Privacy Policy
Privacy Policy for Waterfront Private Hospital Ltd, Edinburgh
Introduction
Welcome to Waterfront Private Hospital’s privacy policy. We are committed to protecting and respecting your privacy in compliance with the Data Protection Act 2018, UK GDPR, and relevant Scottish private healthcare regulations. Our hospital is registered with the Information Commissioner’s Office (ICO), demonstrating our compliance with UK data protection laws. Our ICO registration number is ZB584300.
Information We Collect
- Personal Data: We collect and store personal details such as your name, address, email, phone number, date of birth, and other identifying information essential for providing healthcare services.
- Sensitive Personal Data: In accordance with healthcare regulations, we may collect health-related and other sensitive information necessary for your medical care and treatment.
- Website Usage Information: We collect website usage data through cookies to enhance user experience and improve our services.
Use of Your Information
Your data is used for the following purposes:
- Medical Services: To diagnose, treat, and manage your health effectively.
- Communication: To provide updates about your care, hospital services, and any necessary administrative communications.
- Record Keeping: We maintain secure medical records in compliance with legal requirements.
- Legal Compliance: To ensure adherence to relevant legal and regulatory standards.
- Service Improvement: We use anonymised data to improve our healthcare services and systems.
Sharing of Your Information
Your data may be shared as follows:
- Healthcare Professionals: To ensure proper treatment, your data will be shared with relevant healthcare professionals involved in your care.
- Third Parties: Your data will only be shared with third parties when consent has been obtained or required by law.
- Legal Disclosures: We may share your data if mandated by legal obligations.
Data Security
We are committed to ensuring the security of your personal data by:
- Implementing robust security measures, including encryption, password protection, and secure storage.
- Ensuring our staff is trained in maintaining the confidentiality and security of your data.
- Utilising secure data transfer and storage methods, including lockable filing cabinets for paper documents and encrypted electronic devices for digital records.
Retention of Medical Records
We retain your medical records for the period required by UK law based on various factors such as the type of record, your age, and the treatments you have received. Records are securely deleted or destroyed when no longer needed for medicolegal purposes or after the specified retention period has passed.
Your Rights
As a patient, you have several rights concerning the personal data we hold about you:
- Right to be Informed: You have the right to know what personal data we hold and how we use it.
- Right of Access: You may request a copy of the data we hold about you at any time.
- Right to Rectification: If you believe our information is inaccurate, you can request a correction.
- Right to Erasure: In certain circumstances, you may request the deletion of your personal data.
- Right to Restrict Processing: You can ask us to limit the use of your personal data in certain situations.
- Right to Data Portability: You may request that your data be transferred electronically to another healthcare provider or organisation.
- Right to Object: You can object to processing your data for certain purposes.
We will respond to all rights requests within one month. If you wish to exercise any of these rights, please contact us.
Automated Decisions and Profiling
We do not use your data for automated decision-making or profiling.
Data Breaches
We have protocols in place to manage data breaches. In the event of a data breach that risks your personal rights and freedoms, we will notify you and report the breach to the ICO within the legal timeframe.
Policy Updates
We regularly review and update our privacy policy to ensure compliance with legal standards and changes in our practices.
Contact Us
If you have any questions about how we handle your personal data, please contact:
Omar Quaba
Hospital Director
Waterfront Private Hospital Ltd
ICO Registration Number: ZB584300