GDPR Privacy

Introduction

Our clinic strives to provide the highest standard of Chiropractic care and our patient confidentiality and data protection policies are consistent with the General Data Protection Regulation (GDPR). This notice describes our data protection policy.


Our Services

Cork Chiropractic Clinic is a healthcare practice which provides Chiropractic services to the public. Full details of our services are available on our website (www.corkchiropractic.ie).


Data collection, consent and the legal basis for processing your data

We require both personal and health data about patients in order to provide Chiropractic services. We are obliged to obtain your written consent to use your data for this purpose. We also may use your data for professional education, but in this situation the data will be made anonymous and your identity will be concealed. We use your consent as the legal basis for processing your data.


Managing Your Data

In order to provide Chiropractic services, we need to collect and store data about you and your health. We only ask for data that is necessary for your diagnosis and treatment. We keep it accurate and up to-date. We ask you to inform us about any changes that we should know about such as any new treatments or illnesses, a change of address or a change of phone numbers. We keep our files, computers and buildings secure, and we keep your data securely. In most circumstances we hold your data until 8 years after your death or 8 years since your last contact with the clinic with an exception for persons under 17 whose data is kept until their 25th birthday.


Sharing your Data

From time to time we may need to share some of your data with other health professionals in order to provide you with Chiropractic services. For some services (such as orthotics) this may include transferring data outside the European Economic Area (EEA). We expect other professionals, including any outside the EEA to have equal levels of data protection under GDPR. Also in certain circumstances, we may be legally obliged to share health data, for example, in the case of infectious diseases, but we will always inform you first if we are legally obliged to share your data for any reason. In the case of requests made by solicitors or insurance companies for your records we will only release the information with your signed consent.


Use of your data for professional education

Chiropractors are obliged to discuss patient case histories as part of their continuing professional education. In these situations the identity of the patient will be concealed.


Your right to access your data

You have the right of access to all the data held about you by our practice. If you wish to access your records please discuss this request with your Chiropractor who will provide and review the data with you. You can also make a formal written access request to the clinic and receive a paper copy of your health record, which we will provide within thirty days without charge.


Other personal data rights

You will find data about your rights, when they apply and our responsibility to you on our website. You can exercise your rights by asking for details at the clinic reception, visiting our website or by contacting us on 021-4342933. You can ask us about how we collect, share and use your personal data. You can change your mind after you give us your consent (your right to withdraw consent). You can ask us to delete your personal data (your right to be forgotten). Where possible we may share a digital copy of your data directly with you or your referring doctor (your right to portability). When you contact us to ask about your data, we will ask you to identify yourself by providing your name, address and date of birth (our obligation to protect your data). We do not charge you if you contact us to ask about your data. Should any data breach occur we will contact you without delay. We will always provide you with the contact details of the Data Protection Officer who is dealing with the case to explain to you the nature of the breach and the steps we are taking to deal with it.