Like most websites we use cookies to deliver a personalized service. To use the website as intended please accept cookies. Learn more
09 June 2026

HealthTracker™ Privacy Notice (UK GDPR)


Last updated: March 2026


This Privacy Notice explains how HealthTracker Ltd collects, uses, and protects your personal information when you use the HealthTracker™ platform or participate in clinical or research projects using the system. It also explains your rights under UK data protection law.

HealthTracker Ltd acts as a Data Controller for the purposes described in this notice.

Our Privacy commitments are:

We are commited to:

  • Keeping your personal data secure and confidential
  • Processing your data lawfully, fairly, and transparently
  • Collecting only the data necessary for clinical care, research, or service delivery
  • Respecting your rights under UK data protection legislation

1. Who we are


HealthTracker Ltd is a UK based SME established in January 2012 that develops secure digital tools to support clinical monitoring and research.

The HealthTracker™ platform is a web-based health monitoring system originally developed within Guy’s and St Thomas’ NHS Foundation Trust and Great Ormond Street Hospital NHS Foundation Trust and later transferred to HealthTracker Ltd (with royalties paid to the NHS).

HealthTracker specialises in scalable cloud-based systems used for:

  • Clinical monitoring
  • Patient centred outcome measures (PCOMs)
  • Research studies
  • Service evaluation and healthcare analytics

The platform allows patients, parents/carers, teachers, clinicians and researchers to provide or access information relevant to healthcare monitoring and research projects.

Our team:

Chief Executive Officer: Paramala Santosh

Chief Technical Officer & Data Protection Officer: Dr Federico Fiori

Data Protection Officer: Alin Buda

Contact: alin@healthtracker.co.uk

2. How the law protects you


UK data protection law requires that we only use personal information when we have a lawful reason to do so.

We may process your personal data under one or more of the following lawful bases:

  • Consent - where you have agreed to participate in a clinical or research project
  • Public interest / scientific research - where processing is necessary for approved research
  • Legal obligation - where we must comply with regulatory or legal requirements
  • Legitimate interests - where necessary to operate and improve the HealthTracker™ service

Special category data

Some data collected through HealthTracker™ is considered special category data, including health information.

Examples include:

  • Health information
  • Genetic or biometric data
  • Racial or ethnic origin
  • Religious or philosophical beliefs
  • Lifestyle information

This data is processed only when legally permitted and with appropriate safeguards.

3. Categories of personal information we may use


Category Description
Socio demographic data Profession, nationality, education or social group information
Social relationships Information about carers, family members or teachers involved in care
Usage data Information about how you use the HealthTracker platform
Special category data Health, genetic, biometric or lifestyle data where relevant to the project
Consent information Permissions and preferences you provide regarding participation or communication

Not all categories apply to every user.

4. Where we collect personal information from


We may collect personal information from:

Information provided directly by you

  • When completing questionnaires or surveys
  • When using HealthTracker™ as part of a clinical service
  • When participating in a research project

Information collected through system use

  • Login activity
  • Website access data
  • Platform usage information

Information provided by third parties involved in care or research

Where appropriate and authorised, information may come from:

  • Healthcare professionals
  • Hospitals or clinical services
  • Parents or carers
  • Teachers
  • Research organisations in approved studies

5. How long we keep your personal information


We retain personal data only as long as necessary for the purposes for which it was collected.

Typically, this means:

  • While you are an active HealthTracker™ user
  • Up to 10 years after your use of the platform ends, where required for research governance, legal compliance or audit purposes

In certain circumstances data may be retained longer where required by:

  • Research regulations
  • Clinical governance requirements
  • Legal or regulatory obligations

We apply safeguards to ensure your privacy is protected during the retention period.

6. If you choose not to provide personal information


Participation in HealthTracker™ is voluntary.

You may choose not to provide personal data by:

  • Withdrawing from the clinical or research project using the platform
  • Choosing not to use the HealthTracker™ system

However, this may limit your ability to participate in certain services or studies.

7. Cookies


Cookies are small files placed on your device when visiting a website.

They allow websites to recognise your browser and remember certain information about your visit.

HealthTracker™ uses cookies primarily to:

  • Enable secure login
  • Maintain user sessions
  • Improve website functionality

For more information, please see our Cookie Policy.

8. How to complain


If you are unhappy with how we have handled your personal data, please contact us first so we can try to resolve the issue.

Email:alin@healthtracker.co.uk

You also have the right to complain to the regulator, and to lodge an appeal if you are not happy with the outcome of a complaint. In the UK this is the Information Commissioner’s Office. Find out on their website how to report a concern.

9. How to withdraw consent


Where we rely on consent to process your data, you may withdraw that consent at any time.

To do so, please contact:

alin@healthtracker.co.uk

Withdrawal of consent will not affect processing already carried out before consent was withdrawn.

10. Access to your personal information


You have the right to request a copy of the personal information we hold about you.

Requests can be made by contacting:

alin@healthtracker.co.uk

This is sometimes referred to as a Subject Access Request

11. Your data protection rights


Subject to applicable law, you have the right to:

  • Request access to your data
  • Correct inaccurate information
  • Request deletion of your data
  • Restrict or object to certain processing
  • Request data portability

Some rights may be limited where data is required for legal, research or clinical governance purposes.

12. Who we share your personal information with


Your personal information may be shared with organisations involved in the clinical service or research project using HealthTracke™.

  • NHS organisations
  • Universities
  • Research institutions
  • Healthcare professionals involved in your care

Where possible, information shared externally will be anonymised or aggregated so that individuals cannot be identified.

Anonymised data may be used in:

  • Academic research
  • Scientific publications
  • Conferences or professional meetings

In all cases we take steps to ensure individuals cannot be identified.