Nomad is owned by Nomad Health Technologies Ltd.
Registered address in the UK:
Nomad Health Technologies Ltd
3 Wellington Terrace
Company registration number: 10172968
Data controller: firstname.lastname@example.org
For the purposes of this Privacy Statement Policy any reference to “Nomad Health Technologies Ltd”, “Nomad” (or “our” or “us” or “we”) shall mean Nomad Health Technologies Ltd.
This policy will only apply to personal information processed by or on behalf of Nomad Health Technologies Ltd. Where our website contains links to other sites, it is the responsibility of those site owners to comply with data protection regulations and Nomad Health Technologies Ltd can take no responsibility for their actions. You should check their own privacy policies for further information.
When we may collect information:
- When you visit our website;
- When you book a service;
- When you attend a booked service;
- When you email us;
- When you telephone us;
- When you make a purchase with us.
Account clients or business customers will have provided us with information about individuals within your organisation and this policy will apply to all data provided.
Changes can be made to this policy at any point. We reserve the right to make changes to this policy in accordance with changes in the law, data regulations and our own policy making
What data do we collect, and how?
If an appointment is made through our website, through our call centre, at one of our locations or through any staff member whether over the phone or by email, we will collect the information you have provided to us. Calls to our call centre are recorded and monitored for the purpose of training staff. Emails sent to any address ending in @nomadtravel.co.uk may also be monitored for the same purposes.
Once an appointment is made we will ask you to fill out a questionnaire and when you visit us our medical staff will continue to add to this record. The information we collect is then processed in accordance with this policy and sensitive data such as health information, children’s information, gender and date of birth will be processed as is required for the purposes of health or social care
Your Personal Information
Access to Your information
Our staff will only have access to information and/or data that is necessary for them to complete the business activity they are involved in, access to your information is on a need to know basis only.
Information we may hold about you:
- Full name;
- Contact details;
- Delivery address(s);
- Financial details relating to payments;
- Order details;
- Emergency contact (next of kin);
- Information regarding each contact you have had with one of our medical professionals, including services purchased and/or administered;
- Previous vaccination information;
- Web usage statistics.
You do not have to supply us with your personal information, however if you will be attending a medical consultation if we do not have all the required field filled you may not be permitted to receive any services. If all required information is not received we cannot provide a safe service to you.
Information for research
We may anonymise your personal data, removing all personally identifying information for the sake of medical research or medical statistics. Your information will only ever be used in this way for research and analysis purposes.
Who do we share personal information with?
At your request or with your consent we may share your information with:
- your GP practise;
- your employer, you will be asked to fill in a form to approve this;
- anyone you permit to modify or make bookings on your behalf, this will be asked at the point of booking;
- anyone you chose to have present in a consultation.
Circumstances where your information may be shared without consent:
- If Nomad Health Technologies Ltd is purchased by a third party
- If Nomad is Purchased by a third party, separate to Nomad Health Technologies Ltd
- If we have a legal obligation to provide information to a governing body, regulatory body, including and not exclusively to the Care Quality Commission (CQC), Medicines and Healthcare products Regulatory Agency (MHRA), Public Health England (PHE), National Travel Health Network and Centre (NaTHNaC), Health Inspectorate Wales (HIW).
- In the event of a product recall or manufacturing fault
- In the event of suspected fraud
- As we believe necessary to:
- Comply with law
- Protect the property, rights and/or safety of you, others and/or Nomad Health Technologies Ltd
YOUR RIGHTS AND OPTIONS
You can unsubscribe from any marketing emails sent from us by selecting the unsubscribe link on any marketing email to automatically unsubscribe yourself from marketing emails. You will still receive emails from us pertaining to services you have booked with us.
Access your information
If you would like to see specific information, you can:
- Request specific medical information by requesting a Medical Information Request Form from email@example.com, by calling 01341 555 061 or by requesting one at any of our branches. A form will have to be filled before we can issue any information. We will comply with your request free of charge within 10 working days.
- Request to see all information we hold by requesting and completing a Subject Access Request Form by emailing firstname.lastname@example.org or by calling 01341 555 061. Please note that if the information you request reveals details directly or indirectly about another person we will have to seek the consent of that person before we can let you see that information. In certain circumstances, where disclosure would adversely affect the rights and freedoms of others, we may not be able to disclose the information to you, in which case you will be informed promptly and given full reasons for that decision.
While in most cases we will be happy to provide you with copies of the information you request, we nevertheless reserve the right, in accordance with section 8(2) of the DPA, not to provide you with copies of information requested if to do so would take “disproportionate effort”, or in accordance with Article 12 of the GDPR to charge a fee or refuse the request if it is considered to be “manifestly unfounded or excessive”. However we will make every effort to provide you with a satisfactory form of access or summary of information if suitable.
If after you have received the information you have requested you believe that:
- the information is inaccurate or out of date; or
- we should no longer be holding that information; or
- we are using your information for a purpose of which you were unaware;
- we may have passed inaccurate information about you to someone else;
then you should notify our Data Protection Officer at once.
The right to be forgotten/deleted
You do have right to request that we delete your data. However, you should be aware that we are required by law to store certain information for specific periods of time, for example adult medical records must be kept for 8 years. We will do our best to comply with your request but only within the grounds of the law. If you wish to delete the personal data we hold about you, please let us know and we will take reasonable steps to respond to your request in accordance with legal requirements. If the personal data we collect is no longer needed for any purposes and we are not required by law to retain it, we will do what we can to delete, destroy or permanently de-identify it.
You can also request for deletion if:
- your personal data is no longer necessary in relation to the purposes for which we collected it;
- you withdraw any consent that you had previously given us to process your personal data, and there is no other legal ground to process that personal data;
- you object to us processing your personal data for Nomad’s legitimate interests (such as improving overall user experience on websites);
- the personal data is not being processed lawfully;
- your personal data needs to be deleted to comply with the law.
Restricting or objecting to processing
You have the right to object to the processing of your personal data at any time.
Your data can be restricted at any time, meaning we will continue to store the data but not use it. Grounds for restriction would be if you believe that:
- we are holding inaccurate information about you;
- we are not processing your personal data lawfully but do not want your data deleted;
- we no longer need your personal data for the purposes we collected it, but you require the data;
- you have already objected to the processing of your personal data and are waiting for verification whether your objection will outweigh the legitimate grounds for processing your data.
If you wish to exert your right to object to or restrict the processing of your personal data please contact the Data Control Officer.
Making a complaint to with a supervisory authority
You have the right to make a complaint with a supervisory authority about how we have processed your data. Complaints can be made to the Information Commissioner’s Office – https://ico.org.uk/make-a-complaint/