RISK ASSESSMENT FORM - Break-Ins & General Security Measures

SECURITY RISK ASSESSMENT

Break-Ins & General Security Measures

HAUS OF ÄSTHETIK

 

Location: 4 Portland Square, Water Street, Bakewell, Derbyshire, DE45 1HA, United Kingdom

Date of Assessment: 1st April 2025

Review Date: 1st April 2026

Assessed By: Managing Director

 

1. Hazard Identification

   • Hazard: Risk of break-ins, theft, or unauthorised access to the clinic premises.

   • Location of Hazard:

   • Front entrance and reception area.

   • Back entrance (if applicable).  

   • Treatment rooms with valuable stock (Botox, fillers, PRP kits, weight loss injections, etc.).

   • Storage areas where financial records or stock are kept.

Who is at Risk?

   • Staff and patients (during working hours).

   • Business assets (including equipment, medical supplies, and confidential patient data).

 

2. Risk Assessment Summary

Hazard

Potential Risks

Risk Level Before Control Measures

Control Measures in Place

Risk Level After Control Measures

Break-in via front or back entrance

Theft of valuable medical supplies and equipment

High

- Doors and windows secured with anti-theft locks  - CCTV cameras covering entry points  - Premises alarmed after hours

Medium

Theft of high-value stock (Botox, dermal fillers, weight loss pens)

Financial loss, business disruption, patient safety concerns

High

- Secure locked cabinets for stock storage  - Stock checks to prevent internal theft  - Minimal stock kept overnight

Medium

Unauthorised access during business hours

Patient safety risk, data theft, potential security threat

High

- Entry by appointment only  - Locked door policy when staff are alone  - Staffed reception area for access control

Medium

Theft of cash or financial data

Financial loss, fraud risk

Medium

- Minimal cash kept on site  - Online/card payments preferred  - Financial records securely stored

Low

Data security breach (patient records, medical history)

GDPR violation, reputational damage

High

- Paper records stored in locked cabinets  - Electronic records protected by encryption & passwords  - Regular data security audits

Low

 

3. Risk Control Measures

A. Physical Security Controls

   • Entry Control Measures:

   • Clinic doors remain locked when no staff are present.

   • Access restricted to patients with appointments only.

   • Visitors must check in at reception before entering treatment areas.

Premises Security:

   • CCTV cameras installed at entry points and waiting areas.

   • Alarm system activated after hours for break-in detection.

   • Automatic PIR motion-activated lights in stairwells to improve visibility.


B. Secure Storage of Valuables

Medical Supplies & Equipment:

   • High-value aesthetic products (Botox, fillers, weight loss injections) stored in locked cabinets.

   • Minimal stock kept overnight to reduce theft risk.

   • Stock control logs maintained to track usage.

Cash & Financial Security:

   • Minimal cash on-site – most transactions are card or online payments.

   • Secure storage for any financial documents.

Patient Data Protection:

   • Paper records stored in locked cabinets.

   • Electronic patient records protected by password encryption.

   • GDPR-compliant data storage procedures in place.


C. Staff Safety & Training

Lone Worker Policy:

   • Staff check-in procedures for those working alone.

   • Panic button or emergency alert system in place.

Security Awareness Training:

   • Staff trained to identify suspicious behaviour.

   • Clear protocols on handling aggressive or unauthorised visitors.

   • Incident reporting procedures in place.

 

4. Emergency Response Plan for Break-Ins


A. If a Break-In is Suspected:

   1. Do not enter if signs of forced entry are visible—call 999 immediately.

   2. Notify the clinic manager or designated emergency contact.

   3. Check CCTV footage remotely (if available) to assess the situation.

   4. Await police arrival before re-entering the premises.


B. If a Break-In Occurs While Staff Are Inside:

   1. Activate the panic alarm (if installed) or call 999.

   2. Do not engage with the intruder—leave the premises safely if possible.

   3. Provide police with CCTV footage and records of any stolen items.

   4. Secure the premises after police clearance and review security measures.


C. Reporting & Review

   • All break-in attempts or security incidents must be documented.

   • Risk assessment to be reviewed immediately after any break-in attempt.

   • Further security enhancements will be considered based on incident findings.

 

5. Ongoing Monitoring & Security Review

   • Weekly security checks on locks, alarm systems, and CCTV.

   • Annual security risk assessment update.

   • Staff refresher training on security protocols.

 

6. Risk Assessment Conclusion

   • Overall Risk Level After Controls Applied: Low to Medium

   • Are the current control measures sufficient? ☑ Yes ☐ No

   • Additional control measures required? ☐ Yes ☑ No


Review Schedule:

   • Security risk assessment to be reviewed annually or after any security incident.