At BrightNewMe we are committed to maintaining the trust and confidence of our patients, and other visitors to our clinic and website. In particular, we want you to know that we do not sell or trade email lists or contact information with other companies and businesses for marketing purposes.
Before you’ve contacted us – visiting our website
When someone visits www.brightnewme.co.uk we use a third party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.
When you first contact us
As part of the registration process for new patients, we collect personal contact information, such as your email address and telephone number. We use your contact details to send you information regarding any appointments we make for you.
When you attend our clinic
You will be asked to complete one or more patient questionnaires, with details relevant to your appointment, such as your medical history, and details of medications you take or have taken. You are at liberty to withhold any of this information, though this may impact on our ability to safely and appropriately treat you.
Your questionnaire(s) may be supplemented by additional handwritten notes, and computerised notes recording the details of your consultation, the advice given, and any procedures undertaken. Non-computerised notes and records are typically scanned, saved to our own servers, and uploaded to our PMS, before being securely stored prior prior to shredding. Computerised records and any photographs taken are similarly uploaded to our PMS.
Purchases of products and services
Should you purchase any products or services the details of your transactions will firstly be recorded on our PMS, and then replicated on our own password-protected accounting software maintained on our own servers.
Debit and credit card transactions are effected by our merchant account provider, Elavon, who have industry standard protocols to ensure security of data. If we take card details over the telephone, your card details are input directly into our Point of Sale device, and are not recorded. We do not keep details of your credit or debit cards.
Ongoing patient communication
Our personal ongoing communication with you may take the form of email, telephone call or text message. Emails may come to you via our PMS, or via our Microsoft email exchange system. Emails to you from our email exchange system, and all incoming emails, are stored locally, on our own servers, and also on Microsoft servers. Details of Microsoft’s privacy and security measures can be found on their website using the short link http://po.st/pzfkBd.
We do not record voice calls. However, in keeping with all information we receive relevant to ongoing patient care, details of matters discussed over the telephone may be recorded on our PMS.
Email newsletter registration
Please rest assured that you can unsubscribe to our newsletters at any time by clicking the unsubscribe link at the bottom of the newsletter/email, or by emailing your instruction to do so to firstname.lastname@example.org.
Sharing of data
We do not, and will not, share your data with individuals or businesses for marketing purposes.
With your consent, and when appropriate, we will share personal information with other healthcare professionals (such as your GP). In very rare circumstances, and if merited and justifiable on the grounds of patient safety and well-being, we may share certain information with other healthcare professionals without your consent.
Being a medical clinic we are invited to take part in trials of products and treatments by pharmaceutical companies and similar organisations. Should we do so, we will only involve patients, and share their data, with their express permission.
Rights regarding your data
Under Data Protection rules you have a number of rights with regards to your data. These include the right to be informed about the collection and use of your data, the right to access your data, to have it amended, and to have it erased. Full details of your rights are available on the website of the Information Commissioner’s Office (“ICO”), which can be accessed via short link http://po.st/zWY9Vk. Our Registration with the ICO is under reference Z3493636.
Should you wish to invoke your rights with regards to your data, please email your request to Mark Hope at email@example.com
Changes to this Privacy Notice
This Privacy Notice was first prepared in April 2018, and will be subject to periodic review (most recent amendment 24 May 2018). You are welcome to request a printed version of this Notice, or have it emailed to you.