From May 25 2018, there is a new set of Data Protection regulations to ensure that all of our personal information will be protected from the ever expanding digital footprint.
My Data Protection Promise:
As the ‘Data Controller’ of your personal data, I take my role in the protection of your data very seriously. As such, I promise to:
Only collect data from you that is relevant to your treatment.
Not pass on your personal data to any third-parties for marketing purposes.
Contact you and get your consent if I need to communicate with other health professionals (such as your doctor/consultant) about your care.
Use paper notes for your treatment records which are kept securely under lock and key in the clinic.
Should you have any concerns or questions about your personal data you can contact me at firstname.lastname@example.org
Your Data Protection Rights under the GDPR:
When GDPR comes into effect in May 2018 you will have the right to:
1. Access any of the information that I collect plus any other content that forms part of your patient record, including notes and you can expect to be able to read them and understand what they mean without expert medical knowledge.
2. Know if your personal information has been forwarded to a third-party (such as a fellow healthcare professional, consultant or GP.)
3. Have any invalid information about you corrected.
4. Have your personal data deleted/destroyed by me if you decide to switch to another holistic therapist.
5. Prevent further use (or processing) of your information.
6. Ask your therapist to send you (or your new therapist) your personal information in an open electronic format like a .csv file or text file.
7. Request that your therapist stops sending you any marketing information.
8. Ensure that any profiling that is undertaken using your personal data is fair, appropriate, statistically valid and transparent.
9. Expect your therapist to take appropriate measures to protect your data.
10. Be notified if critical information about you was inappropriately accessed and was deemed to be a critical breach.
11. Not to have your personal information transferred outside the EU.
12. Know how your personal information is being used by your therapist.