Data Protection Registration

The Data Protection Act 1998 requires every organisation that processes personal information to register with the Information Commissioner’s Office (ICO), unless they are exempt. Failure to do so is a criminal offence.

Since changing to a limited company, MedAid Services Ltd have re-registered under the limited company name and our new registration number is ZA170298.

Our register entry is as below:

Nature of work – Healthcare

Description of processing

The following is a broad description of the way this organisation/data controller processes personal information. To understand how your own personal information is processed you may need to refer to any personal communications you have received, check any privacy notices the organisation has provided or contact the organisation to ask about your personal circumstances.

Reasons/purposes for processing information

We process personal information to enable us to provide health services to our patients, to maintain our accounts and records, promote our services and to support and manage our employees.

Type/classes of information processed

We process information relevant to the above reasons/purposes. This information may include:

  • personal details
  • family details
  • lifestyle and social circumstances
  • goods and services
  • financial details
  • employment and education details

We also process sensitive classes of information that may include:

  • physical or mental health details
  • sexual life
  • racial or ethnic origin
  • trade union membership
  • religious or other beliefs of a similar nature
  • offences and alleged offences

Who the information is processed about

We process personal information about our:

  • patients
  • customers and clients
  • staff
  • suppliers
  • business contacts
  • professional advisers

Who the information may be shared with

We sometimes need to share the personal information we process with the individual themself and also with other organisations. Where this is necessary we are required to comply with all aspects of the Data Protection Act (DPA). What follows is a description of the types of organisations we may need to share some of the personal information we process with for one or more reasons.

Where necessary or required we share information with:

  • healthcare professionals
  • social and welfare organisations
  • central government
  • business associates
  • family, associates and representatives of the person whose personal data we are processing
  • suppliers and service providers;
  • financial organisations
  • current, past and prospective employers;
  • employment agencies and examining bodies

Consultancy and Advisory Services

Information is processed for consultancy and advisory services that are offered. For this reason the information processed may include name, contact details, family details, financial details, and the goods and services provided. This information may be about customers and clients. Where necessary this information is shared with the data subject themselves, business associates and other professional advisers, current, past or prospective employers and service providers.

Transfers

It may sometimes be necessary to transfer personal information overseas. When this is needed information may be transferred to countries or territories around the world. Any transfers made will be in full compliance with all aspects of the data protection act.

 

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *