Last updated: 23/2/26
This Privacy Policy explains how personal information is handled when you visit this website or contact us using the details provided. This policy applies only to interactions with this website. The processing of clinical and healthcare information is governed separately by our Patient Privacy Notice, which applies once you contact us regarding care or become a patient.
This website is operated by John Sharp Eye Surgery Ltd, a private ophthalmology clinic based in the United Kingdom. We are the data controller for the purposes of data protection law.
ICO Registration Number: ZB312367
We aim to keep website data collection to a minimum.
This website does not use marketing cookies, advertising pixels, or analytics tools.
Our hosting provider may use strictly necessary cookies to ensure the security and basic functionality of the website. These cookies are essential and exempt from consent requirements under UK law.
Our web server automatically logs limited technical information, such as IP address, browser type, and access timestamps. This information is used for security monitoring and system maintenance only. It is processed in aggregate form and is not used to identify individuals.
If you choose to contact us by email or telephone, we may process:
Security note: Email is not a fully secure method of communication. We recommend that you avoid sending detailed or highly sensitive medical information by email until a secure communication channel has been established. If health-related information is received, it will be handled in accordance with our Patient Privacy Notice.
We process personal data for the purpose of responding to enquiries and managing communications.
The lawful basis for this processing is Legitimate Interests under UK GDPR. We do not use website-related personal data for marketing purposes without your explicit consent.
Our website is hosted by a third-party provider. As a global hosting provider, this may involve the processing of limited technical data on servers located outside the United Kingdom, including the United States.
Where international transfers occur, appropriate legal safeguards are in place, including Standard Contractual Clauses, to ensure that personal data is protected to UK GDPR standards.
We take reasonable technical and organisational measures to protect personal data processed via this website. However, no method of internet transmission is completely secure, and information is transmitted at your own risk.
Under UK GDPR, you have rights in relation to your personal data, including the right to:
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).
This website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites and encourage you to review their privacy policies.
If you have concerns about how your data is handled, you may contact us directly using the details above or complain to the Information Commissioner’s Office (ICO):
0303 123 1113
Last updated: 23/2/2026
This Patient Privacy Notice explains how John Sharp Eye Surgery Ltd collects, uses, and protects personal and health information relating to patients and prospective patients.
We provide services to adult patients only and do not treat individuals under the age of 18.
John Sharp Eye Surgery Ltd is a private ophthalmology clinic based in the United Kingdom.
For the purposes of data protection law, we are the data controller.
We may process the following categories of information:
This information may be obtained directly from you, from referrers, or through communications by email or telephone.
We use your personal and health information to:
Under UK GDPR and the Data Protection Act 2018, we process personal and health information on the following lawful bases:
We do not rely on consent as the primary legal basis for processing clinical data, as healthcare records must be maintained for patient safety and legal reasons.
If you choose to communicate with us by email or telephone, any health-related information you provide will be treated as confidential and handled in accordance with this notice.
Relevant information may be incorporated into your clinical record to ensure continuity and safety of care. While we take reasonable steps to protect communications, electronic communications carry inherent security risks.
We share only the minimum necessary information, and only where appropriate, with:
Medical records are retained in accordance with professional guidance and legal requirements. For adult patients, records are typically retained for a minimum of 8 years following the last episode of care, or longer where required.
We take appropriate technical and organisational measures to safeguard personal and health information, including:
Under UK GDPR, you have the right to:
Note on erasure: The right to erasure (the “right to be forgotten”) does not generally apply to clinical records, as we are required to retain these for patient safety, legal compliance, and professional indemnity purposes.
To make a data protection request or raise a concern, please contact us using the details above.
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
0303 123 1113
Copyright © 2026 John Sharp Eye Surgery Ltd - All Rights Reserved.