Posts in Insurance


July 24th, 2019 Posted by Acupuncture, Alternative Medicine, Consent forms, Consultation Forms, GDPR, Holistic Health, Insurance, Paperless, Security No Comment yet

Most of us are way beneath the higher risk threshold but our insurance companies are taking these levels of risk on our behalf and charging us to do so.

I spent some time this weekend chatting to specialist Healthcare Insurance Brokers at the exhibition and they were very pleased to see me. They assured me that the actuaries will sleep better knowing their clients are using iPEGS paperless forms.

Now I like a well-rested actuary as well as the next man, but my objective is to get them to discount insurance for our users. Not only is your risk less, so are theirs, after all.

For most practices, GDPR creates the need for greater investment either in consultant’s fees or in your own valuable time. Ensuring your operational processes are up to the required standards, ensuring websites, forms etc are designed and optimised for the latest protocols.

Large companies may appoint a DPO (data protection officer). However, for most of us DPO is just another hat to hang alongside the, therapist, counsellor, head of HR, finance, marketeer, sales manager and parent hats ti name a few. Being too busy is no defence in law unfortunately. I’ve always believed it’s a clever man who buys his brains. So if we can rely on professionals like iPEGS and save money into the bargain it’s a bonus.


Compliance isn’t solely an expense, in order to conform to the rules, it helps to inspire trust and confidence in the eyes of our patients.

Companies who seem to cut corners with data protection might well cut corners elsewhere. Most of us are members of a National Hypnotherapy association and have no problems with Hypnotherapy ethical issues. Cutting corners is not in our DNA we understand our ethics and professionalism are all we have. So going digital make sense.

Compliance not only protects the patient, but it also protects your clinic from overstepping the boundaries.


  • Are you or someone on your team trained on data protection?
  • What changes have you made this year to become GDPR compliant?
  • Have you built client consent into your system?

Clients can give consent in various ways, such as email, a contact form on the website, a check-box on your landing page, tick box on the form etc.

Consent records must specify the time and date when consent was given, as well as the exact means that they delivered consent. 

Can you simply and rapidly process data deletion for clients. Is it at the press of a button or will it take hours of work?

Do any 3rd parties have access to your client’s data? Third party access to data is all too common, third parties who might be using the same network or facilities, you need to be aware of any other parties who might have access to the data you’re collecting. This can be a particular problem in mixed therapy practices. Is it kept in a filing cabinet where others have access or a shared network?


Are there proper security protocols in place that will detect data breaches when they occur? How do you know if your client’s data had been hacked into or copied? The last thing you want is to find out about a data breach from your users and valued client. This is a sure-fire way to lose trust. 

How easy is it to export your data? Is it available at the touch of a button or is it a trip down to the cellar and a root through the filing cabinets?

One component of GDPR is privacy by design. This requires therapists to design their systems with the proper security protocols in place from the start. Failure to design your systems of data collection the right way will result in a hefty fine. It is a good idea to take a good look at your website if it hasn’t had a design overhaul in the last year or so.

Are your forms easy to find and wipe? Who has copies? Are you holding data on your laptop or PC? Do others have access to these devices?

The concept seems sort of complex, but essentially it refers to the need to have business systems designed with proper security and privacy measures integral. iPEGS paperless forms provides such a system.

If you would like to help improve the management of your client data and in the way you collect it please check out our website or contact me directly or call on 01244 955350, I will be pleased to help.


July 24th, 2019 Posted by Acupuncture, Alternative Medicine, Consent forms, Consultation Forms, GDPR, Holistic Health, Hypnotherapy, Insurance, Medical History Form, Paperless, Uncategorized No Comment yet

As a Therapist. you need to keep a lot of information about your clients and their treatment.

In fact, your insurance against malpractice or negligence claims policy demands it and Insurers can be quite specific. 

I checked the small print from Professional Indemnity Insurance policies for Alternative practitioners. Here are some things I discovered, I hope they help.


Insurers require you to take consultation records and then retain those records. One policy I checked asked for five years, but most require seven years, after the last treatment given. 

Insurers advise that you keep the records of minors for at least 7 years after the minor reaches 18.

You should record the client’s full name, date of consultation and notes on their lifestyle/medical history. Also, you should record the treatment you gave the client.

Notes should at least include a brief description of the therapy or treatment. 

The therapist must adequately record each and every treatment given to each and every client. 

The record is to include full details of the consultation process, the treatment, the result of the treatment and any aftercare instructions given where appropriate.

Any adverse reaction to the therapy or treatment must be recorded either separately or as part of the notes already used.


You will be need to produce your records of the client/event In the event of a claim. This is to protect you in the event of a claim against you.

Where therapists work in a gym, sports or leisure centre, or a shared practice often the Centre keeps these records.  

You must advise the Centre of any unusual events or of any injuries sustained during your class. 

You must ensure that the Centre will give you access to your records. To protect yourself in case a claim is made against you in the future.

You should record the name and brief details of the person. The date of the session and the therapy given, at demonstration sessions or public events.

If you give Yoga, Pilates, Fitness, Exercise, Meditation therapy, record the name and brief details of the person, date of the session and any other relevant facts.

When new clients attend your class, you should talk to them and ensure that there is no reason why they should not attend your class. If in doubt you should ask for their GP’s confirmation that they can safely participate in your class. 

At the start of each class please ask all participants is there any change in their circumstances that might affect their ability to participate in and complete the class safely.

You must produce your records of the client/event. You must adequately record each and every treatment given to each and every client. This protects you in the event of a claim being made against you.


Using iPEGS forms is economical, quick, tidy, neat and professional. No papers to find, no filing to do.

By using the iPEGS Paperless System for your Consultation Forms, Consent Forms, Medical Histories and Treatment Plans, you can be sure that your data is safe. Saved to the cloud there is no risk of a computer breakdown losing all your data. As the data processor we store and encrypt your data in a secure, state of the art, UK data centre.

We are Cyber Essentials Certified giving you peace of mind that our defences will protect against the most common cyber-attacks.

We have achieved the IASME governance standard in relation to GDPR where we have demonstrated wider governance for management of the controls protecting personal data.

If you would like to know more simply email me: steve or call me directly on: 01244 955350 and we can discuss how iPEGS can help improve your client’s experience.