(the “Site”). Please read the following information carefully to understand our views and practices regarding your personal data and how we will treat it.
- We will always use your data within the law.
- We will never sell your data
- We will always respect your wishes about how you would like to be contacted.
Why do we collect your data?
- We obtain and use your personal details and financial details in order to establish and deliver our contracted services to you.
- Where you access our service through your health insurance provider we will need to share personal information including medical information with your health insurance provider with your explicit consent.
- Where you access our service through the NHS we will need to share personal information including medical information with the NHS with your explicit consent.
- We obtain and use your medical information as this is necessary for medical purposes, including medical diagnosis and treatment.
- We also store your medical information such as notes from consultations for regulatory compliance purposes. For example, we may need to review your information and, where necessary, make disclosures in compliance with reasonable requests by regulatory bodies including the General Medical Council, MHRA, and Care Quality Commission, Private Health Information Network (PHIN) or as otherwise required by law or regulation.
- We use your email address, postal address and telephone to send you occasional updates and marketing messages where you have given your consent or where you have not opted out, based on our legitimate interest in marketing our services to you, and subject to your right to opt out at any time).
- We use your telephone in order to communicate with you regarding appointment bookings, resolving of queries or complaints.
Information we may collect from you
Information you provide
Personal details – Basic information about yourself that you provide by filling in forms on our Site or speaking to us on the telephone; such as your name, date of birth, physical address and email address, telephone numbers.
Medical information – Information about your symptoms, consultations, medications and procedures.
Financial information – We do not collect or store credit or debit card details. When you make any payments using your credit/debit card, these details are processed directly by a third-party processor that will store all payment information and transactions details. We will only retain limited details of the transactions on secure servers located in the UK.
Insurer funded – Where your access to our service is funded by an insurance provider, with your consent, we will need to let your insurance company know your name, email address, policy number, demographic information, appointment and procedure details.
Passive information collection and use
As you navigate through the Site, certain information can be passively collected (that is, gathered without you actively providing the information) using various technologies and means, such as Internet Protocol addresses, cookies, internet tags and navigational data collection.
We and our third-party service providers may passively collect and use information in a variety of ways, including:
Through your browser – Certain information is collected by most browsers, such as your Media Access Control (MAC) address, computer type (Windows or Macintosh), screen resolution, operating system version, and Internet browser type and version. We may collect similar information, such as your device type and identifier, if you access the Site through a mobile device.
IP Address – Your IP Address is a number that is automatically assigned to the computer that you are using by your Internet Service Provider. An IP Address is identified and logged automatically in our server log files whenever a user visits the Site, along with the time of the visit and the page(s) that were visited. Collecting IP Addresses is standard practice on the Internet and is done automatically by many web sites. We use IP Addresses for purposes such as calculating Site usage levels, helping diagnose server problems, and administering the Site.
Using pixel tags, web beacons, clear GIFs, or other similar technologies – These may be used in connection with some Site pages and HTML-formatted e-mail messages to, among other things, track the actions of Site users and e-mail recipients, measure the success of our marketing campaigns, and compile statistics about Site usage and response rates.
Device Information – We may collect information about your mobile device, such as a unique device identifier.
Third Party Sites and Services
Social Media and Sharing Tools
On some pages, we may also feature embedded ‘Share’ buttons or widgets that enable you to share content with friends through a number of popular social networking sites (e.g. Twitter and Facebook etc).
These sites may set cookies which can identify you as an individual when you are also logged in to their services. This means they may be collecting information about what you are doing online, including on our Sites. We do not control these cookies and you should check the relevant third-party website to see how your information is used and how to opt out.
Telephone and Video Consultations
We may offer you a consultation via telephone or video conferencing. By accepting the invitation and entering the consultation you are consenting to this. Your personal/ confidential patient information will be safeguarded in the same way it would with any other consultation and any risks explained to you before the consolation begins.
How we use your data
Data Protection Consent
In this section “Data Protection Laws” means the General Data Protection Regulations, the Privacy and Electronic Communications (EC Directive) Regulations 2003 and any other Applicable Law relating to the processing, privacy or use of Personal Data; and “Personal Data” shall have the meaning given to it in the relevant “Applicable Law” with Personal Data including sensitive Personal Data and special categories of Personal Data. “Applicable Law” shall mean all applicable statutes, regulations, orders, regulatory requirements, by laws, ordinances, rules, subordinate legislation and other laws, including any judicial or administrative interpretation of them, in force from time to time in any applicable jurisdiction.
We are committed to protecting and respecting patient privacy and to comply with Data Protection Laws and medical confidentiality guidelines. Very strict rules and procedures are in place to ensure that your information is kept safe, and that your Personal Data is kept confidential at all times.
Please note that you can opt out at any time from any of the data processing and data sharing initiatives described below (although this will not affect the lawfulness of any processing of your Personal Data up to that point). If you change your mind at a later date please contact: firstname.lastname@example.org
From time to time Dr Aris Konstantopoulos is involved in research projects for eye conditions, eye surgery and imaging technologies. We may share ANONYMOUS details about the progress of your treatment with your nominated contacts from time to time when we have the legal right to do so under Data Protection Laws supported by different regulations. If no such legal right exists, we will separately ask you for your consent.
Data Protection – Agreement & Declaration
(1) Medical information will be disclosed to those involved with your treatment or care.
(2) Aris Vision Correction will share your non-medical information (or where applicable, your Guarantor or Sponsor’s) in relation to billing, processing, payment or collection of accounts, or credit referencing information. This extends to any person or organisation they may involve in order to achieve this. We will employ appropriate measures to protect your personal data where this is the case.
3) Dr Aris Konstantopoulos has regulatory and/or compliance obligations to share certain clinical data with various governmental and regulatory bodies (for example General Medical Council, MHRA, and Care Quality Commission, or as otherwise required by law or regulation. This may include any personally identifiable clinical information, including your NHS patient identification number or its equivalent.
(4) Dr Aris Konstantopoulos has legal obligations to share certain personal data with PHIN; for further information please visit Private Healthcare Information Network (PHIN) at https://www.phin.org.uk/
5) We may need to share your data with our third-party service providers who provide services such as: website hosting, moderating, mobile App, hosting, data analysis, payment processing, order fulfilment, infrastructure provision, IT services,
customer service, e-mail and direct mail delivery services, credit card processing, auditing services, and other services, in order to enable them to provide services on our behalf and continually improve overall care.
6) Dr Aris Konstantopoulos participates In national clinical audits and submits data to national registries. These data sharing initiatives are aimed at improving the quality of patient care, medical treatments and outcomes across the healthcare industry.
Unfortunately, secure transmission of information via the internet cannot be guaranteed due to security threats outside our control and you acknowledge that transmission over the internet is at your own risk.
If you have reason to believe that your interaction with us is no longer secure, please immediately notify us of the problem by contacting us in accordance with the ‘Contact Us’ section.
How do we use your data?
We use and disclose information you provide to us as described to you at the point of collection.
We also use information from or about you:
- To respond to your inquiries and fulfil your requests, such as to send you documents you request or e-mail alerts.
- To send you important information regarding our relationship with you or regarding the Site, changes to our terms, conditions, and policies and/or other administrative information.
- For our business purposes, such as data analysis, audits, developing new products, enhancing our website, improving our products and services, identifying Site usage trends, personalizing your experience on the Site by presenting products and offers tailored to you, and determining the effectiveness of our promotional campaigns.
We may also disclose information collected through the Site:
- To our third-party service providers who provide services such as website hosting and moderating, mobile App, hosting, data analysis, payment processing, order fulfilment, infrastructure provision, IT services, customer service, e-mail and direct mail delivery services, credit card processing, auditing services, and other services, in order to enable them to provide services on our behalf.
- To a third party in the event of any reorganisation, merger, sale, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock (including in connection with any bankruptcy or similar proceedings).
Use of Site by Minors
This site is directed to adults. It is not directed to individuals under the age of 16, and we request that these individuals do not provide personal information through this Site.
You have the right to:
Access the personal data which the Company holds about you. This is called a Subject Access Request (SAR) and must be made to the Data Protection Manager using the details in the ‘Contact Us’ section.
You may use this process to exercise your right to:
- Have your personal data rectified if it is inaccurate or incomplete.
- Request that we erase information we hold about you.
- Restrict the processing of your personal data, for example ask us not to contact you.
- Object to the processing of your data for specific purposes such as communications or direct marketing.
- Ask for the transfer of your data electronically to be provided to a third party (data portability)
You also have the right to lodge a complaint with the Information Commissioner’s Office:
Information Commissioner’s Office
Telephone: 0303 123 1113