For the purpose of the General Data Protection Regulation (GDPR) (EU) 2016/679, the data controller is Uni Healthcare Clinic Ltd.
1. Information we may collect from you
We may collect and process the following data about you:
- Name, date of birth, contact information, medical information
- Any other Information that you provide by filling in forms on our site, by emailing us directly, or information you provide during consultations
- We may also ask you for information when you report a problem with our site
If you contact us separately from what’s listed above, we may keep a record of that correspondence (e.g. for future treatment purposes). If you are a patient or prospective patient, the personal data we collect from you and process is for the sole purpose of tailoring your treatment to your needs as an individual, unless stated otherwise.
Details of your visits to our site including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise and the resources that you access.
2. IP addresses
We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual.
You can block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
4. Storage of your personal data
Access is restricted to the personal data we collect from you and it’s stored securely. The limited data that we store electronically, is accessible only via password-protected devices, also secured with up-to-date antivirus and malware detection software.
such information. We request that our third party contractors and site service providers follow similar standards of security and confidentiality.
We only share specific information from your personal data with trusted third parties, in order to perform specific services. For example, IT companies who support our website and email systems.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. In the case of a data breach, we will contact both you and the relevant authorities as soon as possible.
5. How long we store your personal data
Whenever we collect or process your personal data use, we’ll only keep it for as long as is necessary for the purpose for which it was collected.
Under section 8 of the BAcC Code of Professional Conduct, the minimum retention period for patient records is seven years. In the case of patients under 18 years of age, records must be kept until the patient reaches the age of twenty-five (seven years after reaching eighteen).
We have a retention period of ten years. At the end of this period, your data will be completely deleted electronically, and destroyed securely.
6. Uses made of the information
We use information held about you in the following ways: To ensure that content from our site is presented in the most effective manner for you and for your computer.
To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.
To carry out our obligations arising from any contracts entered into between you and us.
To allow you to participate in interactive features of our service, when you choose to do so.
We may also use your data, or permit selected companies within our group to use your data, to provide you with information about goods and services which may be of interest to you and we or they may contact you about these by email, post or telephone. We will seek your consent before we (or such group companies) contact you.
7. Disclosure of your information
We may disclose your personal information to third parties: In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
If Uni Healthcare Clinic Ltd or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
8. Your rights and access to information
You have the right to:
- Access a copy of the personal data we hold about you, free of charge in most cases.
- In certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed.
- Object to the processing of your data that is likely to cause or is causing damage or distress.
- Prevent processing for direct marketing (either through specific channels, or all channels). We will inform you (before collecting your data) if we intend to use your data for such purposes, and you are able to withdraw consent at anytime (please contact firstname.lastname@example.org).
- object to decisions being taken by automated means
- lodge a complaint with a supervisory authority or to claim compensation for damages caused by a breach of the GDPR.
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.