1. Introduction
This privacy policy is about how ‘Jessica Childs - Women’s Health’ collects, processes, stores and shares member’s data.
This Privacy Policy only relates to personal data collected by ‘Jessica Childs - Women’s Health’ via its website, application forms, emails and telephone calls. Any personal data collected by ‘Jessica Childs - Women’s Health’ is used in accordance with UK data protection legislation.
Users should be aware that if they access other websites, using the links provided, these are outside our control. If they provide personal data to other companies, the privacy policies of those companies determine the uses to which that information is put and the ‘Jessica Childs - Women’s Health’ Privacy Policy will no longer apply.
2. The Data Protection Bill 2017
‘Jessica Childs - Women’s Health’ complies with the principles of the Data Protection Bill 2017 in accordance with General Data Protection Regulations (GDPR).
3. Purpose of data
The data we collect from clients is the data required to provide professional services to those clients, communicate and validate and verify the legitimacy of clients. The data held by ‘Jessica Childs - Women’s Health’ is collected at the time of application by members and includes name, surname, clinic address, email, phone number(s), website, certificates of qualifications and records of continued professional development (the latter two upon request).
4. Disclosures - Sharing of data
We may disclose your personal information (including to trusted third parties) for the purposes for which is primarily held or for a related secondary purpose and in some cases we may disclose information without your consent. Your personal and sensitive information may be disclosed to ‘Jessica Childs - Women’s Health’ employees, ‘Jessica Childs - Women’s Health’ representatives, service providers we use to deliver aspects of our service such as database or email software facilities (Halthpathpro is the primary database we use to store client details and clinic information).
If relevant, data is shared via member numbers with insurance providers for the purposes of verifying the legitimacy of insurance applicants.
Data is shared upon request on behalf of a member with external companies that provide practitioner services to verify qualification and status claims.
Data is shared with our regulator the General Naturopathic Council for the purposes of registering practitioners on a public register, and confirming their status as a fully qualified, voluntarily regulated practitioner.
Data is shared internally with administrators for the purpose of verifying payments and refunds.
5. Legacy data
Applicants to ‘Jessica Childs - Women’s Health’ accepted or otherwise are kept on record for up to 3 years. Applicants who have been barred, banned or otherwise excluded from membership are kept on record to prevent renewed access to the Association in keeping with the interests of public safety.
6. Device specific data
The following information may be collected through your device and browser:
· Your devices IP address (collected and stored in an anonymised format)
· Your email address including first name and surname
· Device screen size
· Device type (unique identifiers) and browser information
· Geographic location (country only)
· Preferred language used to display the webpage
7. Digital Log data
Our servers automatically record information which is created using our software. Data includes:
· Referring domain
· Pages visited
· Geographic location (country only)
· Preferred language used to display information
· Date and time when pages were accessed or created
8. Consent
‘Jessica Childs - Women’s Health’ membership is an optional process. By joining ‘Jessica Childs - Women’s Health’, members consent via their application to receive information relating to the activities of ‘Jessica Childs - Women’s Health’ in the form of newsletters, regulatory updates, upcoming seminars, webinars, events, training, special offers and information relevant to the profession.
9. Opting out
Opt out mechanisms are in place on all ‘Jessica Childs - Women’s Health’ mailings and communications. Users can choose to opt out at any time by clicking the opt-out button at the bottom of mailings or emailing ‘Jessica Childs - Women’s Health’ directly with a request to opt out.
10. Use Made of Personal Information
Personal information provided to ‘Jessica Childs - Women’s Health’ will be used for the purposes of providing services to the client. Any personal information which is collected by the ‘Jessica Childs - Women’s Health’ will be used by the company only in accordance with current data protection legislation.
In addition, personal information may be used for statistical analysis.
Personal data will be collected and processed by ‘Jessica Childs - Women’s Health’ for the following purposes:
(1) To process your membership
(2) Administration
(3)To validate and confirm your insurance application (where relevant)
(4)To validate and confirm your rights to access free and discounted offers with external companies
(5)To validate and confirm your status (at your request) to external companies
(6)To register your attendance at ‘Jessica Childs - Women’s Health’ events
(7)To record complaints or misdemeanours.
Processing personal data for the above purposes may entail sharing the information with contractors, agents and professional advisors and regulators of ‘Jessica Childs - Women’s Health’.
Written agreements exist between ‘Jessica Childs - Women’s Health’ and such parties that there must be no further disclosure of such personal data.
11. Consent
By providing personal data to ‘Jessica Childs - Women’s Health’ users consent to the processing of such data by ‘Jessica Childs - Women’s Health’ as described in this Privacy Policy.
12. Verifying, updating and amending your personal information
If, at any time, a user wants to verify, update or amend their personal data they may write to:
YOUR FULL NAME
YOUR COMPANY NAME
YOUR EMAIL ADDRESS
YOUR PHONE NUMBER
Verification, updating or amendment of personal data takes place within 10 working days
13. Storage of personal data, and processing of data
This clinic uses the service of Healthpathpro to manage client data, bookings, clinic information and payments. This company is a professional company based in London and adhere to data protection regulations:
Information surrounding GDPR from Healthpathpro:
Healthpath Pro takes a daily full snapshot of our database and copies this onto an external server so if something were to happen, we would be able to recover data from the last time we took a snapshot.
Healthpathpro encrypts data, using 256 bit SSL, ensuring the data is secure.
Healthpathpro can make all data available promptly according to GDPR regulation.
Regarding data back up, Healthpathpro distributes their data across various servers, in multiple locations. This means that if something fails, Healthpath Pro will continue running.
Healthpathpro automatically scale their servers to meet peaks in demand so that Healthpath Pro is fast and responsive.
14. Cookies
A “cookie” is a small text file that is placed on a user’s computer hard drive by a website. There are several types of cookie and the most common are often referred to as ‘session’ cookies. These are used to keep track of information needed by a user as they travel from page to page within a website. These cookies have a short lifetime and expire within a few minutes of the user leaving the site.
Other types of cookies can be used to track internet activity after the user has left a website. These are usually sponsored by organisations external to the website being visited and are generally known as ‘third party’ cookies. These usually have a long lifetime with several months being quite common. They are ‘harvested’ and ‘refreshed’ whenever the user visits a page where the same or a similar cookie is being used.
The ‘Jessica Childs - Women’s Health’ uses benign, short lived ‘session’ cookies to tell whether a website user has logged in, where to find details that can be used to pre-fill parts of on-line forms and to personalise the user’s visit to the website.
‘Jessica Childs - Women’s Health’ cookies do not analyse visits to other website or any searches undertaken whilst on the ‘Jessica Childs - Women’s Health’ website.
Internet browsers normally accept cookies by default; however, it is possible to set a browser to reject cookies. If this is done it is important not to exclude the benign and useful session cookies. Choose an option that rejects all third party and long lived cookies.
The ‘Jessica Childs - Women’s Health’ uses cookie free technology that uses Internet Protocol (IP) information exchanged during the course of normal web activity combined with data enhancement technology to get detailed analytics information.
16. Links to Third Party Websites
This Privacy Policy applies solely to the personal data collected by the ‘Jessica Childs - Women’s Health’ and does not apply to third party websites.
The ‘Jessica Childs - Women’s Health’ is not responsible for the privacy policies of third party websites. The ‘Jessica Childs - Women’s Health’ advises users to read the privacy policies of other websites before registering any personal data.
17. Security
The ‘Jessica Childs - Women’s Health’ holds your personal data in accordance with the security provisions of the UK data protection legislation. Healthpathpro encrypts data, using 256 bit SSL, ensuring the data is secure.
If you have any questions about security please contact Jessica.
18. Notification of Changes
‘Jessica Childs - Women’s Health’ will notify all users of any changes it makes to its Privacy Policy. If ‘Jessica Childs - Women’s Health’ decides to change its Privacy Policy, it will post such changes on this page so that you are always aware of how the ‘Jessica Childs - Women’s Health’ uses your personal data.
Users have the right to ask the ‘Jessica Childs - Women’s Health’, in writing, for a copy of all the personal data held about them upon payment of a fee (“subject access request”) and to request that ‘Jessica Childs - Women’s Health’ correct any inaccuracies in that information.
19. Your rights over your data
You have the right to rectify, amend, correct or erase your data except where there is a legal basis for refusal.