Aspen Healthcare is committed to protecting your privacy and meeting the requirements of data protection legislation. This privacy notice explains:
When we talk about “personal data” in this notice, we mean any information which could be used to identify you, either directly or indirectly when combined with any other information we may hold about you.In this privacy notice, when we refer to “we”, “us” or “our”, we mean Aspen Healthcare Limited, Centurion House, Third floor, 37 Jewry Street, London EC3N 2ER. We are the data controller under the Information Commissioner’s Office registration number ZA097224. If you need to contact us about this privacy notice or further details on how we use your personal information please contact the Group Data Protection Officer by post at our address above or by emailing DPO@aspen-healthcare.co.uk.
The doctors, nurses and team of healthcare professionals caring for you keep records about your health and any treatment and care you receive from us. These records help to ensure that you receive the best possible care.
They may be written down in paper records or held on computer. These records may include:
It is essential that your details which we hold are accurate and up to date. Always check that your personal details are correct when you visit us and please inform us of any changes as soon as possible.
Your records are used to direct, manage and deliver the care you receive to ensure that:
Your information will also be used to help us manage and protect the health of the public by being used to:
We have a number of lawful bases for using this information under data protection legislation.
Everyone working within healthcare has a legal duty to keep information about you confidential. Similarly, anyone who receives information from us has a legal duty to keep it confidential.
We will share information with the following main partner organisations:
You may be receiving care from other people as well as us, for example Social Care Services or District Nursing Services. We may need to share some information about you with them so we can all work together for your benefit if they have a genuine need for it or we have your permission. Therefore, we may also share your information, subject to strict agreement about how it will be used, with:
We will not disclose your information to any other third parties without your permission unless there are exceptional circumstances, such as if the health and safety of others is at risk or if the law requires us to pass on information.
You have the right to restrict how and with whom we share the personal information in your records that identifies you. This must be noted explicitly within your records in order that all healthcare professionals and staff treating and involved with you are aware of your decision. By choosing this option, you should be mindful that it may make the provision of treatment or care more difficult or unavailable. You can also change your mind at any time about a disclosure decision.
When attending our facilities for an outpatient appointment or a procedure you may be asked to confirm that we have an accurate email address, contact number and/or mobile telephone number for you. This can be used to provide appointment details via email, SMS text messages and automated calls to advise you of appointment times, with your consent.
We may also contact you about goods and services which we think may be of interest to you where you have consented to us using your information in this way.
You can update your communications preferences at any time by informing a member of staff or by contacting the Group Data Protection Officer.
We retain personal data for no longer than required and in line with Aspen’s retention schedule. This is based on statutory requirements and legal obligations, as well as our business requirements.
We take our duty to protect your personal information and confidentiality very seriously and we are committed to taking all reasonable measures to ensure the confidentiality and security of personal data for which we are responsible, whether computerised or on paper. Where we have a need to transfer data outside of the European Economic Area (EEA) we do so with appropriate safeguards in place.
Data protection legislation gives you the right to:
Please contact the Group Data Protection Officer using the details above if you wish to exercise your rights in relation to personal data. Our policy is to verify the authenticity of all requests made, and requests may be refused if we are unable to verify the identity of the requester.
If you have concerns about the way we have handled your personal data please contact the Group Data Protection Officer in the first instance: DPO@aspen-healthcare.co.uk. If you remain unsatisfied you can contact the Information Commissioner’s Office (ICO) on 0303 123 1113, by emailing firstname.lastname@example.org or by post at Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.