Last updated: June 2026
This is Augmentive Ltd's Privacy Notice.
As part of the services we provide, we process personal data relating to:
"Processing" includes collecting, recording, organising, storing, structuring, sharing, analysing, restricting, erasing and deleting data.
We are committed to transparency about:
If you have questions about this notice, please contact: privacy@augmentive.io
Augmentive Ltd
Company No. 12464843
Registered Office:
Fora
1 Lyric Square
London
Greater London
W6 0NB
United Kingdom
We are the Data Controller for most processing described in this notice.
Where care is NHS-funded (including Right to Choose):
Clinicians delivering care via Augmentive act as:
Basic Personal Data
Financial Data
We do not store full card numbers.
We collect and process:
This data is processed:
Under Article 6 UK GDPR
Under Article 9 UK GDPR (Special Category Data)
Common Law Duty of Confidentiality
We satisfy the duty because:
We review our processing annually to assess applicability of the National Data Opt-Out.
At present:
We do not use confidential patient information for planning or research purposes beyond individual care where the opt-out would apply.
If this changes, we will:
Further information: www.nhs.uk/your-nhs-data-matters
Stored in:
We use the following processors, grouped by purpose:
Clinical and care delivery
Communications
Payments
Platform and infrastructure
Analytics, monitoring and security
Website and marketing
Business operations
We also use AI-assistance tools (OpenAI's ChatGPT and Anthropic's Claude), Notion and Mapbox in ways that do not involve your personal data.
Some third parties we work with act as independent data controllers rather than our processors — Trustpilot (reviews), Google Ads (advertising) and YouTube (embedded video). Where these set cookies, they are disclosed and consent-gated in our cookie banner.
Each processor operates under:
Where vendors process data outside the UK, we conduct transfer risk assessments to ensure equivalent levels of protection in accordance with UK GDPR.
We collect:
Purpose:
We use:
Third-party tools that set cookies and act as independent controllers — Trustpilot, Google Ads and YouTube — are disclosed and consent-gated here.
Consent is managed via our cookie banner (Usercentrics).
Where you connect Google, we store:
Used solely for:
Tokens can be revoked at any time via Google account settings and are deleted upon disconnection.
Stripe processes:
Augmentive stores:
We do not store full card details.
Where sharing is consent-based:
Where a service user provides details of:
We process limited personal data:
Lawful Basis
Where communication is consent-based, consent is recorded and may be withdrawn.
We do not use this data for marketing.
We process personal data relating to staff, contractors and job applicants.
Personal Data
Special Category Data
Criminal Records
Where required, DBS checks are conducted.
We do not retain criminal record certificates.
We record confirmation that checks have been completed.
Lawful Bases
Article 6:
Article 9:
Sharing
Staff data may be shared with:
Retention periods are aligned with the NHS Records Management Code of Practice where applicable.
When retention periods expire:
Most personal and clinical data is stored and processed in the United Kingdom and the European Economic Area (EEA): our platform hosting (Google Cloud Platform) is in the UK; the clinical record (Semble) is in the UK; clinical documentation (Heidi) is UK-hosted; and several providers are EEA-hosted (for example Twilio in Ireland, Customer.io and Mixpanel in the EU, and Sentry in Germany). UK-to-EEA transfers rely on the UK's adequacy regulations for the EEA.
Some providers process data in the United States (for example Intercom, LogRocket, Stripe and certain Google services). Where data is transferred outside the UK we rely on one or more of:
supported by encryption in transit and at rest and a transfer risk assessment.
Where under 18:
We do not knowingly process data of children under 13 without parental consent.
You have the right to:
We do not charge for access requests unless manifestly unfounded or excessive.
We respond within one month.
You may complain to:
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
https://ico.org.uk/global/contact-us/