For the purpose of the Data Protection Act 1998 (the Act), the data controller is Cathedral Eye Clinic Limited of 89-91 Academy Street, BELFAST, BT1 2LS. You can contact our Data Protection Officer by writing to us at the address.
INFORMATION WE MAY COLLECT FROM YOU
We may collect and process the following data about you including:
your date of birth;
your contact phone numbers (including mobile);
your email and postal address;
your relevant health details including (a) current and past eye or health conditions, general health conditions and glasses, contact-lens or other prescriptions, (b) current medication details, and (c) correspondence between your optometrist and your GP or ophthalmologist;
your examination and test results;
your payment details;
your employment, lifestyle and driving information;
details of any prescription supplied to you by your healthcare professional or medical practitioner;
information that you provide by filling in forms on our website at www.cathedraleye.com (“our site”);
details of your visit to the website and any transactions you carry out on the website;
any information or images you give us when you use our virtual try-on technology; and
any other information you have voluntarily given us.
if you contact us via email or via our online enquiry service, we may keep a record of that correspondence and/or enquiry;
we may ask you to complete surveys that we and/or third parties authorised by us use for research or statistical purposes, although you do not have to respond to them;
details of transactions you carry out through our site and of the fulfilment of your orders;
details of your visits to our site including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise and the resources that you access.
IP ADDRESSES AND COOKIES
We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration. This is statistical data about our users' browsing actions and patterns, and does not identify any individual.
For the same reason, we may obtain information about your general internet usage by using a cookie file which is
stored on the hard drive of your computer. Cookies contain information that is transferred to your computer's
hard drive. They help us to improve our site and to deliver a better and more personalised service. They enable
to estimate our audience size and usage pattern;
to store information about your preferences, and so allow us to customise our site according to your individual interests;
to speed up your searches; and
to recognise you when you return to our site.
CHANGING OR UPDATING YOUR PERSONAL INFORMATION
You can update or change your personal information by signing into your account (if you are a registered online customer), or by contacting firstname.lastname@example.org
WHERE WE STORE YOUR PERSONAL DATA
The data that we collect from you my be shared with other members of the Cathedral Eye Group Companies. We may transfer your personal information outside the UK and the European Economic Area ("EEA"). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Policy.
All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted. Where we have given you (or where you have chosen at the time of registering to use our site) a username and/or password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. You must not share your password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access or loss.
Once your electronic patient record has been created and uploaded to our site, we will retain that record for as long as is reasonably necessary (or as defined under healthcare laws and regulations which apply) to provide products and services, including aftercare services, and to maintain records as needed to satisfy tax and other legal or regulatory requirements, as well as to protect and defend against claims.
Please note that the content and accuracy of any electronic patient record held by us for you is dependent upon the information you provide to us and the information uploaded by medical healthcare professionals responsible for your treatment.
USES MADE OF THE INFORMATION
We use information held about you in the following ways:
to ensure that content from our site is presented in the most effective manner for you and for your computer;
to provide you with information, products or services that you request from us and/or our third party care providers or other medical practitioners, or which we feel may interest you, where you have consented to be contacted for such purposes;
to carry out our obligations arising from any contracts entered into between you and us for purchase of goods;
to notify you about changes to our services; and
We may also use your data, or permit selected third parties to use your data, to provide you with information about other goods and services which may be of interest to you and we or they may contact you about these by email, text or telephone.
If you are an existing user of our site, we will only contact you by electronic means (e-mail or SMS) with information about goods and services similar to those which were the subject of a previous sale to you.
If you are a new user, and where we permit selected third parties to use your data, we (or they) will contact you by electronic means only if you have consented to this.
If you do not want us to use your data in this way, or to pass your details on to third parties for marketing purposes, please tick the relevant box situated on the form on which we collect your data (the registration form).
We do not disclose information about identifiable individuals to third parties not involved in your medical treatment, but we may provide them with aggregate anonymised information about our users for medical research or statistical purposes. Such third parties may include, without limitation, government or private healthcare bodies and pharmaceutical companies.
DISCLOSURE OF YOUR INFORMATION
We may disclose your personal information to third parties:
in the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets;
if or substantially all of its assets are acquired by a third party, in which case personal data held by it about its users will be one of the transferred assets;
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at email@example.com
Our site may, from time to time, contain links to and from the websites of our affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
ACCESS TO INFORMATION
The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request may be subject to a fee of £15 to meet our costs in providing you with details of the information we hold about you.
Any changes we may make to this Policy in the future will be posted on this page and, where appropriate, notified to you by e-mail.
Last updated: 7 April 2022
© Cathedral Eye Clinic 2023. All rights reserved.