Privacy Policy

Privacy Policies

Website Users

In this Privacy Policy when we refer to “Ailsa Care” or “we”, “us” or “our”, we mean Ailsa Care.

Ailsa Care is committed to protecting the privacy of individuals who use our services or even if you are just visiting our website.

In accordance with Data Protection legislation Ailsa Care is registered with the ICO.

This notice sets out the way Ailsa Care processes, stores and protects user data and information that you may supply to us. It also outlines the obligations and requirements of the users, the website and website owners.

You may contact us at any point with regards to this privacy notice or the way your personal data is being processed by contacting our Data Protection Officer by one of the following means:

By post: Falkirk Business Hub, 45 Vicar Street, Falkirk

By phone: 01324 230 111

By email:

Updates to this website Privacy Policy 

From time to time we may amend this privacy policy to fall in line with changes to legislation, including but not limited to the General Data Protection Regulation 2016, Privacy and Electronic Communication Regulation 2003 and the Data Protection Act 2018.

Any changes, updates or amendments to this policy will be shown on our website with the date of the latest update.

Personal Data 

‘Personal data’ is defined in law as any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

We collect or amass personal data in accordance with our contractual obligations or with consent as set out in our respective privacy policies for service users, staff and job applicants and marketing. 

Purposes for the processing of personal data 

When you enter a contract with Ailsa Care, you will always have clear visibility with regards to the type of personal data that is being collected.

You will have the opportunity to review the purposes of the data collection and you will have the choice to either approve or disapprove. Please note, that if you do not approve or agree to disclose the information required for the delivery of our services, we will be unable to provide these services as we are required to collect certain types of data to be able to provide you with those services.

The information that is collected by Ailsa Care  is used for the following purposes:

  • The provisioning of home care services
  • The provisioning of supported living services
  • The provisioning of live-in care services
  • The provisioning of specialist services
  • The provisioning of respite care services
  • The provisioning of palliative care services
  • The provisioning of end of life care services
  • The provisioning of dementia care services


Where Ailsa Care needs to collect or pass on your information to a third party, we will obtain your consent where we require consent as grounds for processing. For example, if we need to process data any highly sensitive or “special categories” of data, we will obtain your consent and explain the purposes of processing prior to doing so.

Third-party sharing 

Ailsa Care will never sell or share any of your details to any organisations to use for their own marketing or advertising purposes. It may be necessary to provide your information onto a third party for the delivery of a service that you have requested, however we will always ensure that the appropriate safeguards are in place to protect your information prior to transferring.

Ailsa Care may share your information with parties that we have vetted and authorised for the provisioning of a service. Such parties include staff members, technology providers and other services providers that we use to be able to deliver our services. These third party processors may disclose your information to others for the delivery of the service you have requested; please ensure you have familiarised yourself with their terms and conditions and / or their privacy notices.

If you would like a copy of our authorised third parties, please contact us at . Please note that we will only disclose this information to those that we process data regarding.

Where we believe there is a need to investigate, prevent or report illegal activities, issues pertaining to threats to the physical safety of any person we may pass your information onto other 3rd parties including but not limited to The Police and other emergency services, the Care Quality Commission, the Information Commissioner’s Office or the Health and Safety Executive.

Where your data is transmitted internationally, outside of the EEA, we shall ensure that enforceable binding contracts are in place in the absence of a suitable data protection legislation. We will not conduct business where there is neither an enforceable contract nor a suitable data protection legislation.

Cookies in use on this website 

For any information regarding the cookies that are used on this website, please refer to the Cookies Policy Cookies Policy.

Security controls 

Ailsa Care has implemented a number of organisational and technical controls to ensure that the confidentiality, the integrity and the availability of the data that we process is always preserved. The main objective of those controls is to help protect your information from loss, destruction, misuse, unauthorised access or disclosure. The combination of organisational and technical controls ensures that your data is processed securely at all times.

Organisational controls 

  • User access controls and limitation of data access has been implemented to ensure that only the authorised staff members have access to data.
  • We have implemented a data retention policy for the different datasets that we process. The retention periods for the data are either based on legal requirements set by the regulatory body or in accordance with legitimate purposes to carry our business operations
  • A password policy is in place to ensure that all passwords are changed on a regular basis and that they correspond to the required standards when they are generated
  • We regularly review our information security policies and procedures to ensure that it is up to date with the latest technology and most importantly with the latest legislation with regards to data protection and data privacy
  • We ensure that our third party processors are carefully vetted and selected with regards to compliance with data protection and data privacy laws
  • The access to special categories of data has been limited to staff members on a needs basis in order to reduce the exposure of such type of data
  • Our staff members are well trained professionals

Technical controls 

  • Encryption has been implemented on computer equipment to ensure that data will not be available in the event of loss or theft.
  • Encryption controls have been implemented for data that is in transit and for email communication.
  • Antivirus and malware protection is installed on all computer equipment.
  • Regular backups of our data to ensure that it is readily available in the event of a technical issue or a natural disaster.

Other Sites and external links 

Our website may contain links to other sites that are not controlled by us; therefore we are not responsible for the content or use of these services. Please ensure that you understand this and also please review those website privacy policies and terms and conditions. Ailsa Care cannot and will not be held liable for any damage that might have been caused to your computer equipment by those websites. Such damage includes but are not limited to: loss of data, exfiltration of data, unauthorised intrusion, virus and malware infection, hardware damage. The use of any external link or website is at your own risk.

Special Categories of Data 

We do process medical data and child data at times. Such type of data is processed with the prior positive consent of our clients.  

General Data Protection Regulation Rights 

You have many rights under the GDPR, they are defined as below:

  • The right to be informed
  • The right of access
  • The right to rectification
  • The right to erasure
  • The right to restrict processing
  • The right to data portability
  • The right to object

Rights in relation to automated decision making and profiling.

If you are an existing client of ours and wish to exercise any of these rights, please contact our data protection officer who will be able to assist you in exercising your rights with us as a processor.

If you are a former employee or had another relationship with Ailsa Care and you would like to exercise your rights please contact us at

When an access request is submitted to us, we must verify your identity before any data can be sent to you. If we are unsure about your identity or if our controls do not match the information that is gathered, we reserve the right to nullify the access request.

Additional information 

If you have any questions with regards to this privacy notice, the way your data is handled or if you would like to exercise any of your rights under the General Data Protection Regulation, please contact

If you would like to learn more about the current regulations and legislations about data protection, please refer to the following links:

The General Data Protection Regulation (GDPR)  

The Privacy and Electronic Communications Regulation (PECR)  

For any concerns with regards to your personal data, please contact the Information Commissioner’s Officer at the following link: