Privacy Policy


Huduma Care (website url address: appreciates your business and trust. We are a Welsh based company, offering premium social care giving to our local community. Please read this Privacy Policy, providing consent to both documents in order to have permission to use our services.

Who we are

We are Huduma Healthcare Ltd, and we act as a data controller of your personal data.

We have a dedicated Data Protection Officer (DPO) that you can contact by writing to the above address and marking it for the attention of the DPO. Alternatively you can go to the Contact Us section of our website:

The information we process

Personal Information that we process includes, where relevant:

  • Personal details (e.g. title, name, address, telephone number, email address).
  • Your gender, date of birth and/or age.
  • Your nationality, passport and/or visa & citizenship details (members of staff).
  • Family members’ or other contacts’ details.
  • Financial details (e.g. tax, wage & bank a/c details if we pay you; invoicing information if we supply
    you with a care service or member(s) of staff).
  • Information about your health (e.g. relevant details to provide you with a care service, or to place you for work if you are an employee).
  • Vehicle information.
  • Information we receive from third parties.
  • Criminal Records Information (for vetting members of staff).

Where we get our information from

  • Most of the information we hold will have come directly from you (or other family members).
  • Information generated about you when you use our services or work for us.
  • Third parties (e.g. local authorities [incl. social workers]; the government [e.g. DWP or HMRC]; your
    GP; other family members).

What we use your personal data for

  • The provision of quality care services and/or the supply of care staff.
  • Managing & coordinating care services and for quality assurance purposes.
  • Payroll and invoicing.
  • Maintaining & updating those records required by the law and/or our regulators.
  • To follow guidance & best practice as set by the rules of government and regulatory bodies.
  • Recovery of debt.
  • Communicating with you.

The legal grounds for our processing your personal data

We rely on the following legal bases to use your personal data:

  • Your consent or explicit consent.
  • Where it is needed to provide you with our services and to fulfil our contractual obligations.
  • To comply with our legal obligations.
  • Where necessary to protect your vital interests.
  • For our legitimate business interests (except where these are overridden by your interests, rights or freedoms).
  • Where necessary for medical purposes

When we share your personal information

We may share your information for the purposes listed above with:

  • Governmental and regulatory bodies such as HM Revenue & Customs, the Department of Work &
    Pensions (members of staff).
  • Care Inspectorate Wales.
  • Local Authority Social Services Departments and Contract and Compliance Departments.
  • Complete Background Screening and the Disclosure & Barring Service (vetting of staff).

How and when you can withdraw consent.

  • When we are relying on your consent to process personal data, you can withdraw this at any time by contacting us as specified in paragraph one of this notice.

Is your personal information transferred outside the UK or the EEA?

The simple answer is no – we have no legitimate reason to transfer your data outside the UK.
If your personal information changes
You should inform us (preferably in writing) so that we can update our records.
How long do we keep your information?
We only hold your information for as long as is necessary based on the following criteria:\

  • For as long as we provide you with either a service or work.
  • For as long as we have reasonable business needs (such as managing our relationship with you).
  • For as long as legal and regulatory obligations require.

Keeping your information safe.

We are committed to ensuring that your information is secure with us (and with any third parties who act on our behalf) and to fully complying with the General Date Protection Regulations. We review and update our data protection measures at regular intervals.

Your rights.

All individuals have the following rights under data protection laws, although they do not apply in all circumstances.

  • The right to be informed about the processing of your personal data.
  • The right to have your personal data corrected if it is inaccurate or incomplete.
  • The right to object to processing of your personal information.
  • The right to restrict processing of your personal information & to have your personal data erased.
  • The right to request access to your personal information.
  •  The right to move, copy or transfer your personal information.

Pages on this site may include embedded content, like YouTube videos, for example. Embedded content from other websites behaves in the exact same way as if you visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged-in to that website. Below you can find a list of the services we use:


The Facebook page plugin is used to display our Facebook timeline on our site. Facebook has its own cookie and privacy policies over which we have no control. There is no installation of cookies from Facebook and your IP is not sent to a Facebook server until you consent to it. See their privacy policy here: Facebook Privacy Policy .


We use the Twitter API to display our tweets timeline on our site. Twitter has its own cookie and privacy policies over which we have no control. Your IP is not sent to a Twitter server until you consent to it. See their privacy policy here: Twitter Privacy Policy .


We use YouTube videos embedded on our site. YouTube has its own cookie and privacy policies over which we have no control. There is no installation of cookies from YouTube and your IP is not sent to a YouTube server until you consent to it. See their privacy policy here: YouTube Privacy Policy.


This site uses cookies – small text files that are placed on your machine to help the site provide a better user experience. In general, cookies are used to retain user preferences, store information for things like shopping carts, and provide anonymized tracking data to third party applications like Google Analytics. Cookies generally exist to make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the help section of your browser.

  • cfduid: Is used for our CDN CloudFlare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. See more information on privacy here: CloudFlare Privacy Policy.
  • PHPSESSID: To identify your unique session on the website.
  • wp-auth: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_logged_in_{hash}: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_test_cookie Used by WordPress to ensure cookies are working correctly.
  • wp-settings-[UID]: WordPress sets a few wp-settings-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.
  • wp-settings-[UID]:WordPress also sets a few wp-settings-{time}-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.

If you are not a registered client for our site, there is no personal information we can retain or view regarding yourself.

If you are a client with a registered account, your personal information can be accessed by:

  • Our system administrators.
  • Our supporters when they (in order to provide support) need to get the information about the client accounts and access.

We don’t share your data with third-parties in a way as to reveal any of your personal information like email, name, etc. The only exceptions to that rule are for partners we have to share limited data with in order to provide the services you expect from us.


When you submit a support ticket or a comment, its metadata is retained until (if) you tell us to remove it. We use this data so that we can recognize you and approve your comments automatically instead of holding them for moderation.

If you register on our website, we also store the personal information you provide in your user profile. You can see, edit, or delete your personal information at any time (except changing your username). Website administrators can also see and edit that information.


We use the SSL/HTTPS protocol throughout our site. This encrypts our user communications with the servers so that personal identifiable information is not captured/hijacked by third parties without authorization.

In case of a data breach, system administrators will immediately take all needed steps to ensure system integrity, will contact affected users and will attempt to reset passwords if needed.


If you have a registered account on this website or have left comments, you can request an exported file of the personal data we retain, including any additional data you have provided to us.

You can also request that we erase any of the personal data we have stored. This does not include any data we are obliged to keep for administrative, legal, or security purposes. In short, we cannot erase data that is vital to you being an active customer (i.e. basic account information like an email address).

If you wish that all of your data is erased, we will no longer be able to offer any support or other product-related services to you.


Your privacy is critically important to us. Going forward with the GDPR we aim to support the GDPR standard. AncoraThemes permits residents of the European Union to use its Service. Therefore, it is the intent of AncoraThemes to comply with the European General Data Protection Regulation. For more details please see here: EU GDPR Information Portal.


These third party websites are not screened for privacy or security compliance by, and you release us from any liability for the conduct of these third party websites.

All social media sharing links, either displayed as text links or social media icons do not connect you to any of the associated third parties, unless you explicitly click on them.

Please be aware that this Privacy Policy, and any other policies in place, in addition to any amendments, does not create rights enforceable by third parties or require disclosure of any personal information relating to members of the Service or Site. Our website bears no responsibility for the information collected or used by any advertiser or third party website. Please review the privacy policy and terms of service for each site you visit through third party links.


At times it may become necessary or desirable to Huduma Healthcare Ltd, for legal purposes, to release your information in response to a request from a government agency or a private litigant. You agree that we may disclose your information to a third party where we believe, in good faith, that it is desirable to do so for the purposes of a civil action, criminal investigation, or other legal matter. In the event that we receive a subpoena affecting your privacy, we may elect to notify you to give you an opportunity to file a motion to quash the subpoena, or we may attempt to quash it ourselves, but we are not obligated to do either. We may also proactively report you, and release your information to, third parties where we believe that it is prudent to do so for legal reasons, such as our belief that you have engaged in fraudulent activities. You release us from any damages that may arise from or relate to the release of your information to a request from law enforcement agencies or private litigants.

Any passing on of personal data for legal purposes will only be done in compliance with laws of the country you reside in.


We may amend this Privacy Policy from time to time. When we amend this Privacy Policy, we will update this page accordingly and require you to accept the amendments in order to be permitted to continue using our services.