Privacy and Cookie Policy
1. Introduction
This Privacy and Cookie Policy explains how AllBest Solutions Limited collects, uses, stores, and protects personal data when you visit our website or contact us. We are committed to protecting your privacy and handling personal data lawfully, fairly, and transparently, in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and, where applicable, the EU General Data Protection Regulation (EU GDPR)
2. Who We Are
AllBest Solutions Limited is a UK‑based, CQC‑regulated domiciliary care provider,we provide care to elderly people in their own homes in Surrey and surrounding areas. We are rated GOOD by the CQC
For the purposes of data protection law, AllBest Solutions Limited is the data controller for personal data processed via this website
Contact for data protection matters:
3. Personal Data We Collect
3.1 Information You Provide
We may collect personal data that you provide directly to us, including:
- Information submitted through contact or enquiry forms
- Email correspondence
- Information provided when enquiring about care services or employment
3.2 Information Collected Automatically
When you visit our website, we may automatically collect limited technical information, including:
- IP address (anonymised where technically possible)
- Device and browser information
- Pages visited and interactions with the site
- Cookie identifiers, where consent has been given
3.3 Special Category Data (Health Information)
We do not routinely collect health information through this website. However, if you voluntarily provide information relating to health or care needs when contacting us, this information will be processed strictly for the purpose of assessing or delivering care services
4. Lawful Basis for Processing
We process personal data under the following lawful bases:
- Article 6(1)(b) UK GDPR – steps taken prior to entering into a contract, including care or employment enquiries
- Article 6(1)(f) UK GDPR – legitimate interests, including responding to enquiries and maintaining website security
- Consent – for non‑essential cookies and analytics, where required
Where health or care‑related information is processed:
- Article 6(1)(e) – performance of a public task
- Article 9(2)(h) – provision of health or social care
5. GP Connect and Health Information
GP Connect is an NHS England service that allows authorised health and care professionals to access relevant information from GP records when they are directly involved in an individual’s care
GP Connect is used solely to support safe and effective direct care and is not used for marketing, profiling, or research purposes
Access is limited to authorised professionals using NHS‑approved systems. All access is logged and auditable
The lawful basis for using GP Connect data is:
- Article 6(1)(e) UK GDPR – public task
- Article 9(2)(h) UK GDPR – health or social care
Individuals cannot opt out of GP Connect where it is required for direct care, but may opt out of secondary uses of NHS data via the National Data Opt‑Out
6. Cookies and Similar Technologies
Our website uses cookies to ensure it functions correctly and, where consent is given, to help us understand how it is used
6.1 Cookie Categories
Strictly Necessary Cookies
These cookies are required for the website to operate securely and correctly. They cannot be disabled
These cookies are required for the website to operate securely and correctly. They cannot be disabled
Preference Cookies
These cookies remember your preferences, such as language or regional settings
These cookies remember your preferences, such as language or regional settings
Analytics Cookies
These cookies help us understand how visitors use our website so we can improve performance and content. Analytics cookies are only used where consent is given
These cookies help us understand how visitors use our website so we can improve performance and content. Analytics cookies are only used where consent is given
Marketing Cookies
These cookies are used to measure the effectiveness of marketing activities. They are only used where consent is given
These cookies are used to measure the effectiveness of marketing activities. They are only used where consent is given
7. Google Consent Mode v2
For visitors in the UK and EU/EEA, we use Google Consent Mode v2 to ensure that Google services respect your cookie consent choices. Where consent is not given, Google receives only limited, cookieless measurement signals
8. International Data Transfers
Where personal data relating to EU or EEA residents is transferred outside the UK or EEA, appropriate safeguards are applied, including adequacy regulations or approved contractual safeguards
9. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including compliance with legal, regulatory, safeguarding, and CQC requirements. Retention periods are reviewed regularly
10. Your Data Protection Rights
Under UK GDPR, and EU GDPR where applicable, you have the right to:
- Access your personal data
- Request correction of inaccurate or incomplete data
- Request erasure of data where applicable
- Request restriction of processing
- Object to processing
- Request data portability where applicable
- Withdraw consent at any time, where processing is based on consent
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
https://www.ico.org.uk
https://www.ico.org.uk
11. Managing Cookie Preferences
You can manage or withdraw your cookie preferences at any time by using the “Manage Consent” link in the website footer
12. Changes to This Policy
We may update this Privacy and Cookie Policy from time to time. Any changes will be published on this page with an updated revision date