Privacy Notice and Policy
At Liverpool Medicals ‘we’ recognise the importance of protecting your privacy, which is aligned with our legal obligations. This policy describes how your personal data is collected, used, disclosed, and managed across our website, on paperwork or in the electronic patient records system.
Your use of our website indicates your agreement to this Privacy Notice and Policy.
What data is collected
When you contact us through the website this information will need some personal details. Personal details means anything that could identify you as an individual. This may include personal details such as name, email, telephone number.
How is this data collected
This may be provided by you via the website, telephone, email or in person. We may need to seek consent to contact third parties such as your GP in order to collect addition information.
We do not hold any bank or credit card details. Payments are managed by our bookings partner at Wix Billing Services.
Why is this personal information collected.
We collect this data in order to provide you with services that you have requested. Other uses might be in order to help check your identity for security and anti-fraud services, to seek feedback to improve our services and to meet legal requirements.
How is your personal information stored.
Liverpool Medicals is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.
All direct payment gateways offered by Wix.com and used by Liverpool Medicals adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands including Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure handling of credit card information by our store and its service providers.
Data will also be transferred to Brownlow Health General Practice who are CQC registered and GDPR compliant. The data gathered during your medical will be stored on paper and on the electronic records system at Brownlow Health General Practice. Paper records will be stored in locked cabinets.
Who we share your personal information with
We will only share your personal information with those who have a demonstratable need, to those involved in your care or those parties mandated by law. These authorities include the MCA by whom we are regulated but may include other health care services such as your GP, your employer or law agencies. Where appropriate we will seek consent before sharing of such information.
We work with Brownlow Health General Practice for the purposes of facilitating your appointment/medical. Only those involved with your appointment will have access to your personal data. Staff work for the NHS and have a duty of confidence that your information is not disclosed inappropriately, and they work to a Code of Conduct for handling personal information.
Links to Third party websites
Our website and emails may contain links to websites operated by third parties. Liverpool Medicals are not responsible or liable for their respective privacy policies.
How Long we Keep your personal information
We are required by the MCA to keep records for a minimum of 10 years. We do not store your information for longer than is necessary or required by law.
Rights under GDPR
You have a number of important rights under the GDPR legislation and these can be accessed via the link below.
These includes the right to copies of your data, your right to correct your data and your right to ask for your data to be deleted. Further information can be found on the Information Commissioner’s Office website which is here.
Questions and Complaints
If you have any questions or would like to provide feedback please contact us via email: firstname.lastname@example.org