Privacy Policy

DrSteph.co.uk is owned by Dr Arnold at Discretion Healthcare, which is a data controller of your personal data.

This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information. By engaging with our services, you consent to the practices described in this policy.

We take care of your personal data and undertake to guarantee its confidentiality and security.

Device information we collect:

When you visit drsteph.co.uk, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the installed cookies on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products you view, what websites or search terms referred you to the Site, and how you interact with the Site. We refer to this automatically-collected information as “Device Information.”

Why do we process your data?

We process only minimal user data, only as much as it is absolutely necessary to maintain the website. Information collected automatically ('device information') is used only to identify potential cases of abuse and establish statistical information regarding website usage. This statistical information is not otherwise aggregated in such a way that it would identify any particular user of the system.

You can visit the website without telling us who you are or revealing any information, by which someone could identify you as a specific, identifiable individual. If, however, you wish to register for our services you may need to provide personal data to us. You can choose not to provide us with your personal data, but then you may not be able to take advantage of some of the website’s features. For example, you won’t be able to register for healthcare services, receive our newsletter or contact us directly from the website. Users who are uncertain about what information is mandatory are welcome to contact us via office@drsteph.co.uk.

Information we may collect if you choose to register for our services:

• Personal information such as names, contact details, date of birth, and medical history when you register for our services.

• In the course of providing healthcare services, we may collect and process health-related information to ensure the highest standard of care.

• If applicable, we collect payment information for billing purposes. This is undertaken using a highly secure 3rd party invoice firm.

• If you are insured, then your insurance details may also be taken.

• We may store records of your communications with us, including emails, messages, and any other correspondence.

Why do we collect this information?

• Personal and health information is used to provide healthcare services, including diagnosis, treatment and ongoing medical care.

• We use your contact details to communicate with you about appointments, test results, and other healthcare-related matters.

• Payment information is not stored by drsteph.co.uk

• We may use aggregated and anonymized data for quality improvement, research, and to enhance our services.

Confidentiality

Dr Stephanie Arnold adheres to the guidance provided by the Care Quality Commission (CQC). This guidance incorporates the National Data Guardian's standards and offers advice on meeting the requirements of the Data Protection Act 2018. Our commitment to following this guidance ensures compliance with data protection standards and legal obligations.

Dr Arnold understands that her service users place their trust in her by sharing sensitive and confidential information. In return, we ensure we maintain and safeguard this information:

• All forms of identifiable information, whether in written, computerised, visual, audio-recorded, or memorised form, are subject to the duty of confidentiality.

• This commitment is particularly crucial in matters related to sexual and reproductive health, where for some, confidentiality is paramount. We adhere to strict rules and regulations in those > 18 years. Information is only shared with other health professionals if we have the patient’s consent to do so.

• This would only be broken in exceptional circumstances, if it was deemed either they or somebody else was in danger of harm. It would always be discussed within a senior multi-disciplinary team before any decision was made.

Sharing your information:

• We engage with 3rd party service providers to assist with certain aspects of our operations, such as billing or IT support. Strictly limited information is shared with these providers, and only as required for them to undertake their role. These providers are bound by confidentiality agreements and are required to comply with applicable data protection laws.

• We may disclose your information when required by law or in response to legal requests.

• We employ industry-standard security measures to protect your personal and health information from unauthorized access, disclosure, alteration, and destruction.

Your Rights

• Access and Correction:

  • You have the right to access and correct your personal information held by us. To do this, please contact us through the contact information below.

• Withdrawal of Consent:

  • You may withdraw your consent for the processing of your information at any time.

Links to other websites:

Our website may contain links to other websites that are not owned or controlled by us. Please be aware that we are not responsible for such other websites or third parties' privacy practices. We encourage you to be aware when you leave our website and read the privacy statements of each website that may collect personal information.

Information security:

We secure information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We keep reasonable administrative, technical, and physical safeguards to protect against unauthorized access, use, modification, and personal data disclosure in its control and custody. However, no data transmission over the Internet or wireless network can be guaranteed.

Contact information:

If you would like to contact us to understand more about this Policy or wish to contact us concerning any matter relating to individual rights and your Personal Information, you may send an email to office@drsteph.co.uk.