At Doctor365 we are committed to protect your personal information (PI) and comply with the GDPR which takes effect from the 25th May 2018.
Doctor365 Ennis, 3 Bank Place, Ennis, Co. Clare, V95C2YP
Phone: (065) 689 3315
WHAT WE DO (OUR SERVICES)?
Doctor365 is a walk-in General Practitioner clinic that cates for both adults and children.
Doctor365 has a website which has been created to provide visitors with information about the services we provide.
COOKIES AND THIRD PARTY APPLICATIONS
The Doctor365 website does not use first party cookies, however third party cookies maybe used via our vendors which are essential to delivering the service requested by the user.
Instant Chat Application: www.tawk.to/privacy-policy/
WHAT DATA WE COLLECT?
During your visit to our website we collect data which provides information on website traffic and duration of site visit. This is performed using our third party vendors, Tawk.
Analytics which are obtained from our website do not identify individual users but can show us the total number of visits to our site, the total number of visitors to each page of our site among other things.
We only collect personal information when you have given us consent and provided this information to us. This can be by contacting us via the instant chat function, or filling out the consent form at the clinic prior to your visit with the doctor. Only the required information is collected for the purpose.
To request access, amend or delete any of your personal data at any time please contact us by email email@example.com or by writing to the address specified above.
HOW WE USE YOUR DATA?
Doctor365 will only use your personal information (PI) for the purposes it was collected. This may include using the information you provided to issue you with your test results. All your PI is treated in the strictest of confidence with a high level of security in accordance with the GDPR.
HOW LONG WE RETAIN YOUR DATA?
Doctor365 intend to keep this information for a period of 7 years from the date which you explicitly give us your consent to hold this information. Every individual has the right to withdraw this consent at any time and to have their personal data deleted as per GDPR legislation, i.e “The Right to be Forgotten”
Doctor365 will never send you any marketing emails, or newsletters. Doctor365 will only contact you using your personal information for the purpose of issuing test results and responding to investigation queries arising from the client.
SUBJECT ACCESS REQUESTS
You have the right to a copy of all the information we hold about you. To obtain a copy, please submit this request in writing to Doctor365. There is no charge for a copy of your data (as permitted by law). We aim to reply as promptly as we can and, in any case, within the legal maximum of 1 month. In order for us to process this request we will need verification of your identity. Your rights include the following as per Articles 15-21
Right of access. – You have the right to request a copy of the information Doctor365 holds about you
Right of rectification – you have the right to correct any inaccurate personal data
Right to erasure – you have the “right to be forgotten” which allows for the right of the removal of data
Right to restriction of processing –the right to restrict processing of personal data.
Right of portability – the right to request the porting of ones data to a new service provider.
Right to object – you have the right to object to certain processing activities of the data controller.
SECURITY OF YOUR PERSONAL INFORMATION
Doctor365 takes the protection of any Data which we process very seriously. Doctor365 use a variety of security measures and technologies to protect the confidentiality and security of personal information. Doctor365 has a zero tolerance policy when it comes to the misuse of customer or client information by any of our staff as we take our obligations to protect personal information very seriously. Any breach of this trust in relation to the confidentiality of information will be treated as serious misconduct and will lead to sanctions up to and including dismissal.
SHARING YOUR DATA WITH THIRD PARTIES
Doctor365 will only share information with third parties such as medical professionals for the purpose of keeping your medical records up to date and issuing results back to referring medical professionals. Any information shared will be strictly necessary for the provision of the service they help us provide. Such a third party will be expected by Doctor365 to have the same standard of data protection as Doctor365 does and will be contractually obligated to use measures to protect this information.
OTHER SOURCES OF INFORMATION
We may also obtain information from third parties to add to your existing patient profile such as test results from referral laboratories.
With regard to each of your visits to our site we may automatically collect the following information using our third party vendors listed above: technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, browser type and version, time zone setting, browser plugin types and versions, operating system and platform; information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time).
WE USE INFORMATION HELD ABOUT YOU IN THE FOLLOWING WAYS:
To give to third parties such as medical professionals who will update your medical records with your test results.
To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us.
To notify you about changes to our service, if necessary.
WHERE WE STORE YOUR PERSONAL DATA?
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.