healthXY is committed to protecting and respecting your privacy.
healthXY understands that your personal data is entrusted to us and appreciates the importance of protecting and respecting your privacy. To this end, we comply fully with the data protection law in force in the UK (“Data Protection Laws”) and with all applicable clinical confidentiality guidelines, including those published from time to time by the General Medical Council.
This Privacy Policy sets out the basis on which we collect and process personal data about you, including our practices regarding the collection, use, storage, and disclosure of personal data that we collect from you and/or hold about you, and your rights in relation to that data.
Please read the following carefully to understand how we process your personal data. By providing your personal data to us or by using our services, website, or other online or digital platform(s), you are accepting or consenting to the practices as described or referred to in this Privacy Policy.
For the purpose of Data Protection Laws, the data controller is HealthXY, with a contact email at: info@healthxy.co.uk.
When we refer to ‘we’, ‘us’ and ‘our’, we mean HealthXY.
What Personal Data May We Collect From You?
When we refer to personal data in this policy, we mean information that can or has the potential to identify you as an individual.
Accordingly, we may hold and use personal data about you as a customer, a patient, or in any other capacity, for example, when you visit one of our websites, complete a form, access our services, or speak to us. Depending on what services you receive from us, this may include sensitive personal data such as information relating to your health.
Personal data we collect from you may include the following:
Information that you give us when you enquire or become a customer or patient of ours, or apply for a job with us, including name, address, contact details (including email address and phone number).
The name and contact details (including phone number) of your next of kin.
Details of referrals, quotes, and other contact and correspondence we may have had with you.
Details of services and/or treatment you have received from us or which have been received from a third party and referred on to us.
Information obtained from customer surveys, promotions, and competitions that you have entered or taken part in.
Recordings of calls we receive or make.
Notes and reports about your health and any treatment and care you have received and/or need, including clinic and hospital visits and medicines administered.
Patient feedback and treatment outcome information you provide.
Information about complaints and incidents.
Information you give us when you make a payment to us, such as financial or credit card information.
Other information received from other sources, including from your use of websites and other digital platforms we operate or the other services we provide, information from business partners, advertising networks, analytics providers, or information provided by other companies who have obtained your permission to share information about you.
Where you have named someone as your next of kin and provided us with personal data about that individual, it is your responsibility to ensure that that individual is aware of and accepts the terms of this Privacy Policy.
Where you use any of our websites, we may automatically collect personal data about you, including:
Technical information, including the Internet Protocol (IP) address used to connect your computer to the Internet, browser type and version, time zone setting, browser plug-in types and versions, operating system, and platform.
Information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through, and from our site (including date and time), products you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.
The data that we request from you may include sensitive personal data. This includes information that relates to your mental or physical health or racial or ethnic origin (which may include children’s data). By providing us with sensitive personal data, you give us your explicit consent to process this sensitive personal data for the purposes set out in this Privacy Policy.
When Do We Collect Personal Data About You?
We may collect personal data about you if you:
Visit one of our websites.
Enquire about any of our services or treatments.
Register to be a customer or patient with us or book to receive any of our services or treatments.
Fill in a form or survey for us.
Carry out a transaction on our website.
Participate in a competition, promotion, or other marketing activity.
Make online payments.
Contact us, for example, by email, telephone, or social media.
Participate in interactive features on any of our websites.
In the interests of training and continually improving our services, calls to HealthXY and its agents may be monitored or recorded.
How Do We Use Your Personal Data?
Your personal data will be kept confidential and secure and will, unless you agree otherwise, only be used for the purpose(s) for which it was collected and in accordance with this Privacy Policy, applicable Data Protection Laws, clinical records retention periods, and clinical confidentiality guidelines.
Sensitive personal data related to your health will only be disclosed to those involved with your treatment or care, or in accordance with UK laws and guidelines of professional bodies or for the purpose of clinical audits (unless you object). Further details on how we use health-related personal data are given below. We will only use your sensitive personal data for the purposes for which you have given us your explicit consent to use it.
We may use your personal data to:
Enable us to carry out our obligations to you arising from any contract entered into between you and us, including relating to the provision of services or treatments and related matters such as billing, accounting, and audit.
Provide you with information, products, or services that you request from us.
Notify you about changes to our products or services.
Respond to requests where we have a legal or regulatory obligation to do so.
Check the accuracy of information about you and the quality of your treatment or care, including auditing medical and billing information for insurance claims as well as part of any claims or litigation process.
Support your doctor, nurse, or other healthcare professional.
Assess the quality and/or type of care you have received (including giving you the opportunity to complete customer satisfaction surveys) and investigate any concerns or complaints you may raise.
Conduct and analyze market research.
Ensure that content from any of our websites is presented in the most effective manner for you and your computer.
The Security of Your Personal Data
We protect all personal data we hold about you by ensuring that we have appropriate organizational and technical security measures in place to prevent unauthorized access or unlawful processing of personal data and to prevent personal data being lost, destroyed, or damaged. We conduct assessments to ensure the ongoing security of our information systems.
Any personal data you provide will be held for as long as is necessary, having regard to the purpose for which it was collected and in accordance with all applicable UK laws.
For any questions or concerns regarding this Privacy Policy, please contact us at: info@healthxy.co.uk.