eHealth Cluster Privacy Policy
eHealth Cluster respects your privacy and is committed to safeguarding your personal data.
eHealth Cluster is aware of its obligations under the General Data Protection Regulation (GDPR) and the fundamental rights of data subjects,and is committed to processing your data securely and transparently.
This Privacy Policy explains the types of personal data we may collect about you when you interact with us. It also explains how we store and handle that data, who we share it with, and we keep it safe.
By using this our services, you consent to the Processing of your Personal Data as described in this Privacy Policy.
Contact us at info@ehealthcluster if you have any questions or problems about the use of your Personal Data and we will be happy to help.
Contact Information
eHealth Cluster
12 Jordan Street, Liverpool, Merseyside, L1 0BP, United Kingdom
Registered in England and Wales. Company Reg: 09633525
info@ehealthcluster.org.uk
Contents
- What is personal data and what is the processing of personal data?
- How we collect your data
- How we use your personal data
- Sharing your data
- Data Retention and Security
- Visiting our website
- Your Rights
- Queries and concerns
- Changes to the Privacy Policy
What is personal data and what is the processing of personal data?
Personal data refers to any recorded information we hold about you from which you can be identified. Processing means using the data in any way.
How we collect your data
We collect data about you in a variety of ways dependent on the nature of your relationship with us. We collect data that you give to us or that is publicly available.
We obtain data when you:
- apply for and use our products and services
- talk to us on the phone or email
- use our website and online platforms
- sign up for our newsletter
- attend an event
- give us feedback, complete surveys, questionnaires and take part in research
In some cases, we will collect data about you from third parties or from public sources of information. This includes Companies House or to obtain a reference, for example.
In some cases we gather information from our trusted partners with confirmation that they have legal grounds to share that information with us. This is either information you have provided them directly with or that they have gathered about you on other legal grounds.
How we use your personal data
We use your personal data on a variety of grounds: legitimate interests, to comply with the law, where it is necessary for a contract we have with you, and/or with your consent.
We use your personal data to provide you with information, products and services. This includes using personal data for the following reasons:
- to manage membership records
- to deliver our products, services and events
- to maintain our own accounts and records
- to conduct questionnaires and surveys
- to promote our products, services and events
- to provide news, updates and opportunities
We reserve the right to use data outside the scope of this Policy only when it is anonymised.
Sharing your data
We will keep information about you confidential however there may be times when we share your data with third parties to provide a product or service. This may include us sharing your information with:
- eHealth Cluster contractors – to supply products and services
- Venues delivering events, training, conferences, etc.
- Partner organisations – where there is a legitimate interest in doing so
- Our trusted partners – in order to either make providing the service to you possible or to enhance your customer experience.
We will not pass your data to third party marketing companies.
We only work with Processing partners who are able to ensure adequate level of protection to your Personal Data. We disclose your Personal Data to third parties or public officials when we are legally obliged to do so. We might disclose your Personal Data to third parties if you have consented to it or if there are other legal grounds for it.
Data Retention and Security
We only retain your personal data for as long as needed or permitted in light of the purposes for which it was obtained. The criteria used to determine our retention periods include the length of time we have an ongoing relationship with you and provide our services to you, our legal obligations or whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure, please immediately notify us.
Visiting our website
We do not use data from cookies on our website
Embedded content from other websites – articles on the eHealth Cluster website may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.
Your Rights
The law on data protection gives you certain rights in relation to the data we hold on you:
- You have the right to access the data that we hold on you.
- The right for any inaccuracies to be corrected.
- The right to have information deleted.
- The right to restrict the processing of the data.
- The right to portability.
- The right to object to the inclusion of any information.
- The right to not to be subject to automated decision making in way that adversely affects your legal rights.
Where you have provided consent to use your data, you have the unrestricted right to withdraw that consent at any time. In some cases, we may continue to use the data where so permitted by having a legitimate reason for doing so.
More detail about your rights can be found here: https://ico.org.uk/your-data-matters/
Queries and concerns
If you have any questions about this Privacy Notice or are unhappy with how we have used your personal information, then please contact us using the details above. The supervisory authority in the UK for data protection matters is the Information Commissioner (ICO). If you think your data protection rights have been breached in any way by us, you are able to make a complaint to the ICO.
Changes to the Privacy Policy
We reserve the right to make changes to this Privacy Policy.
Last modified May 2018.