Why we collect your personal data and what we do with it.
The Data Protection Bill 2017
Purpose of data
What is Personal Data?
Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession.
What is Special Category Data?
Special category data is a sub-category of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.
The data we collect is the data required to provide professional services to patients, and to validate and verify the legitimacy of clients. The data held by King’s Cross Acupuncture includes name, surname, home address, email, phone number(s), website, health information.
Device specific data
The following information may be collected through your device and browser:
· Your devices IP address (collected and stored in an anonymized format)
· Your email address including first name and surname
· Device screen size
· Device type (unique identifiers) and browser information
· Geographic location (country only)
· Preferred language used to display the webpage
Digital Log data
Our servers automatically record information which is created using our software. Data includes:
· Referring domain
· Pages visited
· Geographic location (country only)
· Preferred language used to display information
· Date and time when pages were accessed or created
Opt out mechanisms are in place on all King’s Cross Acupuncture mailings and communications. Users can choose to opt out at any time by clicking the opt-out button at the bottom of mailings or emailing King’s Cross Acupuncture directly with a request to opt out.
Use Made of Personal Information
Personal information provided to King’s Cross Acupuncture will be used for the purposes of providing services to you. Any personal information which is collected by King’s Cross Acupuncture will be used by King’s Cross Acupuncture only in accordance with current data protection legislation.
In addition, personal information may be used for statistical analysis.
Personal data will be collected and processed by King’s Cross Acupuncture for the following purposes:
(1) We need to collect personal information about you and your health in order to provide you with the best possible treatment. You can, of course, refuse to provide the information, but if you were to do that we would not be able to provide treatment.
(2) We have a “Legitimate Interest” in collecting that information, because without it we couldn’t do our job effectively and safely.
(3) We contact you in order to confirm your appointments with us or to update you on matters related to your medical care. This again constitutes “Legitimate Interest”, but this time it is your legitimate interest.
(4) Provided we have your consent, we may occasionally send you general health information in the form of articles, advice or newsletters. You may withdraw this consent at any time.
We have a legal obligation to retain your records for 7 years after your most recent appointment (or age 25, if this is longer), but after this period you can ask us to delete your records if you wish. Otherwise, we will retain your records indefinitely in order that we can provide you with the best possible care should you need to see us at some future date.
Processing personal data for the above purposes may entail sharing the information with employees, contractors, agents and professional advisors and regulators of the King’s Cross Acupuncture
Written agreements exist between King’s Cross Acupuncture and such parties that there must be no further disclosure of such personal data.
Verifying, updating and amending your personal information
If, at any time, a user wants to verify, update or amend their personal data they may write to:
YOUR FULL NAME
YOUR COMPANY NAME
YOUR EMAIL ADDRESS
YOUR PHONE NUMBER
Verification, updating or amendment of personal data takes place within 10 working days.
Unless subject to an exemption under the GDPR, with respect to your personal data as set out below you have the right to:
A “cookie” is a small text file that is placed on a user’s computer hard drive by a website. There are several types of cookie and the most common are often referred to as ‘session’ cookies. These are used to keep track of information needed by a user as they travel from page to page within a website. These cookies have a short lifetime and expire within a few minutes of the user leaving the site.
Other types of cookies can be used to track internet activity after the user has left a website. These are usually sponsored by organisations external to the website being visited and are generally known as ‘third party’ cookies. These usually have a long lifetime with several months being quite common. They are ‘harvested’ and ‘refreshed’ whenever the user visits a page where the same or a similar cookie is being used.
King’s Cross Acupuncture uses benign, short lived ‘session’ cookies to tell whether a website user has logged in, where to find details that can be used to pre-fill parts of on-line forms and to personalise the user’s visit to the website.
King’s Cross Acupuncture cookies do not analyse visits to other website or any searches undertaken whilst on the King’s Cross Acupuncture website.
Internet browsers normally accept cookies by default; however, it is possible to set a browser to reject cookies. If this is done it is important not to exclude the benign and useful session cookies. Choose an option that rejects all third party and long lived cookies.
The King’s Cross Acupuncture uses cookie free technology that uses Internet Protocol (IP) information exchanged during the course of normal web activity combined with data enhancement technology to get detailed analytics information.
16. Links to Third Party Websites
The [YOUR COMPANY] is not responsible for the privacy policies of third party websites. The [YOUR COMPANY] advises users to read the privacy policies of other websites before registering any personal data.
King’s Cross Acupuncture holds your personal data in accordance with the security provisions of the UK data protection legislation.
If you have any questions about security please contact the King’s Cross Acupuncture on 020 34883175.
18. Notification of Changes
Users have the right to ask King’s Cross Acupuncture in writing, for a copy of all the personal data held about them upon payment of a fee (“subject access request”) and to request that King’s Cross Acupuncture correct any inaccuracies in that information.
19. Your rights over your data
You have the right to rectify, amend, correct or erase your data except where there is a legal basis for refusal.
Copyright © 2017 King's Cross Acupuncture - All Rights Reserved. Acupuncture in King's Cross. Central London Acupuncture. London TCM. London Cupping. London Moxa. London Naturopathy.