[bt_highlight]Privacy Policy[/bt_highlight]
This Policy applies as between you, the User of this Web Site and French Care London Ltd the owner and provider of this Web Site. This Policy applies to our use of any and all Data collected by us in relation to your use of the Web Site and our Services. This Policy was last updated on the 05 April 2021.
The Regulation
This Data Protection Policy applies to the services of French Care London Ltd. If you live in or outside the European Economic Area, Regulation (EU) 2016/679 (General Data Protection Regulation) is the applicable regulation and in the UK, it is the Data Protection Act 2018.
The Controller
French Care London Ltd of 8c Lewisham Hill, London, England, SE13 7EJ with Company number 11825935 is the Controller of your personal data.
The Supervisory Authority
The Information Commissioner’s Office (ICO) in the UK is the for us relevant authority in matters of data protection. You have the right to make a complaint at any time to the ICO (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
What is personal data?
Personal data refers to any information relating to an identified or identifiable natural person (“Personal Data”).
Accuracy
It is important that the data we hold about you is accurate and current, therefore please keep us informed of any changes to your personal data.
What data do we collect?
We may collect data or ask you to provide certain data when you use our website and services. The sources from which we collect Personal Data are:
Data collected directly from you or your device relating to an identified or identifiable natural person (“Data Subject”) and may include direct identifiers such as name, address, email address, phone number or medical records. The information from your medical records may also contain more sensitive information about your health and also information such as outcomes of needs assessments but these are mainly coded.
Data collected online or through indirect identifiers such as login account number, login password, payment details, or IP address.
Data collected that is linked, for example if you have used our service and later choose us again, we will link your data and treat that linked data as Personal Data.
We organise collected Personal Data as Account Data and Billing Data.
Account Data is everything we need to set up your account and includes your email address and username, and information connected with our services, such as your First and Last Name, your address and phone number.
Medical Data is everything we need to set up your medical records and includes sensitive information about your health and also information such as outcomes of needs assessments but these are mainly coded.
Billing data is everything we need to set up your payment including your name, email address, masked credit card number and in certain circumstances, your billing address and your phone number if this is not already collected.
As described above, we link data and if we have already collected some of your data, we will only ask you for the remaining data that is necessary to carry out the service contracted for.
On what grounds do we use Personal Data?
We use your Personal Data for the following purposes and on the following grounds:
- On the basis of fulfilling our contract (when you use our services)
- On the basis of your consent (when you contact us)
- On the basis of legal obligations (for obligations such as tax, accounting, anti-money laundering, or when a court or other authority asks us to)
- On the basis of our legitimate interest (for communications about security, privacy and performance improvements of our services. Or for establishing, exercising or defending our legal rights.)
- Of course, before relying on any of those legitimate interests we balance them against your interests and make sure they are compelling enough and will not cause any unwarranted harm.
When do we disclose your Personal Data?
We may share your information for health purposes and for your benefit with other organisations such as NHS England, NHS Trusts, and also general practitioners (GPs), etc.
We may also disclose your Personal Data in response to your business enquiry or your request for information within our Company in order to provide the best service possible and within our legitimate interest.
We may share your information with organisations that help us provide the services described in this Data Protection Policy and who may process such data on our behalf and in accordance with this Data Protection Policy, to support this website and our services. For example, with our legal other professional advisors or Better Clinics which is our Software Service Provider. Better Clinics’ Privacy Policy can be read here and their GDPR Statement can be read here.
We will share relevant information from your medical record with other health or social care staff or organisations when they provide you with additional care or treatment.
In relation to information obtained about you from your use of our website, we may share a cookie identifier and IP data with analytic and advertising network services providers to assist us in the improvement and optimisation of our website which is subject to our Cookies Policy.
We may disclose personal information in other circumstances such as when you agree to it or if the law, a Court order, a legal obligation or regulatory authority ask us to. If the purpose is the prevention of fraud or crime or if it is necessary to protect and defend our right, property or personal safety of our staff, the website and its users.
Data retention
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
Details of retention periods for different aspects of your personal data are available in our retention policy which you can request from us. However, we are legally required to keep basic information about our customers (including contact, identity, financial and transaction data) for six years after they cease being customers, for tax purposes.
Your Rights
You have the right to:
- information about the processing of your personal data
- obtain access to the personal data held about you
- ask for incorrect, inaccurate or incomplete personal data to be corrected
- request that personal data be erased when it’s no longer needed or if processing it is unlawful
- object to the processing of your personal data for marketing purposes or on grounds relating to your particular situation
- request the restriction of the processing of your personal data in specific cases
- receive your personal data in a machine-readable format and send it to another controller (‘data portability’)
- request that decisions based on automated processing concerning you or significantly affecting you and based on your personal data are made by natural persons, not only by computers. You also have the right in this case to express your point of view and to contest the decision
- Where the processing of your personal information is based on consent, you have the right to withdraw that consent without detriment at any time through contact@frenchcarelondon.com.
If you feel that your request is not satisfactorily resolved by us, you may approach your local data protection authority. The Information Commissioner`s Office (ICO) is the supervisory authority in the UK and relevant to French Care London Ltd.
How do we protect your Personal Data?
Everyone working for us is subject to the Common Law Duty of Confidentiality. The information we hold about you, whether in paper or electronic form, is protected from unauthorised access. We also follow the NHS Confidentiality Code of Conduct and all our staff members are required to protect your information, inform you of how your information will be used and allow you to decide if and how your information can be shared.
Information provided in confidence will only be used for the purpose(s) advised with consent given by the patient, unless there are other specific circumstances covered by the current General Data Protection Regulation (GDPR) and UK legislations.
We protect your data using state of the art technical, and physical safeguards and operate a firm system of policies, confidentiality agreements, digital safeguards encrypted email and procedures to ensure the highest level of administrative protection.
The data we collect from you may be stored, with appropriate technical and organisational security measures applied to it, on our server in the UK. In all cases, we follow generally high data protection standards and advanced security measures to protect the personal data submitted to us, both during transmission and once we receive it.
To exercise any of your rights, or if you have any questions or complaints about our use of your Personal Data and this policy, please contact us using contact@frenchcarelondon.com.
International transfers
We do not transfer your personal data outside the European Economic Area (EEA) except when your analysis required to be processed in a Laboratory abroad. This specificity will be mentioned to you or required by you.
Automated decision-making and profiling
We do not use automation for decision-making and profiling
Changes
This Data Protection Policy and our commitment to protecting the privacy of your personal data can result in changes to this Data Protection Policy. Please regularly review this Data Protection Policy to keep up to date with any changes.
Queries and Complaints
Any comments or queries on this policy should be directed to us using the following contact details.
French Care London Ltd
www.frenchcarelondon.com
contact@frenchcarelondon.com
8c Lewisham Hill, London, England, SE13 7EJ
Company number 11825935
If you believe that we have not complied with this policy or acted otherwise than in accordance with data protection law, then you should notify us. You can also make a referral to, or lodge a complaint with, the Information Commissioner’s Office.