Privacy & Data Protection
Welcome to psHEALTH’s Privacy Notice
We are registered with the Information Commissioner and we are accredited by the NHS IG-Toolkit.
This notice aims to help you understand what data we collect, why we collect it and what we do with it. We recommend you take time to read this carefully as it contains important information.
If you have any questions regarding this privacy notice, please email firstname.lastname@example.org.
Our direct customers (healthcare providers) may use our IT solutions, such as ART, to collect personal and sensitive information about you. In this regard psHEALTH acts as the data processor, while our customers are the data controllers. Questions about privacy and data protection that concern the information collected by healthcare providers about you, should be addressed directly to the organisation providing these services to you.
Our privacy notice covers:
Information you give us – ‘enquiry data’. This data is captured from signing up on our website, from meetings, from marketing events, from call enquiries and from business cards given to us. The data may include your name, email address, telephone number, company name, job function, industry sector and company size. The source of this data is you. This data will be processed for the purposes of communicating with you. The legal basis for this processing is our legitimate interest in responding to your enquiry and growing our business.
Information we get from your use of our services – ‘usage data’. Usage data may include your IP address, geographical location, operating system, browser type and version, length of visit, page views and website navigation paths, as well as information about the timing, frequency and pattern of your service use. The source of the usage data is our website analytics. This data may be processed in order to analyse the use of the website and services. The legal basis for this processing is our legitimate interests in monitoring and improving our website, applications and other services.
Information we obtain when responding to you about your account – ‘accounts data’. We may process information contained in any communications in relation to providing services to you. This personal data may be processed for the purposes of responding to your account enquiry and may include, but is not limited to your name, email address, telephone number, company name, job function and historic financial transactions. The legal basis for this processing is the performance of a contract if you have an account with us or our legitimate interest. Where we contact you as a customer regarding other services that may be of interest to you based on a previous or existing service we provide, the legal basis for this processing is our legitimate interest in growing our business.
Information we obtain through any other communication that you send to us – ’correspondence data’. Through this correspondence data we keep a record of your communication. We may use this to help solve any issues you might be facing or to inform you about our services, such as letting you know about upcoming changes or improvements. The legal basis for this processing is our legitimate interest in maintaining the administration of our website and business and communications with users.
A cookie is a small file containing characters that is sent to your computer when you first visit a website. When you visit the website again, the cookie allows that site to recognize your browser. Cookies may store user preferences and other information. You can set your browser to refuse all cookies or to indicate when a cookie is being sent. However, some website features may not function correctly if all cookies are refused. The cookies we use provide helpful information which allows us to improve our site and services to you.
For further information on cookies, including how to turn them off, please see our Cookie notice.
psHEALTH provides users with the ability to access and control their personal data by emailing us at email@example.com or by writing to the address at the end of this notice.
We will only retain your personal data for as long as is necessary to fulfil the purposes for which we collected it, including to satisfy any legal, accounting or reporting requirements. We will take into account the amount, nature and sensitivity of the personal data we hold and the associated risks of unauthorised use.
We will retain information about our customers for six years after they cease being customers for legal and accounting reasons.
In some circumstances you can ask us to delete your personal data (see your legal rights section).
We do not share personal data outside of psHEALTH unless one of the following situations apply:
If psHEALTH is involved in a merger, acquisition or asset sale, the other parties involved in the business change may use your personal data in the same way as set out in this privacy notice.
We do not normally transfer personal data outside the UK but if it becomes necessary to do so for the purposes of providing our services to you, we will only share it with organisations in countries benefiting from a European Commission adequacy decision or on the basis of Standard Contractual Clauses approved by the European Commission and recognised in the UK which contractually oblige the recipient to process and protect your personal data to the standard expected within the UK.
We protect unauthorised access to your personal data. In particular, we:
You have the right to:
If you wish to exercise any of the rights set out above, please email firstname.lastname@example.org.
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity before we can facilitate your right to access your personal data (or any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
You have the right to lodge a complaint with the Information Commissioner’s Office. They can be contacted using the information provided at: https://ico.org.uk/concerns/.
Our website includes links to Third Party websites, which are not covered by our privacy notice. You will need to check the third party’s privacy notice to understand how your personal data will be processed. We do not accept liability or responsibility for third party websites and their privacy policies.
If you have any questions, or wish to exercise any of your rights, then you can contact our Data Protection Officer by addressing your correspondence to:
ART Healthcare Software Limited,
117 Waterloo Road,
Alternatively, you can email us at email@example.com.
Our Privacy Notice may change from time to time. We will post any changes on this page and notify you of any significant changes by a notice posted on our website.
This version was last updated June 2021.