BOOK NOW
  • SIGN IN

Privacy Policy

D4U Medical is committed to protecting your privacy and ensuring that your personal information is handled in a safe and responsible manner. This policy outlines how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

1. Who We Are

D4U Medical
Website: www.d4u.org.uk
Phone: 0330 229 3304
We provide driver medical assessments including D4, Group 2, taxi/private hire, and motorsport medicals across the UK.

2. What Data We Collect

Contact Data: Phone number, address, email address

Verification Data: Passport or driving licence, proof of address

Medical Data: Health history, prescription information, GP records, and information shared during consultations

Appointment Data: Booking details, appointment type, outcome

Technical Data: IP address, browser type, device type, usage data via cookies

Payment Data: Transaction records (Note: card details are processed securely via third-party processors — we do not store full payment data)

3. How We Collect Data

We collect personal data when you:

  • Book an appointment via our website or over the phone
  • Submit digital or paper forms
  • Attend a medical assessment
  • Communicate with us directly
  • Use our website (via cookies and tracking tools)

4. Why We Process Your Data

We process your data to:

  • Manage your booking and appointment
  • Conduct your medical assessment
  • Verify your identity and eligibility
  • Fulfil legal and regulatory obligations (e.g. DVLA, licensing councils)
  • Communicate updates or requests related to your booking
  • Maintain secure and accurate clinical records
  • Improve our website and customer service

5. Lawful Basis for Processing

Our lawful grounds for processing data include:

Contractual necessity – to deliver the service you’ve booked

Legal obligation – to comply with DVLA and medical regulations

Legitimate interest – to improve our services and protect our business

Consent – where explicitly required (e.g. marketing or optional data use)

6. Sharing Your Information

We do not sell your data. We only share your information when necessary:

  • With our GMC-registered doctors
  • With third-party IT and secure storage providers
  • With DVLA, local authorities, or your GP (only with consent or legal basis)
  • With payment providers (for processing purposes only)

7. How We Store and Protect Your Data

  • Your data is stored in secure, access-controlled systems
  • Sensitive data is encrypted where applicable
  • We retain medical records for a minimum of 7 years, in line with clinical and legal requirements
  • Data is destroyed or anonymised when no longer needed

8. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Request correction of inaccurate or incomplete data
  • Request erasure of your data (where no longer legally required)
  • Object to or restrict certain processing
  • Withdraw consent where consent is the basis for processing
  • Lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk
  • To exercise any of your rights or ask about how your data is handled, please contact us at 0330 229 3304.