Privacy POLICY
1. What is your personal data and how does the law regulate our use of it?
“Personal data” is information relating to you as a living, identifiable individual. We refer to this as “your data”.
The UK-GDPR and Data Protection Act 2018, (DPA 2018) requires Vitreoretinal Research Group as data controller for your data to:
-
process your data in a lawful, fair and transparent way;
-
only collect your data for explicit and legitimate purposes;
-
only collect data that is relevant, and limited to the purpose(s) we have told you about;
-
ensure that your data is accurate and up to date;
-
ensure that your data is only kept as long as necessary for the purpose(s) we have told you about;
-
ensure that appropriate security measures are used to protect your data.
2. Information about you
We may collect personal information from you when you:
-
make a donation;
-
enquire about the website, our services or the Vitreoretinal Research Group;
-
request or share information through the Website;
-
contact us through the Website.
This personal information may include but is not limited to the following information about you:
-
your name (including your first name(s) and surname);
-
your email address;
-
your address;
-
your phone number;
-
your bank details (if donating via bank transfer or cheque);
-
other details about you that you provide to us.
-
3. How we use this information
(a) Your personal information will only be used by us to:
-
process your requests or payments;
-
respond to your questions or comments;
-
provide you with information relating to the Vitreoretinal Research Group, or that we feel may be of interest to you; or
-
maintain our organisational records
(b) Vitreoretinal Research Group will not share your personal details with third parties, except where companies are providing services on our behalf, such as processing donations
5. Your rights under Data Protection Law
You have the following rights under Data Protection Law:
-
The right to access – You have the right to request us to give you copies of the personal information we have about you.
-
The right to rectification – If the information we hold for you is incomplete or wrong, you have the right to request a correction.
-
The right to erasure – Where we have no overruling legal basis or legitimate reason to carry on processing your personal information, you may ask that we delete your personal information.
-
The right to restrict processing – You have the right to ask that we restrict the processing of your personal information, under certain conditions.
-
The right to object to processing – You have the right to object to processing if we can process your information because the processing is part of our public tasks or is in our legitimate interests.
-
The right to data portability – This only applies to information you have given us. You have the right to ask that we transfer the information you gave us from one organisation to another or give it to you. The right only applies if we are processing information based on your consent or under, or in talks about entering into a contract and the processing is automated.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at: louise@healthology.eu
Further guidance on your rights is available from the Information Commissioner’s Office.
6. Data retention
We retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purpose of satisfying any legal, accounting, regulatory, disciplinary or reporting requirements.
7. Cookies
If you would prefer that we do not use cookies, you should adjust your browser settings to reject cookie use. Where we use cookies for site security, or to ensure the proper functioning of the site, we do not require your consent to the use of these.