Data Protection Statement
What personal data do we collect, store and use and how do we collect this?
What data we collect
The personal data collected and maintained by us will depend on the interaction with you, but generally includes the data provided when you register to access the information on the website, including your name and contact details, your membership with professional associations and accreditation bodies. This registration process is required, as the information on the website is only intended for healthcare professionals, and we will use the healthcare professional registration data you provide (GPhC, NMC or GMC registration number) to verify that you are a registered healthcare practitioner. This data will also be used to email you with any updates about your account and about new courses or resources available on the website.
How we collect data
Use of personal data
We may disclose your personal data to our related companies, other companies or individuals who assist us in supplying our services or who perform functions on our behalf, such as support services, technology hosting, where required or authorised by law to do so, and to anyone else to whom you authorise us to disclose it.
We may also use the information we collect to keep you abreast of changes to our website and to inform you about new products and services that you might find worthwhile. Our direct marketing consists of a range of communication channels, including telephone, email and SMS and will only send you an advertisement, marketing or promotional material if you have elected to receive such information. You can change your mind about your preferences in respect of direct marketing at any time by the unsubscribe information on every such contact, by updating your user profile or account data, or by contacting us directly.
How is your personal data stored?
We securely store your data on an Amazon Web Services (AWS) cloud data centre based in the UK. AWS data centres and network architecture have been built to meet the requirements of the most risk-sensitive organisations. We will take such steps as are reasonable in the circumstances to protect your personal information from risks such as misuse, interference and loss, and from unauthorised, modification or disclosure. We access your personal data from AWS using computers located at our premises, in electronic systems under our control. We have systems and procedures in place to safeguard information, including protections against unauthorised access, virus or other electronic intrusions, fire, theft or loss. Our staff are bound by strict requirements regarding the protection of the data we collect and hold about you.
Our contract with AWS requires AWS to protect the privacy of your personal data when held on their servers and/or using cloud computing. AWS is required to comply with the GDPR.
For how long do you keep my personal information?
We generally keep your personal information active for as long as is reasonably required to enable us to meet your needs. We keep registration information on file to enable us to undertake statistical and historical analysis and reporting. As part of our data security, we regularly backup and archive our electronic databases.
Privacy policies of other websites
Your data protection rights?
We would like to make sure you are fully aware of all of your data protection rights. Every user of this website is entitled to the following:
The right to access – You have the right to request copies of your personal data. We may charge you a small fee for this service.
The right to rectification – You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.
The right to erasure – You have the right to request that we erase your personal data, under certain conditions.
The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.
The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.
The right to data portability – You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact The Privacy Officer Hahn Healthcare Pty Ltd via the email: firstname.lastname@example.org
Should you wish to report a complaint or if you feel that we have not addressed your concern in a satisfactory manner, you may contact the GDPR Information Commissioner’s Office. Details are available from https://ico.org.uk/global/contact-us/.