top of page

Privacy Policy

 

At the Cambridge Cardiology Clinic your privacy is of the utmost importance. Our policy is briefly outlined here:

 

As your treating cardiologists we will be the custodians of personal information relating to your medical treatment. 

 

We will only use that information in accordance with all applicable laws and guidance. 

 

You can read here a detailed overview of how we will manage your data from the point at which it is gathered (and onwards) and how that complies with the law.  We will use your personal information for a number of purposes including, but not limited to, providing you with care and treatment, sharing it with other medical professionals and research/clinical audit programmes.  

 

Information you share with us via online forms or by email, phone or other media, will be received with the implicit consent that such information can be used to adequately address your query.

 

Information provided on behalf of somebody else will also be deemed consensual.

 

By using this website you agree to Cambridge Cardiology Clinic placing cookies on your computer or device.

 

A third-party cookie (Google Analytics) collects information such as your IP address, the number of visitors to our site, pages visited, time on site and, if requested, information from the website.

 

This information is used to help us improve the navigability of our website for users.

 

Disabling cookies may prevent the site working as expected and may prevent access to certain areas.

 

At Cambridge Cardiology Clinic we securely store your personal data and will only use it for the purpose it was supplied to us for; to provide healthcare treatment and ongoing medical care. Your personal information may be used for billing and payment purposes. We will not share your information with a third party/ other medical provider without your explicit consent or instruction to do so.

 

This website is for information purposes only and the medical information contained here must not be taken as a diagnostic tool. Likewise, any suggested treatments are provided as an indication of potential procedure (although may not be suitable for every subject).

 

If you are suffering from symptoms, you should seek a medical opinion.​

 

Despite efforts being made to check that pages and files are free of defects and errors, it is not possible to guarantee that all the content is virus free. Therefore, no warranty or guarantee is given by Cambridge Cardiology regarding files downloaded or accessed.

 

Your Rights

 

You have the right to know what personal information we hold about you, you have the right to request a copy of this information and you have the right to have any mistakes corrected. You have the right to ask us to stop processing your data and, where it does not breach our legislative duty to maintain your medical record for a minimum period of time, to have it deleted. You have the right to data portability meaning you can request your personal information be sent to another medical provider. We will, however, still maintain your medical record as part of legislation for the minimum retention period.

 

If you wish to exercise any of these rights, you should make a Subject Access Request to the Data Controller at info@cardiologycambridge.co.uk 

 

If you believe we are not processing your personal data appropriately or are not holding it securely, you can in the first instance complain to the Data Controller at Cambridge Cardiology Clinic by emailing info@cardiologycambridge.co.uk

 

If you remain unsatisfied, you should write to the Information Commissioners Office.

 

Data Processing

 

It is essential that patients have their information easily accessible. At Cambridge Cardiology Clinic we are transparent about what information we collect, what we do with it, who has access to it, how long we keep it and what rights the patient has. Believing we have acted appropriately with your data is a key element in the EU General Data Protection Regulation (GDPR) and the Data Protection Act 2018 

 

This notice sets out our obligation and your rights in regards to this legislation and how Cambridge Cardiology Clinic will use your data for the lawful purpose of delivering care to you.

​

What types of data are collected?

 

Personal Data is any meaningful information relating to an identifiable living person.  Examples of this, but not limited to, are: name, date of birth, address etc.

 

Sensitive Data includes information such as, but not limited to, medical history including medical records, appointments, communications with you, results, race, ethnicity, sexual orientation and religious beliefs.

 

In order for Cambridge Cardiology Clinic to address queries and provide care, it is necessary to collect some personal data- we will only collect the minimum amount necessary to fulfil this. This data allows us to verify your identity when you contact us.

 

Who will access my personal data?

 

All personal data is accessed only for the purpose of delivering a service to you. It is collected, stored and processed by Cambridge Cardiology Clinic in line with Data Protection Legislation.

 

Unless we have your explicit consent, we will not disclose your personal information to anyone, except: members of Cambridge Cardiology Clinic staff, Royal Papworth Hospital, Nuffield Hospital, OneWelbeck, OneHeart and Virtual MedSec Direct and other healthcare providers who might be involved in delivering a service to you such as your referrer and authorised persons involved in your care. We would have to have a legitimate reason to go outside of these boundaries.

 

We may also use your data from time to time to keep you informed of any offers, services, or promotions of Cambridge Cardiology Clinic.

 

How do we keep your personal data secure?

 

Your personal data will be stored on medical software compliant to IS027001 standards, registered & published with the NHS Data Security Protection Toolkit (DSPT) and assured by Cyber Essentials (Midex Pro). 

 

Where required, it will be stored in the medical software of health care providers (of Cambridge Cardiology Clinic staff, Royal Papworth Hospital, Nuffield Hospital, OneWelbeck, OneHeart and Virtual MedSec Direct). Our email address info@cambridgecardiologyclinic.uk uses an encryption service to ensure safety of data processing.
 

How long will personal data be held?

 

Data retention is guided by the NHS Records Management Code of Practice and by the Department of Health; it will not be held for longer than necessary.

​

What are your rights?

 

You have the right to ask what personal data we hold on you, to request a copy of this, have any mistakes rectified and to keep your records up to date or ask us to delete personal data.

 

It should be noted that legislation may prevent us from carrying out your request.

 

If you wish to exercise any of these rights, you should make a request to the Data Controller at info@cambridgecardiologyclinic.co.uk

 

If you believe we are not processing your personal data appropriately or are not holding it securely you can, in the first instance, complain to the Data Controller at Cambridge Cardiology Clinic by emailing info@cambridgecardiologyclinic.co.uk

 

If you remain dissatisfied, you should write to the Information Commissioner’s Office.

bottom of page