Last Updated: 16.05.18
WHO IS COLLECTING MY DATA?
This Privacy Statement explains how Wyse Choices will process your personal and health information in accordance with the General Data Protection Regulation 2016 (GDPR) which comes into effect in May 2018, replacing the existing data protection framework under the EU Data Protection Directive.
As data controllers, Wyse Choices employs appropriate technical and organisational measures to meet the requirements of GDPR.
PRIVATE PRACTICES AND DIRECT MARKETING
We will never use your data for direct marketing purposes without your consent. At any time you may opt out (i.e. refuse the use of your personal data), including at the time the data is collected, or on every subsequent marketing message. Unsubscribing will always be free of charge and fully respected.
It should be noted that other methods of communication (confirmation of appointments or reminders, etc.) do not fall under “direct marketing”, however consent will still be collected for this.
WHAT TYPE OF DATA IS COLLECTED?
Wyse Choices complies with the EU Data Protection Directive 95/46/EC as set forth by the European Union regarding the collection, use, and retention of personal data from European Union member countries. Wyse Choices has certified that it adheres to the requirements of notice, choice, onward transfer, security, data integrity, access and enforcement.
We collect two types of data: personal data, and sensitive personal data.
- Personal data can be used to identify or contact you, and may include: your name, address, date of birth, telephone number, and email address. This will only be collected if you voluntarily submit it to us.
- Sensitive personal data is relating to your health, and is collected for the purposes of clinical assessment, treatment, programme provision or advice, and is necessary to be obtained in order to provide the most accurate service for you.
WHAT IS MY DATA BEING USED FOR?
We will ask you to provide, either by phone or electronic means, your name, address, date of birth, telephone number, and email address. This information provided will be used by Wyse Choices to:
- verify your identity
- provide you with the service you have requested
- respond to your enquiries or provide customer support
- create your medical file and book your appointment(s)
- send updates regarding your appointments and programmes
- contact you in the case of a data breach
- provide you with advice, dependant on the information you have given
- seek feedback for ongoing service improvements
- communicate with you regarding other Wyse Choices products and services
When you attend a Wyse Choices you will be asked to provide further sensitive data to allow your service provider to:
- perform a clinical assessment
- provide you with appropriate treatment, programmes or advice
WHAT HAPPENS TO MY DATA?
All of your personal and health data is stored securely, offsite and in electronic format on secure computer system. All electronic communications are password protected and encrypted. Wyse Choices has adequate measures in place to ensure that your information is held securely, within the EU. Any personally identifiable information you elect to make available publicly on our sites – e.g. posting comments on any of our blog posts – will be available to others
WHO HAS ACCESS TO MY DATA?
Access is restricted to your professional provider namely your Clinical Pychotherapist.
We will never disclose your Personal Data to third parties unless you have consented to this disclosure or unless the third party is required to fulfill your order (in such circumstances, the third party is bound by similar data protection requirements).
We will disclose your Personal Data if we believe in good faith that we are required to disclose it in order to comply with any applicable law, a summons, a search warrant, a court or regulatory order, or other statutory requirement.
HOW LONG IS MY DATA HELD FOR?
Your data will be held by Wyse Choices as long as is legally required. In the case of healthcare, we retain records for a minimum of eight years from the date of last treatment. In the case of children’s records, the period of eight years begins from the time they reach the age of 18.
After that time period your data will be securely deleted, as per our data destruction policy.
WHAT ARE MY RIGHTS?
You can contact us at any time to:
- Request personal or sensitive personal data about yourself
- Correct any information if it is incomplete or misleading
- Withdraw your consent regarding the processing of your data at any time
- Review our Data Protection Policy
- Ask any questions about your data
Any request should be put in writing and will be responded to, by us within 30 days. Please contact us either by email at firstname.lastname@example.org.
For your protection, we may need to verify your identity to process your request.
USE OF WYSE CHOICES WEBSITE
Like most websites, we gather statistical and other analytical information collected on an aggregate basis of all visitors to our website.
This Non-Personal Data comprises of information that cannot be used to identify or contact you; such as demographic information regarding, for example, user IP addresses where they have been clipped or anonymised, browser types and other anonymous statistical data involving the use of our websites.
Any external links to other websites are clearly identifiable as such, and we are not responsible for the content or the privacy policies of these other websites.
Wyse Choices may, from time to time, utilise Google’s remarketing technology. This allows us to display relevant ads based on the pages on the Wyse Choices website you have viewed. The advertisements will be displayed using cookies. This cookie will not record any personal information or identify you personally.
Google has its own data protection policy which can be accessed here: https://www.google.com/intl/en/policies/privacy/.
We take our security responsibilities seriously, taking all reasonable steps, including appropriate technical and organisational measures to protect your data. We review our security measures regularly.
If you have reason to believe that your interaction with us is no longer secure, please contact us immediately via email at email@example.com.
SALE OF BUSINESS
We reserve the right to transfer information (including your personal data) to a third party in the event of a sale, merger, liquidation, receivership or transfer of all or substantially all of the assets of our company in the following cases:
- provided that the third party will only use your Personal Data for the purposes that you provided it to us.
You will be notified in the event of any such transfer and you will be afforded an opportunity to opt-in.
UPDATES TO THIS PRIVACY STATEMENT
We may changes this privacy statement, however the “last updated” date will always be listed at the top of this page. Any changes will be effective immediately.