MORNA SUNG: PRIVACY STATEMENT
When you supply your personal details to Morna Sung, they are stored and processed for 3 reasons:
1. Morna Sung has a legal obligation to maintain medical notes in order to provide you with treatment.
2. Morna Sung needs to be able to contact you in order to confirm your appointments, or to update you on matters related to your medical care. Under the GDPR, this is known as Legitimate Interest.
3. Provided Morna Sung has your consent, you may occasionally receive general health information in the form of articles, advice or newsletters. You may withdraw this consent at any time – just let Morna Sung know.
Morna Sung has a legal obligation to retain your records for 8 years after your most recent appointment (or age 25, if this is longer), but after this period you may request for the deletion of your records, if you wish. Otherwise, your records may be retained indefinitely in order that Morna Sung can provide you with the best possible care should you need reassessment and treatment at some future date.
Your records are stored either on paper, or electronically. Paper notes are kept in locked filing cabinets, and the clinic is always locked out of working hours. Electronic notes are maintained using a specialist medical records service. This provider has given their assurances that they are fully compliant with the General Data Protection Regulations. Access to this data is password protected.
Your data will never be shared with anyone who does not need access without your written consent. Only the following people/agencies will have routine access to your data:
The medical records service who store and process any electronic files
Morna Sung – your practitioner in order that she can provide you with treatment (and if you agree to see a locum practitioner, they will also gain temporary access)
Administrative staff who perform e.g. bookkeeping duties, (they do not have access to your medical notes, only your contact details).
In addition, we may also track information provided to us by your browser or by our mobile application when you view or use the Service, such as the website you came from (known as the “referring URL”), the type of browser you use, the device from which you connected to the Service, the time and date of access, and other information that does not personally identify you. We use this information for, among other things, the operation of the Service, to maintain the quality of the Service, to provide general statistics regarding use of the Service and for other business purposes. We track this information using cookies, or small text files which include an anonymous unique identifier. Cookies are sent to a user’s browser from our servers and are stored on the user’s computer hard drive. Sending a cookie to a user’s browser enables us to collect Non-Personal Information about that user and keep a record of the user’s preferences when utilizing our services, both on an individual and aggregate basis. The Company may use both persistent and session cookies; persistent cookies remain on your computer after you close your session and until you delete them, while session cookies expire when you close your browser. Persistent cookies can be removed by following your Internet browser help file directions. If you choose to disable cookies, some areas of the Service may not work properly