We ask patients to give consent at various points in the process
All patient data is recorded with consent. This includes data obtained from online forms and the video consultations.
Online forms have clear “check boxes”. Specific consent is required at the beginning of the video as an “Agree” button before recording starts. Our practitioners ask for verbal consent as well.
We seek specific permission for our practitioners to contact the patient’s GP or other healthcare professional.
GDPR Principles of data processing are strictly followed:
- Only minimum confidential information is requested and stored. The only required information for patients is a name.
- Confidential data is obtained and maintained only for the purpose of providing an online consultation and providing follow-up where necessary. It is not used for any other purpose.
- Confidential data is stored within the EU on servers that are compliant with both GDPR and HIPPAA principles
- We only allow authorised access to confidential data. Access is only permitted through passwords that have more than 110bits of Entropy (see: https://xkpasswd.net/s/
- Only practitioners who are directly responsible for the care of the patient, or who have administrator rights to the systems, can view confidential data.
Doctor in the House is committed to safeguarding the privacy of the data provided to us through our website; this policy sets out how we will treat your personal information. It covers the information we collect, the security with which we handle that information, how we may use the personal data you give us and what our legal obligations are.
What information do we collect?
We may collect, store and use the following kinds of personal information:
- about your visits to, and use of, this website;
- about any transactions carried out between you and us on, or in relation to, this website, including information relating to any purchases you make with us or enquiries relating to our services;
- that you provide to us for the purpose of registering with us and/or subscribing to our website services and/or email notifications;
- provided by our clients for the purpose of carrying out surveys, workshops or other activities the company undertakes.
Information about website visits
We may collect information about your computer (and your visits to this website) such as your IP address, geographical location, browser type, referral source, length of visit and number of page views. We may use this information in the administration of the site, to improve its usability, and for marketing purposes.
Using your personal data
- information which we think may be of interest to you, by post or by email according to your preferences;
- marketing communications relating to our business which we think may be of interest to you by post or, where you have specifically agreed to this, by email or similar technology (you can inform us at any time if you no longer require marketing communications to be sent by emailing us at firstname.lastname@example.org).
- We will not provide your personal information to any third parties for the purpose of direct marketing. We may share your personal information with other services and sites on the internet in order to help us manage our business. We will take all reasonable steps to ensure that their privacy policies and data security protect your data appropriately.
- to the extent that we are required to do so by law;
- in connection with any legal proceedings or prospective legal proceedings;
- in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk.
Security of your personal data
We will take reasonable precautions to prevent the loss, misuse or alteration of your personal information. Data transmission over unencrypted internet connections is inherently insecure, and we cannot guarantee the security of data sent over the internet in this way. As a company incorporated in England, we must and will comply with the requirements of the Data Protection Act 1998.
Third party websites
Where this website contains links to other websites, we are not responsible for the privacy policies of these.