Privacy Policy

WHO WE ARE

Enigma Healthcare is a private provider of medical care and treatment. In order to provide this, we must keep records about you, your health and the care we have provided or plan to provide for you.

YOUR INFORMATION: WHAT DO WE HOLD?

In providing a healthcare service, we collect and use personal information for a range of purposes. Primarily, we collect data for healthcare and administration purposes. For example, a health professional will record details of a patient’s treatment as this is essential information in order to provide a clinical service. Patient consent will be sought whether this is implied or explicit.

There are some cases where it is necessary and a legal requirement to process personal information even without the consent of service user or staff member. EH respects patient choice and will respect an individual’s request to withhold information from someone or an agency unless there is a legal requirement to disclose the information.

Other purposes for data collection and usage may include:

Staff Administration, i.e. pay, discipline, work management
Service improvement purposes, i.e. patient satisfaction survey
Training purposes to ensure staff are adequately trained to carry out their role
Conducting an investigation in response to a complaint or police enquiry
Accounts and records, i.e. keeping accounts related to business activity, customers, financial management, responding to freedom of information requests.
Research purposes, i.e. health or scientific research (any published data will always be anonymous)
Performance monitoring and analysis to help us assess the quality of standard of our healthcare services.

Where possible, EH will use anonymised data for non-care purposes.

INFORMATION SHARING

We will not share information about you for any reason unless:

You ask us to do so
Where a formal court order has been served on us
In order to assist the police in the prevention and detection of crime
To protect children and vulnerable adults
We have special permission for health and research purposes (granted by the Health Research Authority) or
For the health and safety of others, for example, to report an infectious disease such as meningitis or measles.

We work with the NHS, partner agencies and other organisations to provide healthcare and other services for you.

We contract with other organisations or contractors to provide a range of services for example providing some human resource services for our staff. In these instances, we ensure all external partners handle our information under strict conditions and in line with the law.

All EH staff have contractual obligations of confidentiality, enforceable through disciplinary procedures. Staff with access to patient identifiable information receive appropriate on-going training to ensure they are aware of their responsibilities. Our staff are granted access to personal data on a need-to-know basis only.

YOUR INFORMATION: WHAT DO WE NEED FROM YOU?

In order to ensure that all records are accurate please tell us as soon as possible if there are any changes, such as a new address. This helps us to keep your information reliable and up to date.

CONTACTING US ABOUT YOUR INFORMATION

EH has a Caldicott Guardian responsible for protecting the confidentiality of patient information and enabling appropriate information sharing. This person is called the Caldicott Guardian. Mr Tony Westbrook is EH’s Caldicott Guardian.

If you have any questions or concerns regarding the information we hold on you or the use of your information, would like to opt out of having your information used by us or would like to know more about accessing your information, please contact us at: