The Purpose of this privacy notice is to explain how Meliora Medical Group processes your personal data as a patient to fulfil its data protection responsibilities. The scope of this notice covers all related activities by the staff and contractors of Meliora Medical Group, referred to as MMG hereafter.
The Role of MMG in data protection terms is that of a data controller where it determines the purpose and use of personal data collected. Once received it becomes the responsibility of the data protection officer (DPO) to ensure it is processed in accordance with the latest UK data protection legislation and is contactable using email@example.com . MMG is registered with the Information Commissioner’s Office (ICO).
The personal data processed by MMG will be basic contact information for the purposes of responding to general enquiries, making bookings and staying in touch once your treatment has finished. Due to the nature of the services on offer, it will also be necessary to collect and process health related data. If MMG is not given all the requested information, it may result in an incomplete service being provided.
MMG’s duty of confidentiality means that MMG staff will treat your personal data with due respect and in confidence. It is only disclosed to those that need to know it. MMG uses reasonable organisational and technical measures to ensure personal data is kept secure including the use of the Cliniko platform for bookings and storing your medical notes. MMG also expects the same duty of confidentiality of all third parties with whom it shares personal data, including sub-contractors.
The majority of processing takes place in the UK and the European Economic Area (EEA). For any transfers outside the EEA, for instance when your records are stored on the Cliniko platform, the receiving organisations are committed to the same standards of processing as expected by UK data protection laws.
MMG processes personal data against a lawful basis as described below:
Please note you may withdraw your consent at any time by contacting the DPO although in some circumstances, this will impact the way we provide our services to you.
In all cases we will process your personal data in accordance with the principles of data protection as set out in the UK data protection legislation
MMG will share personal data, but only when necessary, with some or all of the following third parties:
On-line consultations with MMG are not normally recorded although it may be necessary to take still images during the consultation for the purposes of providing our services. If recording is beneficial, then you will be asked for your consent prior to recording.
MMG will process your personal data in the UK either on standard office equipment or using Cliniko (see above). Email is processed using a reputable web-based provider and mobile phone contacts are stored on both office IT equipment and mobile phones.
MMG follows a retention schedule to determine the length of time it holds different types of personal data. The retention schedule is shown below:
At the end of the retention schedule MMG will either return, destroy or delete your personal data and any associated emails or relevant documentation. If it is technically impractical to delete electronic copies of personal data, it will put it beyond operational use. It should be noted that MMG allows up to 3 months after the retention schedule to complete the action.
The UK General Data Protection Regulation defines the rights that you have (although these do not apply in all situations), For convenience, these rights are shown below:
Further details on data subjects’ rights can be found on the Information Commissioner’s Office (ICO) website: https://ico.org.uk.
Raising concerns, exercising rights or making queries about MMG’s processing of personal data can be done by contacting the privacy manager. Please be aware that we will need to determine your identity before responding fully, therefore, you may be asked for proof of ID or other material that, in context, will enable us to confirm your identity. Alternatively, if you have a complaint, you may contact the ICO directly, using the details provided above.
Whether you are a School, Club or University, we’d love to hear about how we can help you, so please get in touch.
Return2Play is the trading name for the Sports Medicine service provided by Meliora Medical Group.
Other services include general medical services for schools and lifestyle medicine services. For more information, please visit the Meliora Medical Group website.