We will only use your personal information for specified and lawful purposes as provided for under the General Data Protection Regulation (GDPR). We will take all appropriate organisational and technical measures to safeguard your information from accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.
What information we collect
In order to provide you with appropriate medical care and assessment we may collect the following information about you:
- Home/postal address
- Contact telephone number
- Contact email address
- GP details
- Emergency contact details
- Medical insurance details
- Medical history including scans and tests and current condition
This information may be collected from you or your representative, other clinicians or hospitals where you have previously had tests or investigations.
How your information will be used
Your information will be added to our systems and used to provide you with medical care and to communicate and correspond with you.
Who we may share your information with
We may share relevant information with external parties including the clinicians who referred you, the hospital where your consultation is held, hospitals where your surgery is performed, consultants that we refer you on to, imaging, histology and departments performing your clinical investigations and your medical insurance company.
How long we will keep your information
We will only retain your personal information for as long as is necessary in order to continue to provide you with medical care and should you return for a consultation in the future. If, however, you wish for us to delete your information from our systems, you can request to do so at any time.
Lawful basis for processing
We will only process your information where it is necessary to support the legitimate interests of our practice or those with whom we may have shared your information except where such interests are overridden by your interests or fundamental rights and freedoms which require the protection of personal data.
Mr Peter M Clarke does not routinely transfer personal information outside of the European Economic Area (EEA). However, should the need to do so arise, we will contact you in advance to seek your consent for a transfer to take place. We will also ensure that where such transfers are carried out they are done so using secure methods that offer sufficient assurances and guarantees that your data is afforded the necessary safeguards to prevent it from accidental or unlawful loss, disclosure, access, alteration or destruction.
You may request access to the personal information which we hold about you under Article 15 of the DGPR. To do so, requests must be made in writing (to the address specified below) and we may require you to provide valid forms of identification in order to process your request.
Additionally, if you wish to exercise any of your rights under GDPR, such as where you believe any information we hold about you is incorrect, inaccurate or incomplete, where you wish to restrict or object to processing, or if you are dissatisfied with the way in which Mr Peter M Clarke has used your information in any way, you can report the matter to our Data Protection Officer using the following contact details:
Data Protection Officer
Mr Peter M Clarke
c/o The Cromwell Hospital
You also have the right to refer any concerns you may have regarding Mr Peter M Clarke’s use of your information to the Information Commissioners Office (ICO) – more information can be found by visiting the ICO’s website at: https://ico.org.uk/