When we talk about "personal data" in this policy, we mean any information which could be used to identify you, either directly or indirectly when combined with any other information we may hold about you.
We may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 25/05/2018. If you need to contact us about this privacy notice or further details on how we use your personal information, please contact David Baker by emailing email@example.com.
Personal data collected by us:
The doctors, nurses, therapist, and team of healthcare professionals caring for you keep records about your health and any treatment and care you receive from us. These records help to ensure that you receive the best possible care or service.
They may be written down in paper records or held on computer. These records may include:
It is essential that your details which we hold are accurate and up to date. Always check that your personal details are correct and please inform us of any changes required as soon as possible.
Reasons for collecting that personal data:
Your records are used to direct, manage and deliver the care you receive to ensure that:
Your information may also be used to help us manage the service we provide by being used to:
We have several lawful bases for using this information under data protection legislation:
Who we share your personal data with:
Everyone working within healthcare has a legal duty to keep information about you confidential. Similarly, anyone who receives information from us has a legal duty to keep it confidential.
We may share information with the following organisations or people:
We will not disclose your information to any other third parties without you permission unless there are exceptional circumstances, such as if the health and safety or others is at risk or if the law requires us to pass on information.
You have the right to restrict how and with whom we share the personal information in your records that identifies you. This must be noted explicitly within your records in order that all healthcare professionals and staff treating and involved with you are aware of you decision. By choosing this option, you should be mindful that it may make their provision of treatment or care more difficult or unavailable. You can also change your mind at any time about a disclosure decision.
Receiving communications from us and updating your preferences:
When in contact with us, you may be asked to confirm that we have an accurate email address, contact number and/or mobile telephone number for you. This can be used to provide appointment details via email, SMS text messages and automated calls to advise you of appointment times, with your consent.
You can update your communication preferences at any time by informing a member of our staff or by contacting us at firstname.lastname@example.org.
Retention of personal data:
We retain personal data for no longer than required and in line with relevant legislation. This is based on statutory requirements and legal obligations.
Security of personal data:
We take our duty to protect your personal information and confidentiality very seriously and we are committed to taking all reasonable measures to ensure the confidentiality and security of personal data for which we are responsible, whether computerised or on paper. Where we have a need to transfer data outside of the European Economic Area (EEA) we do so with appropriate safeguards in place.
Links to other websites:
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
Personal data and your rights:
Data protection legislation gives you the right to:
Please contact us if you wish to exercise your right in relation to personal data at email@example.com. Our policy is to verify the authenticity of all request made, and requests may be refused if we are unable to verify the identity of the requester.
If you have concerns about the way we have handled your personal data please contact us in the first instance at: firstname.lastname@example.org. If you remain unsatisfied you can contact the Information Commissioner's Office (ICO) on 0303 123 1113, or by emailing email@example.com or by post at Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.