loading
MDC Private Dental Practice -

Modern Dentistry Centre

Privacy Policy

Modern Dentistry Centre Privacy Policy

The practice aims to meet the requirements of the Data Protection Act 2018, the General Data Protection Regulation (GDPR), the guidelines on the Information Commissioner’s website as well as our professional guidelines and requirements.

 

 What personal data do we hold?

 In order to provide you with a high standard of dental care and attention, we need to hold personal information about you. You will be asked to provide personal information when joining the practice. The purpose of us processing this data is to provide optimum health care to you.

This personal data compromises of:

  • Your past and current medical and dental condition; personal details such as your age, address, telephone number, email and your general medical practitioner.
  • Radiographs, clinical photographs and study models.
  • Information about the treatment that we have provided or propose to provide and its cost.
  • Notes of conversations/incidents that might occur for which a record needs to be kept.
  • Records of consent to treatment.
  • Any correspondence relating to you with other health care professionals, for example in the hospital or community services.

The categories of data we process are:

  • Personal data for the purposes of staff and self-employed team member management.
  • Personal data for the purposes of direct mail/email/text/other marketing.
  • Special category data including health records for the purposes of the delivery of health care.
  • Special category data including health records and details of criminal record checks for managing employees and contracted team members.

We never pass your personal details to a third party unless we have a contract for them to process data on our behalf and will otherwise keep it confidential. If we intend to refer a patient to another practitioner or to secondary care such as a hospital, we will gain the individual’s permission before the referral is made and the personal data is shared.

  • Personal data is stored in the EU whether in digital or hard copy format.
  • Personal data is stored in the US in digital format when the data storage company is certified with the EU-US Privacy Shield.
  • Personal data is obtained when a patient joins the practice, when a patient is referred to the practice.

The lawful basis for processing special category data such as patients’ and employees’ health data are:

  • Processing is necessary for the purposes of preventative or occupational medicine, for assessing the working capacity of the employee, medical diagnosis, the provision of health or social care or treatment or management of health or social care systems and services on the basis of Union or Member State law or a contract with a health professional.

 

The lawful basis of processing personal data such as name, address, email or phone number is:

  • Consent of the data subject.
  • Processing is necessary for the performance of a contract with the data subject or to take steps to enter into a contract.

 

Why do we hold information about you?

 We need to keep comprehensive and accurate personal data about our patients in order to provide them with safe and appropriate dental care.

 

We will process personal data that we hold about you in the following way:

Retaining information

The retention period for special data in patient records is a minimum of 10 years and may be longer for complex records in order to meet our legal requirements. The retention period for staff records is 6 years. The retention periods for other personal data are 2 years after it was last processed.

You have the following personal data rights:

  • The right to be informed;
  • The right of access;
  • The right to rectification;
  • The right to erasure (clinical records must be retained for a certain time period);
  • The right to restrict processing;
  • The right to data portability;
  • The right to object.

Further details of these rights can be seen in Information Commissioner’s website. Here are some practical examples of your rights:

  • If you are a patient of the practice, you have the right to withdraw consent for important notifications, newsletters, surveys or marketing. You can inform us to correct errors in your personal details or withdraw consent from communication methods such as telephone, email or text. You have the right to obtain a free copy of your patient records within one month of request.
  • If you are not a patient of the practice you have the right to withdraw consent for processing personal data, to have a free copy of it within one month, to correct errors in it or to ask us to delete it. You can also withdraw consent from communication methods such as telephone, email or text.

Security of information

Personal data about you is held in the practice’s computer system. The information is not accessible to the public and only authorised members of staff have access to it. Our computer system has secure audit back up routine.

Disclosure of information

In order to provide proper and safe dental care, we may need to disclose personal information about you to:

  • Your general medical practitioner.
  • The hospital or community dental services.
  • Other health professionals caring for you.
  • Private dental schemes of which you are a member.

Comments, suggestions, and complaints

Please contact the practice for a comment, suggestion or a complaint about your data processing at info@mdc.co.uk or 01733 961 500 or by writing to or visiting the practice at 23 Commerce Road, Lynchwood Park, Peterborough, PE2 6LRWe take complaints very seriously.

 

If you are unhappy with our response or if you need any advice, you should contact the Information Commissioner’s Office (ICO). Their telephone number is 0303 123 1113, you can also chat online with an advisor.

 

WEBSITE Privacy Policy 

Who we are

Our website address is: https://www.mdcentre.co.uk.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.