Our Privacy Disclosures

Who we are

We are a private, bespoke physical therapy practice.  Our website address is: https://www.yespt.biz.

Yes! PT is a GDPR-compliant site.

What personal data we collect and why we collect it


We do not allow visitors/clients to post comments.


At present, we do not allow visitors/clients to post media.  Although we try to prevent easy downloading, malicious visitors to the website may be able to  download and extract location data from images posted on the website.

Contact forms

Information provided on our Contact Form is stored securely on the Yes! PT site.  Yes! keeps a list of emergency contacts in the office in a secure location.  No other person should have access to your information from us, except as required by law.  See “Your Protected Health Information”, below.


Yes! PT does not use cookies.  Unless you visit other sites (see “Embedded content” below), you should be unaffected by cookies.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.  For example, when you use the Square appointment service, you will be directed to the Square website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


None of your personal data is shared by Yes! PT, except as required by law.

Yes! PT receives anonymized data from Google My Business, and several website performance apps.

How long we retain your data

Any data you provide and its metadata, are retained for a period of 7 years.

What rights you have over your data

You can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor submissions may be checked through an automated spam detection service, and an automated anti-malware service.  Yes! PT does not knowingly share your data in any other way, except as required by law.

Your Protected Health Information (PHI)

From time to time, Yes! PT may be required by law to share your personal data in the form of physical therapy reports and recommendations, with your physician or other healthcare provider.  In doing so, we treat your data as PHI, and take all necessary steps to ensure your privacy. 

Additional information

How we protect your data

Yes! PT implements Secure Sockets Layer (SSL) encryption for all transactions.  All data stored on the Yes! PT website are protected by our web host’s (Scala Hosting) data policies.

What data breach procedures we have in place

Yes! PT relies on our web host’s (Scala Hosting) tech team for data security.  They have an outstanding track record.

What automated decision making and/or profiling we do with user data

The only automated profiling on the Yes! PT site occurs during our automated spam checking process, and our automated anti-malware check.

Industry regulatory disclosure requirements

Please see our web host’s (Scala Hosting) privacy policies.  Bear in mind that these policies most directly apply to Yes! PT and not to individual clients.