Privacy Policy

This Privacy Notice sets out the basis on which we collect and process personal data about you. This includes our practices regarding the collection, use, storage, and disclosure of personal data that we collect from you and/or hold about you, and your rights in relation to that data.

Please read the following carefully to understand how we process your personal data. By providing your personal data to us or by using our services, website, or another online or digital platform(s) you are accepting or consenting to the practices as described or referred to in this Privacy Notice. For the purpose of Data Protection Laws, the data controller is AdeaHealth, with a registered address at 34 Fairwall Hall, Cualanor, Dun Laoghaire, Dublin A96 KC2W, incorporated in accordance with the laws of Ireland with Company Number 759849. Should you require any further information, please contact us at [email protected].

When we refer to ‘we’, ‘us’, and ‘our’, we mean AdeaHealth.

Collection of Personal Data

When we refer to personal data in this Notice, we mean information that relates to an identified or unidentifiable individual.

We may hold and use personal data about you as a customer, a patient, or in any other capacity, for example, when you visit one of our websites, complete a form, access our services, or speak to us.

Personal data we collect from you may include the following:

• information that you give us when you enquire or become a customer or patient of us or apply for a job with us including name, address, contact details (including email address and phone number)
• the name and contact details (including phone number) of your next of kin
• details of referrals, quotes, and other contact and correspondence we may have had with you
• details of services and/or treatment you have received from us, or which have been received from a third party and referred to us
• information obtained from customer surveys, promotions, and competitions that you have entered or taken part in
• recordings of calls we receive or make
• notes and reports about your health and any treatment and care you have received and/or need, including clinic and hospital visits and medicines administered
• patient feedback and treatment outcome information you provide
• information about complaints and incidents
• information you give us when you make a payment to us, such as financial or credit card information
• other information received from other sources, including from your use of websites and other digital platforms we operate or the other services we provide, information from business partners, advertising networks, analytics providers, or information provided by other companies who have obtained your permission to share information about you.

Where you have named someone as your next of kin and provided us with personal data about that individual, it is your responsibility to ensure that that individual is aware of and accepts the terms of this Privacy Notice.

Where you use any of our websites, we may automatically collect personal data about you including:

• Technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform,
• Information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through, and from our site (including date and time), products you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page.

The data that we request from you may include special category data. This includes information that relates to the following:

• racial or ethnic origin,
• political opinions,
• religious or philosophical beliefs,
• trade union membership,
• genetic data, biometric data to uniquely identify a natural person,
• health data,
• data concerning a natural person’s sex life or sexual orientation.

Use of Data

The collected data is used for various purposes such as:

• Providing additional contact information to provide more information
• Providing and maintaining our Service
• Notifying you about changes to our Service
• Allowing you to participate in interactive features of our Service when you choose to do so
• Providing customer care and support
• To provide analysis or valuable information so that we can improve our Service
• To monitor the usage of our Service

Transfer of Data

Your data may be transferred to and maintained on computers outside your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.

Disclosure of Data

Legal Requirements

We may disclose your Data in the belief that such action is necessary to:

• comply with a legal obligation
• protect and defend our rights or property
• prevent or investigate possible wrongdoing in connection with our Service.
• protect the personal safety of users of our Service or the public
• protect against legal liability

Security of Data

The security of your data is important to us but remember that no method of transmission over the Internet or electronic storage is 100% secure. Therefore, while we strive to use acceptable means to protect your Personal Data, we cannot guarantee absolute security.

Lawful Basis

The lawful bases for processing are set out in Article 6 of the UK GDPR. At least one of these will apply whenever we process your personal data:

• Consent: you have given us explicit consent for us to process your data for a specific purpose
• Contract: the processing is necessary for the performance of a contract we have with you, or because you have asked us to take specific steps before entering into a contract
• Legal Obligation: the processing is necessary for AdeaHealth to comply with the law
• Public Interest: the processing is necessary for AdeaHealth to perform a task in the public interest or for our official functions, which have a clear basis in law.
• Legitimate Interests: the processing is necessary for AdeaHealth’s legitimate interest or the legitimate interest of a third party unless there is a good reason to protect your personal data which overrides those legitimate interests.
• Vital Obligation: the processing is necessary to protect someone’s life.

Your Rights

Under the Data Protection Act 2018 and the GDPR, you have several rights which may apply to the services we provide.

• Access: Subject to certain exceptions, you have the right to request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it
• Correcting: You have the right to request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
• Deletion: You have the right to request the erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us to continue to process it. You also have the right to ask us to delete or remove your personal data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
• Object: You have the right to object to the processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. You also have the right to object to where we are processing your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
• Restrict: You have the right to request the restriction of the processing of your personal data. This enables you to ask us to suspend the processing of your personal data in the following scenarios: (a) if you want us to establish the data’s accuracy; (b) where our use of the data is unlawful but you do not want us to erase it; (c) where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or (d) you have objected to our use of your data but we need to verify whether we have to override legitimate grounds to use it.
• Portability: You have the right to request the transfer of your personal data to you or a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
• Automated Decision Making: Where your data is being used to make automated decisions about you, you have the right to be told what logic the system uses to make those decisions and to be able to request human intervention.
• Withdraw Consent: You have the right to withdraw consent at any time when we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.

For further information on each of those rights, including the circumstances in which they apply, and how to exercise them, please contact us at [email protected].

In certain circumstances, a reasonable fee may be charged to access your personal data or exercise other rights relating to your personal data. These circumstances are as laid down by the Information Commissioner, such as excessive requests. We may also refuse to comply with the request in these circumstances.