth.be
Phone: +32 472 19 41 57
2. Data Collected
2.1 Data collected via the contact form
- First and last name
- Phone number
- Email address
- Type of care desired
- Message and information related to your request
2.2 Health data (as part of therapeutic follow-up)
As a physiotherapy practice, we process health data concerning you:
- Relevant medical history
- Medical diagnosis and prescription
- Clinical observations and functional assessments
- Treatment plans and therapeutic follow-up
- Communications with your treating physician
2.3 Technical data
- IP address
- Browser type and operating system
- Pages visited and browsing duration
- Cookie data (with your consent)
3. Processing Purposes
Your data is collected and processed for the following purposes:
3.1 Contact request management
- Respond to your information requests
- Schedule your appointments
- Call you back for confirmation
3.2 Therapeutic care
- Establish and maintain your patient file
- Ensure continuity of care
- Communicate with your prescribing physician
- Issue care certificates for reimbursement
3.3 Legal and regulatory obligations
- Patient file retention (legal obligation: 30 years)
- Billing and accounting (legal obligation: 7 years)
- Data transmission to INAMI if necessary
3.4 Service improvement
- Website traffic analysis (anonymized data)
- User experience improvement
- Newsletter sending (with your explicit consent)
4. Legal Basis for Processing
The legal bases for processing your data are:
- Consent: For sending newsletters and using non-essential cookies
- Contract execution: For therapeutic care and appointment management
- Legal obligation: Patient file retention, accounting and tax obligations
- Legitimate interest: Service improvement and website security
5. Data Recipients
Your data may be communicated to the following categories of recipients:
- Physio Health staff: Authorized physiotherapists and administrative staff
- Healthcare professionals: Your prescribing physician (with your consent)
- Reimbursement organizations: Health insurance and insurance companies (for processing certificates)
- Technical service providers: Website host, email management service (under confidentiality agreement)
- Competent authorities: In case of court order or legal obligation
Important: We never sell your data to third parties and do not use it for non-consented commercial purposes.
6. Retention Period
| Type of data |
Retention period |
| Patient file (health data) |
30 years (Belgian legal obligation) |
| Billing data |
7 years (accounting obligation) |
| Contact form (non-patient) |
3 years or until consent withdrawal |
| Newsletter |
Until unsubscription |
| Cookies and browsing data |
13 months maximum |
7. Data Security
We implement appropriate technical and organizational measures to protect your data:
- Encrypted communications (SSL/TLS certificate)
- Secure hosting in Europe
- Restricted data access (authentication, principle of least privilege)
- Regular and secure backups
- Staff awareness of GDPR and professional secrecy
- Procedures in case of data breach
8. Your Rights
In accordance with GDPR, you have the following rights:
8.1 Right of access
You can obtain a copy of your personal data and information about its processing.
8.2 Right of rectification
You can request correction of inaccurate or incomplete data.
8.3 Right to erasure ("right to be forgotten")
You can request deletion of your data, unless we have a legal obligation to retain it (e.g., patient file).
8.4 Right to restriction of processing
You can request restriction of processing of your data in certain circumstances.
8.5 Right to data portability
You can receive your data in a structured format and transfer it to another controller.
8.6 Right to object
You can object to the processing of your data for reasons relating to your particular situation.
8.7 Right to withdraw consent
You can withdraw your consent at any time (newsletters, cookies).
How to exercise your rights?
To exercise your rights, contact us:
We will respond within a maximum of one month. Proof of identity may be requested to verify your identity.
9. Right to Complaint
If you believe that your rights are not being respected, you can file a complaint with the Belgian supervisory authority:
Data Protection Authority (DPA)
Rue de la Presse, 35
1000 Brussels
Email: contact@apd-gba.be
Tel: +32 2 274 48 00
Website: www.autoriteprotectiondonnees.be
10. Cookies
This site uses cookies to improve your experience. We distinguish:
Essential cookies (no consent required)
- Session and website operation cookies
- Language preferences
Non-essential cookies (with your consent)
- Analytics cookies (Google Analytics or privacy-friendly alternative)
- Mapping cookies (Google Maps)
You can manage your cookie preferences via our consent banner or your browser settings.
11. Policy Modifications
We reserve the right to modify this privacy policy at any time. Any modification will be published on this page with a new update date. We encourage you to regularly consult this page.
12. Contact
For any questions concerning this privacy policy:
← Back to home